Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Flash Memory Wiping

from [Dragos Ruiu] Network Security [Permanent Link]
Subject: Re: Flash Memory Wiping
Date: Fri, 19 Jan 2007 12:25:37 -0800 
On Friday 19 January 2007 06:18, nolife@gmail.com wrote:

dd if=/dev/zero of=/dev/devicex ?

Just overwrite the data, in comparison to a hard disk a flash can not be
opened by a normal professional. The structures are so small that it would
be very very hard to analyse the "old" contents.

For nuclear weapon control units the standard procedure is to "shredder"
the chip into a set of pieces, i do not know of any successfull
reconstruction  :-)


You can't jsut overwrite the data. You must overwrite the data and FILL the
devices. Flash filesystems are designed to spread out the writes as much
as possible to avoid as much overwriting as possible. Deleted data does
not get overwritten, just marked invalid, most flash filesystem go for
the least recently used block (or similar) when allocating the next block
to write to. They try to do this to maximize the limited number
of write cycles in the lifetime of flash by minimizing writes to
repeated locations. 

So... you have to fill the device to capacity to make sure you have
overwritten the data.

cheers,
--dr

(cc'ing daily dave because i remember dave asking about this...)

-- 
World Security Pros. Cutting Edge Training, Tools, and Techniques
London, U.K.    Mar 1-2 - 2007    http://eusecwest.com
pgpkey http://dragos.com/ kyxpgp
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Account lockout - analysis help, Tima Soni
Next by Date:  RE: Password Pride - A Humorous Vulnerability, Dixon, Wayne
Previous by Thread:  Re: Flash Memory Wiping, nolife
Next by Thread:  Re: Flash Memory Wiping, mullinsw
Indexes:  [Date] [Thread] [Top] [All Lists]