Microwave it! /Steve
From: Todd Arnold <[email protected]> To: [email protected] Date: 2015-05-19 14:25 Subject: Re: PCI DSS compliance for z/OS Sent by: IBM Mainframe Discussion List <[email protected]> Phil Smith wrote: > ... and when decommissioning hardware-no more "How many DSEs should we > do? or "Should we take the drives out back, shoot ?em with a 12-gauge, > and then drop ?em in the ocean?". Actually, there is a much more interesting corollary to this scenario. If you have a drive that fails and has to be replaced, that drive still contains your data, but you are unable to talk to it any more - so you have no way to do overwrites to erase the data. If the data was encrypted on the drive, you have no problem - but otherwise, if the vendor requires you to return the failed drive, you have a problem because you're giving someone a copy of whatever data was on that drive when it failed. (If you don't have to return the drive, of course, you can physically destroy it - but that is a pain in the neck to do.) ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN SÃ¥vida annat inte anges ovan: / Unless stated otherwise above: IBM Svenska AB Organisationsnummer: 556026-6883 Adress: 164 92 Stockholm ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
