|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/ap.belleisle/INFOSEC/products/ |
Upload File : |
<HTML> <HEAD> <TITLE>DOCUSEC - DoD 5220.22-M Sanitizing</TITLE> <META NAME="description" CONTENT="Cerberus Systems, Inc. develops, manufactures and markets Windows� cryptosystems designed to meet or exceed level 1 of FIPS PUB 140-1 with DOD 5220.22-M disk data recovery countermeasures."> <META NAME="keywords" CONTENT="168-bit keys, access control, ANSI X9.17, computer security, confidentiality, crypto, cryptography, cryptographic, cryptology, cryptosystem, Data Encryption Standard, data security, DES, disk encryption, DOD 5200.28-STD, DOD 5220.22-M, encrypt, encryption, Federal Information Processing Standards, file encryption, FIPS, FIPS 46-2, FIPS 74, FIPS 81, FIPS 140-1, FIPS 180-1, FIPS 186, INFOSEC, integrity, key, NBS Special Publication 500-20, NCSC TG-25, passphrase, password, personal, privacy, private key, Secure Hash Standard, security, Security Requirements for Cryptographic Modules, security software, sensitive-but-unclassified, sensitive information, SHA, SHA1, SHS, software, standards, triple-DES, Windows�."> </HEAD> <BODY TOPMARGIN="0" LEFTMARGIN="0" MARGINWIDTH="0" MARGINHEIGHT="0" BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#009966" ALINK="#FF0000" VLINK="#009966"> <BASEFONT SIZE=2 FACE="Arial,Helv,Helvetica"> <TABLE ALIGN=LEFT BORDER=0 CELLSPACING=0 CELLBORDER=0 CELLPADDING=12 WIDTH=640> <TR> <!-- LEFT MARGIN STRIP --> <TD BGCOLOR="#336666" ALIGN=CENTER VALIGN=TOP> <FONT SIZE=1> <a href="../../default.htm"><IMG SRC="../images/web_icon.gif" ALT="CERBERUS HOME ICON" WIDTH=72 HEIGHT=72 BORDER=0 VSPACE=2><br><b><i>CERBERUS</i></b></a> <P><a href="../index.htm""><IMG SRC="../images/needs.gif" ALT="THE NEED" WIDTH=90 HEIGHT=30 BORDER=0></a><br> <a href="../privacy.htm">Vulnerabilities</a> <a href="../threats.htm">Threats</a> <a href="../forensic.htm">Countermeasures</a> <P><a href="index.htm""><IMG SRC="../images/products.gif" ALT="PRODUCTS" WIDTH=90 HEIGHT=30 BORDER=0></a><br> <a href="docusec.htm">Document Security</a> <P><a href="../stds/index.htm"><IMG SRC="../images/standard.gif" ALT="STANDARDS" WIDTH=90 HEIGHT=30 BORDER=0></a><br> <a href="../stds/fip140-1.htm">FIPS PUB 140-1</a><br> <a href="../stds/sanitize.htm">DOD 5220.22-M</a><br> <a href="../stds/ncsctg25.htm">NCSC TG-25</a> <br> <a href="../stds/fip81.htm">FIPS PUB 81</a> <br> <a href="../stds/fip180-1.htm">FIPS PUB 180-1</a><br> <a href="../stds/d520028.htm">DOD 5200.28-STD</a><br> <P><a href="../tutorial/index.htm"><IMG SRC="../images/tutorial.gif" ALT="TUTORIALS" WIDTH=90 HEIGHT=30 BORDER=0></a><br> <a href="../tutorial/winfosec.htm">INFOSEC</a><br> <a href="../tutorial/keys.htm">Cryptosystems</a><br> <a href="../tutorial/phrases.htm">Passphrases</a><br> <a href="../tutorial/leaks.htm">Windows� Leaks</a><br> <a href="../tutorial/system.htm">System Settings</a> <P><a href="../download/index.htm"><IMG SRC="../images/download.gif" ALT="DOWNLOADS" WIDTH=90 HEIGHT=30 BORDER=0></a><br> <P><HR WIDTH=84> <P><a href="mailto:[email protected]">QUESTIONS? <br><IMG SRC="../images/email2.gif" ALT="E-MAIL" WIDTH=61 HEIGHT=31 BORDER=0></a><br> <P><br><IMG SRC="../images/amex_ok.gif" ALT="AMEX WELCOME" WIDTH=51 HEIGHT=68 BORDER=0> </FONT> </TD> <!-- END LEFT MARGIN STRIP --> <!-- MAIN SECTION --> <TD ALIGN=LEFT VALIGN=TOP> <!-- Title Bar --> <TABLE BORDER=0 CELLSPACING=0 CELLPADDING=0 WIDTH=500> <TR><TD> <!-- Right-justified Logotype --> <TABLE ALIGN=RIGHT BORDER=0 CELLSPACING=0 CELLPADDING=0> <TR><TD><FONT COLOR="#006633" SIZE=3><B><I>CERBERUS <FONT SIZE=1>SYSTEMS, INC.</FONT></I></B></FONT></TD></TR><TR><TD ALIGN=CENTER><FONT COLOR="#999933" SIZE=1><B><I> <!--forensic software countermeasures--> <!--INFORMATION SECURITY TOOLS--> <!--INFOSEC for Personal Computers--> <!--INFOSEC Products for Windows®--> <!--INFOSEC Tools for PCs & Laptops--> <!--personal information security tools--> Windows®-compatible encryption </I></B></FONT></TD></TR> </TABLE> <!-- End Logotype --> </TD></TR> <TR ALIGN=CENTER><TD WIDTH=490> <!-- Centered Page-Title --> <TABLE BORDER=0 CELLSPACING=0 CELLPADDING=10> <TR><TD ALIGN=CENTER><FONT COLOR="#CC3300" SIZE=5><B> <!-- Title Text--> DoD 5220.22-M SANITIZING<BR> <FONT COLOR="#999933" SIZE=3><i><FONT SIZE=2>IN<br></FONT>DOCUMENT SECURITY MANAGER</i> <br><CENTER><img src="../images/bdestroy.gif" border=0 align=top></CENTER> <!-- End Title Text --> </B></FONT></TD></TR> </TABLE> <!-- End Page-Title --> </TD></TR></TABLE> <!-- End Title Bar --> <!