Dunno about the DoD but DSS and ODAA have some pretty explicit guides,
one excellent one which is here;
https://www.dss.mil/GW/ShowBinary/DSS/isp/odaa/documents/odaa_process_guide_revised050908.pdf
It's a shame DIAF is not included though :(
On Dec 29, 2008, at 9:58 AM, Erik Goldoff wrote:
Not sure if you intend to reuse, donate, or sell the old hard
drives, but
with current low price of drives, it would probably be easier and more
definitely secure to send the drives through a shredder.
Secure erase *used* to be good enough for PCI compliance if DOD
standards
were used, can I ask where you got the info that degaussing is now
required
?
Erik Goldoff
IT Consultant
Systems, Networks, & Security
-----Original Message-----
From: [email protected] [mailto:[email protected]]
Sent: Monday, December 29, 2008 9:50 AM
To: NT System Admin Issues
Subject: Disk degauss services?
Greetings!
I've been informed that, for PCI-compliance, old hard drives (from
decomissioned servers, etc) need to be degaussed rather than over-
written by
something like DBAN.
Does anyone have experience with a company which offers this service
and
which they would recommend? I can Google and get several, but I am
looking
for personal experiences any of you may have had.
FWIW, we're in Illinois, about 120 miles south of Chicago.
Thanks!
--------------------------------------
Richard McClary, Systems Administrator
ASPCA Knowledge Management
1717 S Philo Rd, Ste 36, Urbana, IL 61802
217-337-9761
http://www.aspca.org
~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
<http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
--
If this email is spam, report it here:
http://www.onlymyemail.com/view/?action=reportSpam&Id=ODEzNjQ6ODIwNjEzMjg4OnBqcEBwc25ldC5jb20%3D
THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
