Hubbry Logo
Shred (Unix)Shred (Unix)Main
Open search
Shred (Unix)
Community hub
Shred (Unix)
logo
7 pages, 0 posts
0 subscribers
Be the first to start a discussion here.
Be the first to start a discussion here.
Shred (Unix)
Shred (Unix)
Shred (Unix)
View on Wikipedia
from Wikipedia
shred
DeveloperColin Plumb
Repository
Operating systemUnix-like
PlatformCross-platform
TypeCommand
License

shred is a command on Unix-like operating systems that can be used to securely delete files and devices so that it is extremely difficult to recover them, even with specialized hardware and technology; assuming recovery is possible at all, which is not always the case. It is a part of GNU Core Utilities.[1] Being based on the Gutmann method paper,[1] it suffers from the same criticisms and possible shortcomings.

Background

[edit]
Further information: Data erasure

For efficiency, the process of erasing a file from storage using the rm command usually only erases the file's file-system entry while keeping the content of the file intact. This frequently allows commonly available software to recover the "erased" file's data. If the file data is stored on magnetic media such as a HDD, even if the file is overwritten, residual magnetic fields may allow data recovery using specialist hardware equipment (this claim is disputed; see Gutmann method § Criticism). To prevent this, shred overwrites the contents of a file multiple times, using patterns chosen to maximize destruction of the residual data.

Features

[edit]

shred can be invoked either on ordinary files or on devices (such as hard disk partitions), which are represented as files in Unix. By default, the command overwrites the file three times with multiple patterns, but the number is user configurable. It has an option to do an additional final overwrite with zeroes, which may help to hide the fact that it was used.

By default, shred also shreds file slack (unused space in file allocations). For example, a 5 KB file on a file system with 4 KB clusters actually requires 8 KB of storage. Shred has an option to overwrite only the file itself, as well as an option to delete the file after it has completed operation.

Limitations

[edit]

A limitation of shred when invoked on ordinary files is that it only overwrites the data in place without overwriting other copies of the file. Copies can manifest themselves in a variety of ways, such as through manual and automatic backups, file system snapshots, copy-on-write filesystems, wear leveling on flash drives, caching such as NFS caching, and journaling.[1] All limitations imposed by the file system can be overcome by shredding every device on which the data resides instead of specific files. However, since wear leveled devices do not guarantee a fixed relationship between logical blocks addressable through the interface and the physical locations in which the data is stored, shredding may not provide adequate security. If available, the SATA secure erase command, issued through hdparm or a similar utility, may be helpful in this situation. Even for magnetic devices, SATA secure erase will be faster and more reliable than shredding. Physical destruction may be necessary to securely erase devices such as memory cards and unusable hard disks.

Gutmann method, which shred is based on, is known to fail on USB sticks.[2]

Alternatives

[edit]

The scrub command overwrite sequence of data being compliant with a Dec. 2005 draft of National Nuclear Security Administration Policy Letter NAP-14.x. Written by Jim Garlick of LLNL, it offers a selection of overwrite sequences, though all ultimately suffer from the same limitations outlined above.[3]

See also

[edit]
  • BleachBit – Free disk space cleaner, privacy manager, and computer system optimizer

References

[edit]
[edit]
Revisions and contributorsEdit on WikipediaRead on Wikipedia

Shred (Unix)

View on Grokipedia
from Grokipedia
Shred is a command-line utility in operating systems, part of the GNU Coreutils package, designed to securely overwrite files or devices multiple times with pseudorandom data to obscure previous contents and hinder forensic recovery. By default, it performs three passes of overwriting without removing the file, allowing it to be used on both regular files and block devices like hard drives. The tool overwrites the target multiple times with pseudorandom data (by default, three passes), optionally incorporating fixed patterns inspired by Peter Gutmann's 1996 paper on secure deletion techniques when more passes are used, to obscure previous contents on traditional magnetic media. Users can customize the number of passes with the -n option (e.g., -n 1 for a single pass) or add a final zero-filling pass via -z to make the file appear as empty data. Additional flags include -u to deallocate and remove the file after shredding, and -v for verbose progress reporting. Despite its effectiveness on traditional magnetic media, shred has significant limitations on modern storage systems. It may fail to fully overwrite data on log-structured file systems like or in journal mode, RAID arrays, snapshots, or compressed volumes, where data is not always rewritten in place. Solid-state drives (SSDs) pose further challenges due to wear-leveling algorithms that can preserve old data in hidden areas, and bad blocks might retain sensitive information even after multiple passes. For these reasons, shred is most reliable on unencrypted, non-journaled file systems without advanced features.

