Data storage Edit
|“||[the] [r]emoval of data from an IS (information system), its storage devices, and other peripheral devices with storage capacity, in such a way that the data may not be reconstructed using common system capabilities (i.e., keyboard strokes); however, the data may be reconstructed using laboratory methods. Cleared media may be reused at the same classification level or at a higher level. Overwriting is one method of clearing.||”|
|“||is a level of media sanitization that would protect the confidentiality of information against a robust keyboard attack. Simple deletion of items would not suffice for clearing. Clearing must not allow information to be retrieved by data, disk, or file recovery utilities. It must be resistant to keystroke recovery attempts executed from standard input devices and from data scavenging tools. For example, overwriting is an acceptable method for clearing media. . . . Studies have shown that most of today's media can be effectively cleared by one overwrite.||”|
|“||[t]he overwriting of information on magnetic memory/media such that the information cannot be reconstructed using normal system capabilities (such as through the keyboard, or with advanced diagnostic utilities). Clearing is sufficient to allow reuse, but not sufficient for declassification or sanitization. Clearing is less thorough than "purging."||”|
|“||[t]he process of transmitting, reconciling, and, in some cases, confirming payment orders prior to settlement, possibly including netting of instructions and the establishment of final positions for settlement.||”|
- ↑ CNSSI 4009.
- ↑ NIST, Guidelines for Media Sanitization 7-8 (NIST Special Publication 800-88) (Sept. 2006).
- ↑ NASA Automated Information Security Handbook, App. C.
- ↑ Internet Banking: Comptroller’s Handbook, at 66.