5
Memory Sanitization and Removal Procedures
This section explains how to clear, sanitize, and remove memory from your
instrument, for all types of non-volatile memory that can be written to during
normal instrument operation.
Table 5-1
Disk Drive
Description and
purpose
Size
Memory clearing
Memory sanitization
Memory removal
Write protecting
Memory validation
The Disk Drive is the main memory for the instrument. It has very large storage capacity, plus
fast read and write times. There are no limitations on the number of read/write cycles.
It contains the operating system, Instrument Software, Factory Calibration Data, Diagnostic
software, Crash recovery image, user instrument states, user data files, user trace data and any
user-installed third party software. The Disk Drive is written to frequently by the operating
system and other application software.
Fixed Magnetic
magnetic disk drive: 40 Gigabytes
Removable Magnetic
disk drive: 160 Gigabytes
Removable Solid-State
disk drive: capacity from 32 Gigabytes to 256 Gigabytes
Software utilities are available that comply with the clearing requirements specified for
Magnetic Disks and Flash Drives in the "Media Sanitization Matrix" in Appendix T of the
Security Service (DSS) Assessment and Authorization Process Manual
We recommend always removing the Disk Drive to achieve sanitization.
For program classifications lower than Top Secret, the disk can be sanitized using method "d"
(for magnetic disks) or method "c" followed by "h" (for solid-state drives) as defined in the
"Media Sanitization Matrix" in Appendix T of the
and Authorization Process Manual
For Top Secret and higher program classifications, Disk Drive removal is the only acceptable
sanitization procedure.
Fixed Disk
Processor assembly: see
the Chapter
"Disk Drive Removal
Removable Disk
Processor assemblies: see
the Chapter
"Disk Drive Removal
The Disk Drive cannot be write protected. The operating system and software must be able to
read from and write to the drive during normal operation.
The Disk Drive memory can be validated using third-party Windows utilities.
Security Features and Document of Volatility
Memory Sanitization and Removal Procedures
Defense Security Service (DSS) Assessment
(DAAPM)".
"Instruments with Non-Removable Drives" on page
Procedure".
"Instruments with Removable Drives" on page
Procedure".
Defense
(DAAPM).
53, in
55, in
30