SSD devices usually support 'TRIM', an efficient deletion process, that offers significant protection against data recovery, but this may not always be turned on. Consequently, any 'flash'/SSD storage must be encrypted before any sensitive data is copied to it. The use of SSDs is now ubiquitous on laptops and the mechanisms used to store data on these products is such that guaranteed erasure of data is not necessarily possible. This inability to erase permanently is more likely on USB-stick/pen drive devices as secure wiping shortens their lifespan considerably. If transferring data over the internet, do you trust the service at the other end? All data must be encrypted in transit (https web sites or SCP/SFTP or TLS protected services), but how is the data stored at the other end - is the remote storage location encrypted at rest? Are you (or your research group) the only ones with access to this data store? SSD/flash Security Whilst a reputable company would ensure that the contents of the drive is erased, do you have any documentary proof that this happens?Įven storing such files on the Centre file servers is not entirely secure as any publicly accessible server (for example jalapeno) may be compromised by a determined hacker. Encryption is essential where sensitive material is sent by post or through email/over the internet.Īlso consider what happens when a device goes off for repair - a failed hard drive or SSD is normally retained by the manufacturer (unless you agree to pay for a replacement part or take out 'keep my disk' insurance at the time of purchase) - on Apple laptops the storage is permanently attached to the computer's mainboard so some repairs will necessarily require them to keep your SSD. Don't assume your data is safe because it is on a Centre desktop computer - there is the potential for them to be stolen. Whilst you can take steps to prevent physical access by unauthorised people by storing the device in a locked drawer it is also essential that these files are protected by encryption and correctly destroyed when the file/media is no longer required. This is especially important when the data is taken out of the Centre, for example on a laptop or external hard drive/USB key. they should be protected against being read by unauthorised people. Where a computer file contains sensitive information, eg names and addresses, bank details, medical records etc.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |