Destroying confidential information from database

ian.farquhar at rsa.com ian.farquhar at rsa.com
Thu Apr 30 18:06:48 EDT 2009


> What I don't know is how to securely erase information from a
database.
>
> I cannot assume that the vendor solves this matter, anyone have a
clue?

I'd say your assumption is valid.  This is not to disrespect the
database vendors, but to point out that their risk modelling is
generally significantly looser than that which would be accepted by
someone who worries about secure data erasure on storage media.

I'd strongly suggest erasing the disk on which the database is stored,
using whatever mechanism meets your security needs (ie. From a "DoD
secure erase" right up to the full physical destruction of the media).

Also consider erasure of any areas of the disk where data might have
been cached, including but not limited to working tables and swap.

Ian.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list