-- Content --> <FONT SIZE=2> The <img src="../images/destroy.gif" border=0 align=absbottom vspace=0 hspace=2> command performs DOD 5220.22-M multiple overwriting of the contents of the selected file. The file contents would otherwise be left on your hard disk for potential recovery with the "undelete" command, or with a disk editor utility. (The "delete" command merely unlinks a file's disk clusters from the File Allocation Table; "format" merely constructs a new FAT; and defragmenting is not guaranteed to overwrite any particular area.) The file's entry in the FAT is then overwritten with random characters to obliterate its name; its date/time set to midnight, 1-JAN-1980; and its size truncated to zero. Only then are the overwritten file clusters unlinked. This Sanitizing method is designed to counter attackers attempting to recover sensitive data with disk-scanning software installed on your computer (or on theirs, since stealing your hard drive is easy on most personal computers). <BLOCKQUOTE><FONT COLOR="#006633" SIZE=1> <b>NOTE:</b> Each byte is first overwriten with 01010101. The second overwriting pass uses 10101010. This cycle is repeated three times. The final overwriting pass is performed with random bytes generated with an ANSI X9.17c keystream generator. Disk caches are flushed after each overwrite, and the final overwrite is read-back verified. This method meets or exceeds the Purging requirements of NAVSO P5239-26, AFSSI-5020 and AR380-19. It is approved in DOD 5220.22-M for any reclassifying of Classified hard drives in secure Automated Information Systems, even those certified and accredited for Special Access Programs, but is not approved for Purging disks at any level above Secret. Due to the residual magnetization necessarily left to hold the disk tracking servo data, the only way to truly destroy disk data is through degaussing and destruction of the disk. However, the residual magnetization recovery techniques used by intelligence services require expensive laboratory equipment and are only practical for very small amounts of targeted data, as opposed to scanning entire hard drives for possibly interesting files. </FONT></BLOCKQUOTE> <P>If the selected file had ever been recorded in your encrypted Document Inventory file (as a result of your Securing, Opening or Verifying it), its recorded size at its last decryption will be used to ensure that the overwriting covers any "tail" left from any subsequent editing you may have done that shortened it. The record of any Destroyed document is automatically purged from the Document Inventory. <BLOCKQUOTE><FONT COLOR="#006633" SIZE=1> <b>NOTE:</b> The Destroy command is used by the Secure command to Sanitize the un-encrypted file, after completion of constructing the secured document. This procedure is used rather than the faster approach of encrypting-in-place, which could leave you with a partially encrypted, damaged file, in the event of a power interruption. </FONT></BLOCKQUOTE> <P>Your encrypted Document Inventory file may be accessed with a command on the System Menu, so you can conveniently Destroy (or Open or Secure) multiple documents from a batch dialog (whose Destroy button is shown above). Opened documents are listed with a preceding ' - ' to contrast them with secured documents (marked with an ' x '). The dialog has a 30-second inactivity time-out, as opposed to the 15-second inactivity time-out that normally clears from memory the keying information generated by your most recent passphrase dialog. <P>There is also a Declassify command to independently purge a document record from the Document Inventory, as is automatically done as the last step of the Destroy command. This prevents Document Security Manager from tracking its security state or automatically re-encrypting it on exit. <P>The System Menu also includes a sub-menu for disk-wiping utilities, including a <i>Sanitize a disk's free clusters</I> command. This command performs DOD 5220.22-M multiple overwriting of all unocupied sectors on a user-selected disk, and is intended for purging disks whose files have already been "deleted." <P>The Destroy command is also accessable from the System Menu. On Win9x/NT4 systems, this allows you to keep Document Security Manager discretely minimized and to control its functions by right-clicking on its Task Bar button. On Win3x systems, which don't have a Task Bar, the Destroy command is also appended (along with the Open and Secure commands) to the System Menu of any other active program. These features are designed to allow your remote control of a minimized Document Security Manager from within those programs that you are using to work on the contents of your documents. </FONT> <!-- End Content ---> <!-- Standard Footer ---> <CENTER> <P><BR> <FONT SIZE=2 COLOR="#006633"><B><i> Cerberus Systems, Inc. develops, manufactures and markets<BR> software cryptosystems designed to level 1 of FIPS PUB 140-1<BR> with DOD 5220.22-M disk data recovery countermeasures. </i></B></FONT> <P><HR SIZE=1> <FONT SIZE=1 COLOR="#CC3300"> The Cerberus logo and the <i>...Security Manager</i> product names are trademarks of Cerberus Systems, Inc.<BR> © Copyright 1997-99, all rights reserved. </FONT> <HR SIZE=1> </CENTER> <!--- End Standard Footer ---> </TD> <!-- END MAIN SECTION --> <!-- PADDING CELL --> <TD> <!-- right margin = 2 x cellpadding --> </TD> <!-- END PADDING CELL --> </TR> </TABLE> </BODY> </HTML>