The Homemade Hard Disk Destroyer

Barence writes "All businesses have sensitive data they need to destroy when they replace PCs, but disposing of hard disks properly can be an expensive business. This has led one IT manager in the UK to come up with his own, homemade solution — Bustadrive. It uses a powerful 'hydraulic punch' to physically deform a hard disk, rendering it virtually unreadable, and requires nothing more than a pull of the lever on the front — similar to a drinks-can crusher. PC Pro tested the Bustadrive, and also sought the opinions of data destruction companies as to whether the device was really as effective as hoped, or just a fun way to mangle a hard disk or two."

Overkill?

[Miros]

Why not just use a degausser? or DBAN?

Re:Overkill?

[cdrudge]

The paranoid crowd will argue that either method might still be able to be recovered. I thought I saw an article once here that in the real world basically debunked this myth. Physical destruction just takes the process one step further. Plus it's quicker then running some type of a disk wiping program.

Re:Overkill?

I'd just use my rifle and a few rounds of .308 Winchester (or .303 British, 7.5mm Swiss, 8mm Mauser, whatever). Problem solved...

If you really want to go low tech, a sledgehammer would do fine.

Re:Overkill?

[Hyppy]

Some places still require both. When it comes to extremely sensitive (classified, etc) data, "absolutely unreadable" must be absolute. Even if only one technician in the entire world, with a billion-dollar lab, is capable of recovering the data from a zero'd drive, it's too much of a risk. What if that one technician is Chinese?

Re:Overkill?

[LordLimecat]

Thats probably because you used some silly setting like Gutmann. Just use pseudorandom and be done with it. (esp since gutmann isnt really relevant anymore....)

Pseudorandom wipe can apparently do an 80gb drive (hooked up via usb) in about 40 minutes.

If youre doing multiple passes, you may want to make sure that doing it via overwrites (rather than destruction) is really good enough for your data :)

Re:Overkill?

[ByOhTek]

Where I used to work (~5 years ago), we used an erasure tool that wrote random data over the entire drive (10 times), then introduced the drive to "Mr. Band Saw" in the machine shop, to quarter the platters, on any DoD/DoE stuff

Re:Overkill?

[Miros]

Someone should suggest that the Mythbusters "put this to the test," assuming their production company has the financial resources to pay for even modest data recovery services.

Even that might be effective. If you have like, a dozen drives, all of them similar, all of them wiped, one of which contains good data (or worse, a group of which once comprised like, a RAID 5 array so you need at least a few of them) you would be looking at a hypergeometric distribution, and the actual probable cost of recovering the data could grow extremely rapidly to something quite impractical. If instead, you had a big box full of used drives, five of which had been bent in half, it might actually be cheaper

Re:Overkill?

[emocomputerjock]

Then you'll be called paranoid and accused of FUD.

Re:Overkill?

[mellon]

A degausser weakens the magnetized regions, but it's still at least theoretically possible to read it if it's not done thoroughly enough. What I don't get is why you don't just take it apart and sand the platters clean. There's zero chance of reading it after that, and it's a lot less energy intensive than actually chunking the platters. Extra credit if you use the disk drive motor to spin the disk so that you can sand it without any actual effort...

Re:Overkill?

[Hubbell]

Buy a package or 2 of sparklers, scrape the magnesium off onto the hardisk (encased or not, if cased maybe 2-3packages), light a sparkler and stick the end into the pile. Done.

Re:Overkill?

[emocomputerjock]

I was agreeing with you.

Re:Overkill?

[jonadab]

Because for a system administrator, paranoia is a basic job requirement. Consequently, when it comes to data security, there's no such thing as too much overkill. Even when you have subjected the drive to a thermite reaction, let it cool, and ground the whole resulting mess down to the consistency of talcum powder, you still have to scatter the ashes over at least a thousand square miles of ocean, just to be sure. Ideally, you'd scatter half the ashes over the central Pacific, some of them over the north Atlantic, and the rest over the southern ocean.

Extra bonus points if you scrub the platters with fluorine trichloride before putting it through the thermite reaction.

Even then, you'll never be fully comfortable with the job until you destroy the entire galaxy that the drive was in. Maybe the whole universe. You can't be too sure.