History and Development

Origins in GNU Coreutils

The shred utility was introduced to the project in 1999 as part of the GNU Fileutils package, which later merged into in September 2002, providing a tool for secure in environments. Developed primarily by Colin Plumb, the utility addressed the growing need for reliable methods amid increasing concerns over from discarded storage media in both civilian and sensitive applications. Plumb's design emphasized overwriting files multiple times to thwart forensic recovery techniques, drawing inspiration from established sanitization practices suitable for Unix systems. The initial motivations for shred stemmed from the limitations of simple in Unix, where removed files could often be recovered using specialized tools due to residual magnetic traces on disks. Plumb focused on creating a command-line tool that could effectively erase data by performing repeated overwrites, tailored to the encoding schemes used in common storage devices like hard disks and floppies. This approach was influenced by the U.S. Department of Defense standard DoD 5220.22-M, which specifies overwriting media with patterns such as zeros, ones, and random data to ensure sanitization for government and use. By integrating these principles, shred aimed to make "extremely difficult even with advanced hardware probing." The first public release occurred in May 1999 with the development version of Fileutils 4.0d, hosted by the on their FTP servers, allowing immediate access to the source code under the GNU General Public License. This version included the core overwriting functionality, with source available at ftp://alpha.gnu.org/gnu/fetish/fileutils-4.0d.tar.gz. Initial documentation was provided in the Fileutils manual, detailing usage and the rationale for multiple passes, which has since been incorporated into the comprehensive Coreutils manual. The 's integration of shred into its core utilities underscored its role in promoting secure practices within the open-source community.

Evolution and Standards Compliance

The shred utility, as part of Coreutils, has evolved through iterative updates to better align with evolving practices and system portability requirements. Early implementations emphasized multi-pass overwriting inspired by historical methods, but subsequent releases refined the approach to prioritize on modern hardware, reducing the default number of passes to three while supporting configurable options for up to 35 passes based on legacy patterns. A key aspect of this evolution is shred's alignment with established media sanitization standards, particularly NIST Special Publication 800-88 (initially released in 2006, revised in 2014, and further revised in September 2025), which outlines guidelines for clearing, purging, and destroying data on various media types. Shred's overwriting functionality supports the "Clear" method for non-volatile magnetic media, recommending a single pass with random data or zeros to render information unrecoverable, thereby avoiding the need for excessive passes on contemporary hard drives. The utility's optional support for the —originally proposing 35 passes to address magnetic —has been effectively deprecated in practice, as both NIST guidelines and Gutmann himself have clarified that such extensive overwriting is obsolete for drives manufactured after the mid-1990s due to zoned constant-density recording and per-track encoding. GNU Coreutils, including shred, incorporates POSIX compliance to ensure portability across Unix-like systems such as Linux distributions and BSD variants, adhering to the POSIX.1 standard for basic utility interfaces where applicable, though shred itself extends beyond POSIX as a GNU-specific tool for secure erasure. This design facilitates consistent behavior in diverse environments, from embedded systems to servers, without relying on platform-specific features. As of November 2025, GNU Coreutils version 9.9 (released November 10, 2025) represents the latest stable release, focusing on general stabilization and performance improvements across utilities without altering shred's core overwriting logic.

