Wiping temp files after decrypting
-
there are options: 1, 3 and 7 passes, based on that DoD 5220.22-M standard/suggestion. Is that what you meant Richard?
:) Yes! that is exactly what i meant and is exactly what the security conscious user want’s see!
Thank you Drazen! Thank you ConeXware
-
Just to confirm that a recent update to PA that resolve’s ISO Driver’s also contains the 1st ever Wipe Facility for Archive’s…
http://www.powerarchiver.com/test/alpha120/powarc125003.exeAlthough, this is a very new feature and I am sure there may be possible bugs and improvments it would be nice to get some feedback and possible feature requests. Remember that this is a Archive tool not a goverment wiping program so anything outside that of Backup’s, Zips, FTP etc is not possible.
One area, that i would like to see within the “Configuration -> Security -> Wipe” Settings would be wipe options on specific file types and size’s within a custom box for example;
Type - Size From - Wipe Method
*PAE >5,000KB RCMP (DSX)
*PAE <500KB GUTMANN 35
*Zip ALL SIZES RANDOM
*7Z ALL SIZES US DoD 5220.22-M (E)And a normal Tick Box saying on the lines of “Wipe All Formats Same” and the Typical Drop Box.
Another feature within Shell Extensions under Extract “Extract & Wipe Archive” then under Compress “Compress & Wipe Original” it would also be good to see a new split “Wipe Options” including wipe PA History, Wipe Selected Archives “Brings up a Dialog Box and user can select multiple Archives for Wiping”
All of this is based around securing Temps, old archives, encrypted files used with PA only.
It would also be a good idea to see this particular Config Screen including passwork manager , policies and wipe methods lockable via a Password.
Obviosly, these are my idea’s some may disagree… however, i feel that this is a strong step forward for Conexware and i can see it scoring many firms tick boxes and personal users concirns about securing their personal files.
-
why would you base your security policy on size of type of archive?
Also, while functionality is there, options are explanations of those windows are not final.
-
why would you base your security policy on size of type of archive?
Also, while functionality is there, options are explanations of those windows are not final.
As always, I understand that “Beta” and “Alpha” dont represent a final product so I expect that the product isnt finished :) so no worries there fella.
With regards as to the file size, there are a few reasons;
1. Some Users would Encrypt with a specifc file and as such would want a higher level of security of that than others.
2. Wiping can take significant resources & time to finalize depending on the size having the ability to scale those options can aid… “You could even add a time of wipe ie when screensaver turns on”
3. Also reference size, some users would encrypt highly confidential files in splits in order to make it harder to find and compile as such the file sizes are smaller so again having a setting for *PAE to wipe on files always less than 2megs on Maximum Gutman.
When i worked for “Urenco” i worked in a small project team to write with a firm a security application to “secure” files some of those settings i mentioned were key aspects raised by end users dealing with specific secure files extracted from systems. Certain files of their sizes were destroyed with the highest form were others although larger in size but less confidential were wiped with a ramdom wipe “still secure” but not as timely.
These afterall are suggestions.
It would also be advised to have a Log just like you have backup log. this log writes a confirmation of wipe per file. something some firms request to validate secure wiping of confidential data. it also aids to confirming there were no interuptions.
-
Here is 12.5 Pre-Beta release:
http://www.powerarchiver.com/test/alpha120/powarc125003.exeit has it now properly named… you have 3 options:
1, 3, 7 passes, all based on DoD 5220.22-M.Obviously if you use 7 passes, it will overwrite those files 7 times, which means it will be slower than normal file delete.
-
Here is 12.5 Pre-Beta release:
http://www.powerarchiver.com/test/alpha120/powarc125003.exeit has it now properly named… you have 3 options:
1, 3, 7 passes, all based on DoD 5220.22-M.Obviously if you use 7 passes, it will overwrite those files 7 times, which means it will be slower than normal file delete.
Top Notch Boss! I shall count this as a Birthday present from ConeXware lol. I look forward to this being expanded on further as time goes on. and as always, happy to aid in testing, suggestions etc
-
anything other than this, write up new thread… for instance, separate wipe tool for deleting files securely? Wishlist forums :-)