Re:Overkill?

[Barny]

Which would be the better solution.

A small terracotta pot without a hole in the bottom of it + a small amount of thermite is the cheapest way, thermite is cheap and reasonably easy to make.

Nothing says "no data recovery" like a drive reduced to its elemental components.

Re:Overkill?

[damburger]

TBH they might not have to pay at all. I'm sure data recovery companies wouldn't mind showing on national TV what they are capable of getting from an apparently bricked hard drive. It would be an advertising opportunity.

Re:Overkill?

[Iphtashu+Fitz]

Of course it's a security risk. If the disk fell into the wrong hands they my not be able to read everything from your system but they certainly could read bits of useful information. If it's from a RAID 5 or RAID 6 volume they may only get bits and pieces of data but something like a RAID 0 or RAID 1 volume could glean lots of useful data. Think of it sort of like a shredded classified document. RAID 5 or 6 means they may have a handful of the shreds of the document, and any of those could contain snippets of useful information like usernames, passwords, bank account numbers, etc. RAID 0 would mean you might have half or all of the shredded document. RAID 1 would pretty much guarantee that you have the full document.

Re:Overkill?

[fuzzyfuzzyfungus]

Depends on the flavor of RAID, and the depth of the hypothetical attacker's knowledge of your RAID setup.

For exactly that sort of reason, though, most decent business vendors will(for a little extra, or if you prod the rep) offer an HDD warranty option where you don't have to send back the dead drive in order to receive a replacement, and can destroy it onsite as you wish. Simply giving you the drive back would be useless, since it is more or less impossible to determine whether or not the contents have been duplicated once it is out of your hands.

Re:Overkill?

A collegue of mine used to work at a financial institution where they had a special heat resistant receptacle for hard disk destruction. They put the stacks of hard disks down, put thermite packs on top, closed the lid, and punched the "ON" button. Said slag after cooldown was then put out for scrap metal.

Another place didn't go with the thermite, but instead had an industrial grade shredder where the drives were tossed in, and parts the size of marbles came out the other end.

Both methods work. The thermite is more thorough and fun to watch, but the industrial confetti also does the job well. In a business, I prefer the shredder, because it is more idiot resistant than highly reactive chemical processes.

Re:Overkill?

[ta+bu+shi+da+yu]

Sure it can. And then someone can use techniques such as MFM, SPM or STM to recover the disk. And then there is this patent which notes that data is often partially written off the track, and thus can't be wiped.

I guess for most people's purposes something like DBAN will work well. But for the truly paranoid, you really need to read NIST's recommendation that you clear, purge and destroy. And by destroy, they mean that you use "Disintegration, Pulverization, Melting, and Incineration." At a "outsourced metal destruction or licensed incineration facility with the specific capabilities to perform these activities effectively, securely, and safely", no less.

Re:Overkill?

[maxwell+demon]

Even then, you'll never be fully comfortable with the job until you destroy the entire galaxy that the drive was in. Maybe the whole universe. You can't be too sure.

Just destroying the universe after the disk failed isn't enough. If many-worlds is true (and the paranoid sysadmin must consider this possibility), the fact that you destroyed the universe in this world doesn't guarantee that the data isn't destroyed in any other world. Indeed, you have to setup the universe-destroying device before writing the first bit of data onto the drive, and have it automatically triggered if it can't detect any accesses to the drive any more (after all, you might forget to activate it by hand in some of the universes). Only by setting it up before writing data you ensure that it will be in every universe where the disk contains any data, despite all the universe splitting going on.

Re:Overkill?

[ehren_m]

What's the best way to get red wine out of cotton? This guy: Thermite.

Re:Overkill?

[Scrameustache]

Even if only one technician in the entire world, with a billion-dollar lab, is capable of recovering the data from a zero'd drive, it's too much of a risk. What if that one technician is Chinese?

Oh, that's ok, my data isn't written in Chinese...

Re:Overkill?

[mlts]

There is one simple thing about physical destruction. It is obvious to an observer that the drive is unusable. If someone has a pile of drives, one before DBAN, one after, it wouldn't be hard for someone to move some drives into the after pile either as a prank, or perhaps to get the information once it leaves the location. Physical destruction prevents this from happening, because almost anyone can tell the difference between a pile of scrap metal and a hard disk that looks like it might function.