Core Functionality

Command Syntax and Basic Usage

The shred command in systems, part of the GNU Coreutils package, is invoked using the general syntax shred [OPTION]... [FILE]..., where options modify the overwriting behavior and FILE specifies the target(s) to process. This allows users to overwrite regular files, devices, or sparse files multiple times with random data to obscure contents, making recovery more difficult. By default, shred performs three overwrite passes without removing the file afterward, rounding the file size up to the next multiple of the file system block size to cover slack space. Key options control the process's details and output. The -n, --iterations=N option sets the number of overwrite passes to N (default: 3), enabling fewer passes for speed or more for added security up to a practical limit. The -z, --zero flag adds a final pass filling the file with zeros, which can help conceal that shredding occurred by avoiding patterns detectable in file system tools. For monitoring, -v, --verbose outputs progress information to , showing each pass's completion. The -u, --remove option integrates shredding with deletion by deallocating and removing the file after overwriting, effectively combining secure erasure with the functionality of the rm command; it defaults to a "wipesync" method that truncates, overwrites the name, and synchronizes to disk before unlinking. An example of basic usage is shred -u file.txt, which overwrites file.txt three times and then deletes it. With verbose output and a single pass, shred -v -n 1 -u sensitive.log provides a faster operation while displaying progress and ensuring removal. For broader scenarios, shred handles single files directly but requires combination with tools like find for directories, as in find /path/to/dir -type f -exec shred -u {} \; to recursively overwrite and delete all files within. It also supports devices, such as shredding a USB partition with shred -v -n 1 /dev/sdb1 to target the entire block device while showing progress. Users must exercise caution with devices to avoid unintended on mounted or active storage.

Overwriting Mechanisms

The overwriting mechanisms employed by shred involve a series of sequential write operations across the target file's allocated blocks, utilizing predefined patterns to supplant the original data and complicate forensic recovery. Each pass fully traverses the file from start to end, ensuring comprehensive coverage of the data region. The tool draws inspiration from established secure deletion techniques, particularly those outlined in Peter Gutmann's analysis of magnetic media , though adapted for efficiency in a Unix environment. By default, shred executes three overwrite passes unless the user specifies a different number via the --iterations option. Each of these passes fills the file with pseudo-random bytes generated from a secure source to disrupt residual magnetic patterns. These patterns cycle from an internal array of predefined types for additional passes; beyond three, it continues through more varied Gutmann-inspired sequences, such as all zeros (0x00), all ones (0xFF), and alternating 0x55 and 0xAA for multi-bit encoding disruption. Pseudo-random data generation prefers the kernel's /dev/urandom device for high-entropy input when available on the system; in its absence, shred falls back to the implemented within coreutils. Users can override this with the --random-source option to specify an alternative entropy source. In processing file blocks, shred first determines the file's current via system calls like fstat. It then computes an effective length by rounding up to the nearest multiple of the underlying file system's block (typically 512 bytes or larger, depending on the medium), thereby targeting not only the logical file but also any trailing slack space in the final allocated block where residual might linger. The -x or --exact option suppresses this rounding, confining overwrites strictly to the reported file and avoiding potential issues with oversized writes on certain filesystems or devices. The step-by-step overwriting procedure unfolds as follows:
  1. Open the target file in read-write mode, verifying accessibility and obtaining its metadata, including and block alignment.
  2. If a custom is specified via --size, truncate or limit the target length accordingly; otherwise, use the full computed , potentially extended for slack.
  3. Initialize the random source (e.g., seed or open /dev/urandom) and generate the sequence of patterns for the configured number of passes.
  4. For each pass in sequence: seek to file offset zero, then write the corresponding pattern block-by-block across the entire effective length, using buffered I/O for efficiency.
  5. Invoke fsync after each pass to flush changes to the physical storage, minimizing reliance on filesystem caching.
  6. If the --remove option is active, truncate the file to zero length, overwrite its name with random or fixed patterns (e.g., "?", random bytes), and unlink it after all passes.
For handling growing files, shred captures the size at invocation and overwrites only up to that point, but the --size parameter enables specification of a maximum byte count, allowing control over writes to EOF in scenarios where the file might expand during processing. This ensures the mechanism remains applicable to dynamic content without indefinite extension. Overall, these steps prioritize in-place modification, assuming the underlying storage supports direct overwrites without journaling or copy-on-write complications.

Security Considerations

Effectiveness Against Data Recovery

Shred's overwriting process theoretically mitigates by altering the magnetic domains on traditional hard disk drives (HDDs), thereby reducing magnetic —the residual magnetization that can retain faint traces of previous data. This remanence arises from the physical properties of magnetic media, where prior bit states may leave echoes detectable by advanced forensic tools, but repeated overwriting with fixed or random patterns disrupts these domains, making reconstruction infeasible under ideal conditions. Empirical studies confirm that 1-3 overwrite passes are sufficient for most HDDs to prevent recovery, aligning with NIST Special Publication 800-88 Rev. 2 (September 2025) guidelines, which state that a single pass with a fixed pattern like binary zeros typically hinders even using state-of-the-art laboratory techniques. For instance, research by Wright et al. demonstrates that one overwrite renders data unrecoverable on modern drives, with no documented successful recoveries from overwritten HDDs since the . These findings indicate over 99% prevention of recovery for sensitive information when passes are completed fully. Success depends on factors such as file size, which affects the completeness of the overwrite across allocated blocks; ensuring full overwrite without interruptions; and avoiding partial writes that could leave unerased remnants. Larger files benefit from more uniform coverage, while incomplete operations due to system errors may compromise effectiveness. Recovery probability decreases exponentially with additional passes; for example, after a single random overwrite on modern HDDs, the chance falls below 0.01%, with further passes providing minimal additional benefit as the risk is already negligible. This aligns with pass configurations using , which enhance unpredictability against pattern-based forensic analysis.