Re:Overkill?

[h4rr4r]

Where are you buying ammo?
Plinking:
300 win mag $22.95
http://www.jgsales.com/product_info.php/products_id/3153

Hunting
$31.95
http://www.cheaperthandirt.com/15754-5.html

Re:Overkill?

[ripnet]

Just mark the drive 'fragile' and post it via CityLink (UK courier firm)... guaranteed that THAT data wont be seen again...

Re:Overkill?

[chaim79]

I consider this one of the best methods, you get three great things out of this: non-recoverable drives, frustrations worked out, and some really interesting conversation starters if you take it apart (the disk platter deforms in very interesting ways when hit!) For example: This Drive is no longer readable, and if you look at any of the photos that show the top of the drive, you can see how the disk platter deformed.

Re:Overkill?

[Shakrai]

Beside, just reformat a few times--first with reiser, then NTFS, then another Linux format, then whatever you want to use in the end. Pretty hard to unscramble all that.

It's easy to unscramble reiser. You just have to offer it a reduced sentence in exchange for telling you where the body is ;)

Thank you, I'll be here all night....

Re:Overkill?

[TheRaven64]

Who are you trying to keep the data safe from? If it's a foreign government willing to do a molecular scale image of the entire disk with a scanning tunnelling electron microscope and then have a large team of people painstakingly apply heuristics and get back some small fraction of the stored data in a few years time and after spending several tens of millions of dollars on the project, then this is indeed good advice. If, on the other hand, you're worried about commercial data theft, then a single dd pass is enough.

Re:Overkill?

[snemarch]

That Gutmann paper is 10 years old - are those attacks still viable? Data density has increased quite a bit, and perpendicular recording has been introduced... does this have any effect other than making recovery a more time-consuming process?

Personally I feel safe doing a single-pass wipe, but don't work for any TLA organizations :)

Re:Overkill?

[TheRaven64]

Note that there are two dimensions to security. One is how big a problem it is if the secret leaks, the other is how long this is true for. Troop movements in Iraq, for example, could cost lives if they are leaked today, but if they are leaked next month then the data is irrelevant. The NIST recommendations that suggest destroying the drive are based in the principle that the secrets may be important in 20-50 years. They factor in attacks that are hypothetical now, but could become practical over this timeframe. For a commercial entity, this level of paranoia is rarely required. Most businesses don't have any data that would be a problem if it leaked even 5 years in the future - even credit card numbers have a shorter lifespan than that, so if someone recovered a five-year-old list of credit card numbers they wouldn't get anything of value.

Re:Overkill?

[snemarch]

With normal FS format options, that would only take care of a very small portion of the drive (FS metadata doesn't consume that much space) - it would be pretty easy extracting useful data using plain old software. A single-pass disk wipe would be a lot more useful :)

Re:Overkill?

[CharlieG]

Last time I needed to really kill a drive, I put it in the lathe, and turned the platters - nice snall swarf chips

Re:Overkill?

[cyphercell]

What if that one technician is Binese?

Re:Overkill?

[GiMP]

You can always melt it. A blast furnace will degauss it for you too, for no additional fee ;-)

Re:Overkill?

[jmac_the_man]

Hey, look! The guy in charge of DRM for the MPAA posts on slashdot!

Re:Overkill?

[Gilmoure]

Every drive at my place of work does not leave. They have a big ole shredder that eats drives and spits out rice grain sized pieces of metal. This is for all drives, not just classified materials ones. Is too easy to be safe this way.

Re:Overkill?

[inviolet]

[What if the one well-funded hacker who can recover the data is Chinese?]

Oh, that's ok, my data isn't written in Chinese...

Doesn't matter. They could still read images, sound recordings, schematics, spreadsheets of numbers...

Well, they COULD, except the West uses a different binary encoding scheme than the Chinese. Over here everything is written as ones and zeros, but over there everything is written as ones and zewos. And I doubt they have the technology to convert.

Re:Overkill?

[rsmith]

If you read the enhanced version on his homepage, he says that he didn't update the paper because it is practically unfeasable to try and restore overwritten data from a modern disk. In the epilogue he says:

Any modern drive will most likely be a hopeless task, what with ultra-high densities and use of perpendicular recording I don't see how MFM would even get a usable image, and then the use of EPRML will mean that even if you could magically transfer some sort of image into a file, the ability to decode that to recover the original data would be quite challenging.

Re:Overkill?

[rsmith]

Gutmann's paper was based on 1990-era technology. And even then you didn't need all 35 passes, just the ones that correspond to the encoding used on the disk. If I read the enhanced version of the paper correctly, restoring even plainly overwritten data from a modern disk is a hopeless task.

Re:Overkill?

[Wee]

I've shot more than a few dozen drives. At a previous workplace, we had to come up with a policy for destroying drives on decommissioned machines (you never know where an SSN might have been left laying about). It was decided that overwriting the writable sectors followed by physical destruction of the controller board and at least four holes through each platter was acceptable.

I'd just save them all up in a box and whenever I'd manage to make it out to the desert, I'd bring them with me. We'd shoot them all pretty well full of holes. I'd clean the target area up and send it all off to be recycled.

We never offered certificates of destruction or anything. Writing the number of drives that were in the box and counting the husks as they went back in when we cleaned up was about the extent of it.

The spec only said that the platters/controller had to be perforated, and didn't specify the method or device used. Some of the more fearful types found out I was shooting them and objected on moral grounds (or whatever). So the policy was amended such that the drives couldn't leave the premises unless all three steps had been performed. So we had to waste time with a drill to appease the leftists. We still shot them, though.

-B

Re:Overkill?

[Unequivocal]

In soviet russia the chinese are you.

Re:Overkill?

[drogers47]

My provincial goverment is using your quick and violent method, in fact, to destroy about 30,000 hard drives.

Well, not exactly *your* method, using bullets. But the same idea.

As they take each old computer out of service during a government-wide system upgrade, they:

1. Remove the hard drive.
2. Drill through it once, using a cordless drill. Right there in the office!

Full munching and recovery of recyclable materials takes place later at a depot. The important thing is to keep citizens' private data private! It's leaks to the media which drives the paranoia, by the way.

Re:Overkill?

[node+3]

If it's a foreign government willing to do a molecular scale image of the entire disk with a scanning tunnelling electron microscope and then have a large team of people painstakingly apply heuristics and get back some small fraction of the stored data in a few years time

Even that is impossible. The first problem is that an electron microscope can even read a drive in the first place. It can't. You need a magnetic reading device of some sort. You can't even read a normal, non-wiped drive with an electron microscope.

The second problem is using the term "small fraction". Unless you mean really, really small, on the level of maybe a few random bytes out of a terabyte drive small, even with the best existing reading/recovery device, one pass zero is sufficient.

Stand drill

[Nikademus]

I just use a stand drill. I goes through all the platters and the circuitboard.
Fairly easy to find and purchase.

Re:Stand drill

[A.+B3ttik]

I goes through all the platters and the circuitboard.

IM IN UR GARAGE GOES THRU UR HDDRV.

Re:Stand drill

[BenevolentP]

Whatever happened to just taking hike to closest Mt. Doom and throwing disk to molten lava hole?

Re:Stand drill

I'd guess the foundry people would object to contaminating their carefully selected alloy...

Re:Stand drill

[mellon]

Dude, haven't you read the Trilogy? It takes half a book just to cross Mordor, plus there's Orcs and shit. That's way more trouble than it's worth. And have you ever tried to find Middle Earth on a map? Sure, lots of people have theories, but what with continental drift and such, it's all pretty obscure. How can you be sure the volcano you use is *really* Mount Doom in this late, degenerate age?

Re:Stand drill

[damburger]

Its emotionally draining, because just before the hard drive goes into the molten metal you realise it has Learned the Value of Human Life.

Re:Stand drill

[necro81]

You mean, after freezing and shattering it with liquid nitrogen?

Re:Stand drill

[value_added]

The folks in Accounting must love your expense and mileage reports.

Re:Stand drill

[Scrameustache]

Dude, haven't you read the Trilogy? It takes half a book just to cross Mordor, plus there's Orcs and shit. That's way more trouble than it's worth. And have you ever tried to find Middle Earth on a map? Sure, lots of people have theories, but what with continental drift and such, it's all pretty obscure. How can you be sure the volcano you use is *really* Mount Doom in this late, degenerate age?

Because of all the Orcs and shit?

Re:Stand drill

[maxwell+demon]

Well, I used to just throw the old disks into the next black hole, relying on Stephen Hawking being right that all information thrown into a black hole is gone forever. Now he says he was wrong, and all the information from my hard disks may eventually be returned from the black hole. Does anyone know if this device can also be used to destroy black holes?

Re:Stand drill

[AP31R0N]

You broke my heart!

i joyfully clicked that link, eager to see a frozen hard drive shatter like glass. But all i found was a T2 clip. Now i have blue-eyeballs and have to watch a few Will It Blend videos.

Thanks for nothing!

__

i've always wanted to try using duct tape to strap an HD to a sledge hammer. If i used enough tape, the pieces would stay somewhat together. Eventually i'd have a duct tape bag full of HD bits.

This is just a controlled hammer

[wjh31]

Just give the hard drive to your kid with a hammer, tell them to go nuts, come back 10 mins later with a dustpan and brush and you are sorted.

Re:This is just a controlled hammer

[Miros]

dont forget the safety goggles!

Re:This is just a controlled hammer

[Hyppy]

If they're reusable afterwards, you didn't use a proper degausser.

Re:This is just a controlled hammer

[zygotic+mitosis]

Well, if you like the kid, sure..

Re:This is just a controlled hammer

[Opportunist]

Good safety advice! Never go close to kids without protective gear.

Re:This is just a controlled hammer

[Guysmiley777]

Until they go to town on drives you didn't want destroyed. "Look daddy, I fixed this one all by myself!"

Re:This is just a controlled hammer

[egburr]

If you'd had your protective gear on in the first place, there wouldn't be a kid to go near....

Underkill?

[O('_')O_Bush]

Sounds like you could fix it with... Pops-a-dent!

Jokes aside, from the FA: "The Bustadrive, then, looks like itâ€(TM)ll thwart all but the wealthiest and most determined of hard disk hackers"

So what they're saying is, this doesn't do the job as well as something like one of those DOD disc scraper/shredder things, but it is more fun, which I guess makes it news worthy?

lots of options out there!

[farnham]

My drill press makes for a very effective drive killer.

Use what you got!

7.62mm holes

[Bob+the+Super+Hamste]

I have always preferred putting some 7.62mm holes through old hard drives at a distance of 50 to 100m. Just remove the electronics so you don't end up with circuit board debris all over and old hard drives make great targets.

Re:7.62mm holes

[IBBoard]

7.62mm seems like an unusual size for a drill bit, and what kind of drill are you managing to use at up to 100m? Seems like a longer distance than I've seen any normal pillar drill move over.

I do agree that not removing the circuit board causes lots of debris, though, and is especially dangerous when it spins off at an angle!

Re:7.62mm holes

[Miros]

7.62x51mm NATO, aka .308 Winchester, is a standard cartridge round developed before WWII which (contrary to my earlier post) is not shot from the M1 (which shoots far more common .30-06) but is shot from the far more entertaining M14.

Oblig...

[rumith]

Nuke your old hard drive from the orbit. It's the only way to be sure.

Re:The Columbia test

[Miros]

I think it would be easy to melt the disk into a nice puddle of slag, what might be harder is not burning the building down in the process.

Re:Not 100%, but otherwise cost-effective given ri

[LordLimecat]

Raise the drive to the curie point. All magnetic domains are destroyed, and recovery is impossible with currently known methods.

Re:Destroy the data, not the drive

[chill]

I bet it takes less time to plug the machine in and boot off a CD than it does to open the case, remove the drive, and then smash it.

Not if you actually let the software RUN, it doesn't. Using DBAN on a 500 GB drive can take days, whereas this solution takes a few minutes at most. Your solution is only practical if you have one hard drive to destroy, and it is attached to a machine. The usual situation is the hard drive died and you replaced it with a good one, now need to make sure the dead one is REALLY dead before you toss it. Or, you have a batch of them that need to go because you're refreshing PCs.

Waste of Time, Money and Good Equipment

[littlewink]

Wipe the drive with software. Do it several times with different programs if you're paranoid. Set up an assembly line to do it if you have many, with each individual responsible for a separate step. Test drives prior to re-release.

People are so badly mistaken about how recoverable disk data is: they believe the same way they believe in Bigfoot or the Loch Ness monster. What a waste of good work.

Re:Waste of Time, Money and Good Equipment

[mlts]

If you are wiping a hard disk to reassign within a company, and the hard drive isn't requiring top security, I've found that using HDDErase and DBAN are a good combo. HDDErase performs a complete erase on the controller level using ATA firmware commands (zeroing even the relocated sectors), then following up by usage of DBAN will put the chance of any recovery past anyone but the most determined.

Bonus points if you use TrueCrypt or BitLocker, so to ensure that a HDD is wiped, you just do a quick format, or a once over with zeroes. If you format a BitLocker drive in Windows 7, the format command explicitly zeroes out the areas with the volume keys on it making it impossible to recover the rest of the volume (more info here http://technet.microsoft.com/en-us/library/cc512654.aspx).

Gross Overkill

[kingsack]

A ball pean hammer applied vigorously to the drive spindle will render all but the most wealthy and determined effort to recover data fruitless and even then it is highly unlikely that all or even most of the data would be recoverable.

Gutmann was wrong

[feenberg]

There is no need to physically destroy a drive to prevent data from being read. The claims of Gutmann that it was possible to read overwritten sectors were never sustained by his sources. I investigated this years ago and reported in Can Intelligence Agencies Read Overwritten Data that he was very much overwrought. I see he has gone on to tilt at other windmills since he propagated that myth.

Re:Gutmann was wrong

Physically overwritten sectors are (almost) certainly unrecoverable. But what about remapped 'bad' sectors? AFAIK these cannot be accessed in any way by software wiping tools, but could be accessed and potentially read by tweaked drive firmware. They might be overwritten if you use the drive's own firmare erase command if it supports this.

Re:Gutmann was wrong

[TheRaven64]

And how many of these are there? SMART can tell you how many sectors have been remapped, and I've only seen this over 50 on a hard drive that completely failed a few hours later. 50 512-byte sectors works out to be 25KB of data, taken at random from the data ever written to the disk. What is the probability of this being something useful? If you use encryption or compression on the disk - or the files - then these sectors will contain data that is completely meaningless without the relevant headers.

Re:Gutmann was wrong

Every ATA/SATA drive made since around 2001 supports the "secure erase" feature. This will overwrite everything, including remapped sectors and the host protected area (HPA). NIST considers this to be as effective as degaussing. It has the added advantage that you can re-use or sell the erased drive. On Linux, you can activate this feature with hdparm's --security-erase switch.

It's actually more effective than crushing or similar physical destruction techniques, as it will protect against "laboratory" attacks (magnetoscopy etc). The only physical technique which is completely effective against a determined attacker is incineration (even grinding can leave recoverable fragments if you don't know what you're doing; it's quite easy to end up with flakes of the magnetic medium which are large enough to extract data from).

Physical destruction is primarily masturbation; it's done because it feels good rather than because it's particularly effective.

Re:Not 100%, but otherwise cost-effective given ri

[Peter+Steil]

This is not effective, I've successfully recovered drives where the PCB had been smashed, broken, etc. You just need to find the same model and replace with that.

Easier home made method

[will_die]

Here is an easier method (version that may make from work).
There are commerical version that do alot better bending job, try http://www.garner-products.com/ for videos and pictures to gladden your hard drive destroying heart.

Re:The Columbia test

[dbIII]

You don't need to melt the platters. You just need to get them hot enough to no longer be magnetic - that is above the Curie temperature for the alloy, which will be somewhere around 200C or so. When the magnetic domains reform there is none of them to be in the same place as they were before with the exception of a few edges on grain boundaries. Get even hotter and you'll change the grain size or even completely change the crystal structure and get grains in completely different places and sizes when it cools down.
That means heating the whole drive for long enough that the platters get hot and not just heating the outside of the thing the drive is in for a few minutes.

Re:I'll fuck it up good.

[larry+bagina]

the topic is hard drive destruction, not sex.

Re:The Columbia test

[damburger]

If the thermite is on top of the drive, it won't just heat the outside; it will rapidly melt the outside then fall into the interior of the drive. Thats the point. Youtube abounds with vidoes of thermite burning down through car engines, and hard drive cases are a lot less substantial.

Re:Not 100%, but otherwise cost-effective given ri

[damburger]

Over temperature might not correspond to data bit temperature for a very long time. If, for example, materials on the platter or elsewhere on the hard drive ablate they could keep it below the Curie temperature for quite a while. This is just speculation of course, I have no idea what hard-drive platters have on them - but I don't think its as simple as dialing an oven above the Curie temperature and then assuming the jobs done after X hours.

In the real world, fire is a bad solution

[name_already_taken]

Which would be the better solution.

A small terracotta pot without a hole in the bottom of it + a small amount of thermite is the cheapest way, thermite is cheap and reasonably easy to make.

Ok, do that in your office and see how many minutes your job lasts once the fire's out.

Even if we did it outside at my place of work, we'd get complaints from the neighbors. A mechanical/hydraulic crusher/bender thing could be made into something that looks like an office appliance.

Nothing says "no data recovery" like a drive reduced to its elemental components.

Except it's not. Burning is generally a process of rapidly combining reactants, not dividing them up. Plus, it's rather environmentally unfriendly - having a cloud of smoke go up is frowned upon in most places these days.

Re:In the real world, fire is a bad solution

[steelfood]

having a cloud of smoke go up is frowned upon in most places these days.

Just do it right outside the door to your building, and blame it on the other people hanging around there.

Re:In the real world, fire is a bad solution

[Vu1turEMaN]

We actually use thermite and sledgehammers at my work place to destroy old hard drives.

A stack of 3 of them, a line across the platter area, and a large 20lb sledge to hit them afterwards.

We've had issues in the past with hard drive processing places actually sending them overseas for disposal, but they end up getting recycled and reused.

Re:In the real world, fire is a bad solution

[Skye16]

Bollocks.

Get cancer and you can win the Tour de France.

It's true, I saw it on the tee vee.

Re:Not eco friendly

[Tuoqui]

I agree...

There was an article on 2600 recently about ATA Security Specification. You can apparently use it to perform a secure wipe which is what the DoD uses these days. Two passes at different offsets (-10% and +10%) to prevent recovery of magnetic data from the 'edges' of the sectors with a scanning electron microscope or something crazy like that. Rather than the crazy 36-pass wipe or something they used back in the day.

If it's good enough for the government spooks, its a good place to start for us.

Re:Why people keep unencrypted data?

[Iphtashu+Fitz]

My university group manages about 500 systems, mostly various flavors of solaris & linux with a few other unixes tossed in. First off, trying to encrypt all the disks in all of those systems (some of which are HUGE) would be a massive undertaking. Then there's the issue of trying to find an encryption system that's compatible across all these systems, the additional overhead needed to do the encryption/decryption, and the process of storing the encryption keys for all these systems. It's simply not worth the effort in large environments like this.

Rule 37: There is no 'overkill'

[mdmkolbe]

Rule 37: There is no 'overkill'. There is only 'open fire' and 'time to reload'.

Re:Not 100%, but otherwise cost-effective given ri

[dbIII]

A lot lower for alloys so it really depends on what it is. If we assume it's pure iron and a decades old drive then you are correct but small traces of other alloying elements have a dramatic effect (eg. for most stainless steel it's below room temperature in the extreme example).
There's a discussion at http://www.ocforums.com/archive/index.php/t-454159.html of a few different magnetic materials used in drives and Curie points with a few links to where they got the source data from.

There was an interesting bugtraq thread in 2005.

[arcade]

Let me pull a bugtraq posting from 2005 out for perusal. There are other interesting tidbits in that thread too.

http://seclists.org/bugtraq/2005/Jul/0464.html

===
From: dave kleiman
Date: Sun, 24 Jul 2005 15:30:30 -0400

Here is a quote directly from Peter I received Saturday, he asked to have it
passed on to the list.
-Snip-
>I'd love to hear some thoughts on this from security and data experts
>out there.
People should note the epilogue to the paper:
    Epilogue
    In the time since this paper was published, some people have treated the
35-
    pass overwrite technique described in it more as a kind of voodoo
    incantation to banish evil spirits than the result of a technical analysis
    of drive encoding techniques. As a result, they advocate applying the
    voodoo to PRML and EPRML drives even though it will have no more effect
than
    a simple scrubbing with random data. In fact performing the full 35-pass
    overwrite is pointless for any drive since it targets a blend of scenarios
    involving all types of (normally-used) encoding technology, which covers
    everything back to 30+-year-old MFM methods (if you don't understand that
    statement, re-read the paper). If you're using a drive which uses
encoding
    technology X, you only need to perform the passes specific to X, and you
    never need to perform all 35 passes. For any modern PRML/EPRML drive, a
few
    passes of random scrubbing is the best you can do. As the paper says, "A
    good scrubbing with random data will do about as well as can be expected".
    This was true in 1996, and is still true now.
    Looking at this from the other point of view, with the ever-increasing
data
    density on disk platters and a corresponding reduction in feature size and
    use of exotic techniques to record data on the medium, it's unlikely that
    anything can be recovered from any recent drive except perhaps one or two
    levels via basic error-cancelling techniques. In particular the the
drives
    in use at the time that this paper was originally written have mostly
fallen
    out of use, so the methods that applied specifically to the older, lower-
    density technology don't apply any more. Conversely, with modern high-
    density drives, even if you've got 10KB of sensitive data on a drive and
    can't erase it with 100% certainty, the chances of an adversary being able
    to find the erased traces of that 10KB in 80GB of other erased traces are
    close to zero.

Peter.
===

Easiest, Cheapest

Mail it to yourself via registered mail and then refuse deliver. Once it enters the Post Office loop, it'll never be seen again.

whiner

[rubycodez]

Ok, do that in your office and see how many minutes your job lasts once the fire's out

charred corpses don't terminate jobs

Plus, it's rather environmentally unfriendly

data processing including the manufacture and operation of hard drives is already environmentally unfriendly, and oxidizing metals is one way to get them back toward the more natural state for this world

Comment removed

[account_deleted]

Comment removed based on user account deletion

Reduce, Reuse, Recycle

[drinkypoo]

Reduce - Buy the biggest disks you can afford, they're worth repurposing and you won't have to spend as much on successors or the attendant labor.

Reuse - Repurpose disks for other purposes. Use last years' disks as part of your backup solution. Secure-format them on a low-power machine and put them on eBay.

Recycle - There must be SOMEONE willing to break the drives down and give you back the platters for destruction. There's significant aluminum in some of those drives.

All this crushing, drilling, and shooting of drives is fun. But it's also extremely wasteful. I understand destroying the drives if lives are at stake, but otherwise, stop.

ARGH! Physical destruction is the wrong answer!!!

[swordgeek]

Seriously, everyone comes up with these elaborate schemes to physically destroy disks, as a means of destroying data. Let's say this one MORE time: Can your method provide with a consistent, known, and guaranteed level of data destruction?

Consider the terms I used here.

1) Consistent: Is this going to be the same for every drive?
2) Known: How much effort in terms of hours and dollars is required to recover some or all of the data?
3) Guaranteed: Oh, really? Prove it to me!

With a software wipe, you can calculate (and measure) residual magnetism, and also account for 'hidden' areas on the disk (recovery sectors, etc.) With a hardware destruction method, what can you guarantee me?

In fact, the gushing article from PCPro even shows the weaknesses of this method:
"The Bustadrive, then, looks like it'll thwart all but the wealthiest and most determined of hard disk hackers"

Whereas, to the best of anyone's (public) knowledge, a single random overwrite will wipe data beyond any hope of recovery. A pass with DBAN will wipe it completely out, and if you pay for EBAN support, you can even get a certificate guaranteeing the data destruction.

Why are people so determined to destroy disks, rather than data? Even worse, people are eager to PAY for questionable disk destruction methods, rather than just simply destroy the data--what they want gone in the first place.

Not Overkill

[Pontiac]

I do work at a DOE site..

The current method is now an industrial shredder.. Nothing left bigger than a dime..
This goes for Hard Drives, Flash drives, cell phones.. Anything that can store data never goes out. till it's been through the shredder.
See one in action