Pass Configurations and Randomization

The shred utility in Coreutils enables customization of overwriting passes through the -n or --iterations=NUM option, which specifies the number of times the file is overwritten instead of the default of three passes. This allows users to balance security needs with processing time; for instance, a single pass may suffice for modern hard drives, while increasing to 25 passes ensures all of shred's internal overwrite patterns (including NUL bytes, all ones, and pseudo-random data) are applied at least once. Recommendations for sensitive data often range from 3 to 7 passes, influenced by historical standards such as the U.S. Department of Defense's DoD 5220.22-M (3- or 7-pass methods using zeros, ones, and random data) or Peter Gutmann's 1996 proposal of 35 passes tailored to obsolete magnetic media encoding schemes, though Gutmann later clarified that such extensive overwriting is unnecessary and outdated for contemporary hardware. Randomization enhances shred's security by filling the file with unpredictable data, using a built-in pseudo-random number generator by default to produce patterns that obscure remnants of original content. Users can override this with the --random-source=FILE option, directing shred to draw from a specified source such as /dev/urandom or /dev/random for both the overwrite and to randomize the order of passes, thereby complicating forensic analysis. In systems, /dev/urandom offers non-blocking access to cryptographically secure pseudo-random bytes seeded from kernel pools (e.g., hardware events like inter-keystroke timings and network interrupts), making it suitable for bulk operations without stalling, whereas /dev/random blocks reads when the entropy estimate falls low to prioritize higher-quality for critical applications. For targeted operations, the -s or --size=BYTES option limits shredding to the first specified portion of the file (e.g., -s 1M for the initial ), supporting suffixes like K, , or G for convenience and allowing partial overwrites on large files or devices. Specific patterns, such as those in DoD 5220.22-M, are not natively selectable in shred but can be implemented via custom scripts that pipe patterned data (e.g., zeros followed by ones and random bytes) through tools like dd in combination with shred's randomization. Performance considerations arise directly from pass configurations, as each pass writes data equivalent to the , resulting in total I/O roughly proportional to the number of passes multiplied by the ; for example, three passes demand approximately three times the writes of a simple deletion, potentially taking minutes to hours depending on storage speed and . Increasing passes for added randomization or pattern coverage thus trades enhanced security against longer execution times, with single-pass random overwriting often recommended as efficient for most modern scenarios.

Limitations and Challenges

File System and Storage Interactions

The shred utility in Unix-like systems interacts with file systems by attempting to overwrite file data in place multiple times, but its effectiveness is significantly limited by modern file system designs that do not guarantee in-place overwrites. On journaled file systems such as and , overwriting may fail to eliminate all traces of the original data, particularly when journaling metadata or data blocks, as these systems maintain separate logs or copies that preserve prior versions independently of the primary file blocks. For specifically, shred functions adequately in the default data=ordered or data=writeback modes but is less effective in data=journal mode, where file data is also journaled, potentially leaving recoverable copies in the journal. Similarly, 's journaling mechanism can retain unoverwritten snapshots or transaction logs, undermining shred's attempts to securely erase data. Log-structured file systems, such as , introduce further challenges due to their (COW) architecture, which avoids in-place modifications by creating new versions of data blocks while leaving old ones intact until explicitly garbage-collected. In , shred's overwrites target only the current file incarnation, but prior versions persist in the storage pool's block pointers or snapshots, rendering the operation ineffective for complete data obliteration without additional steps like destroying snapshots or the dataset itself. This COW behavior, combined with ZFS's journaling of data, ensures that shred cannot reliably overwrite all historical data locations. When applied at the device level, such as directly to a block device (e.g., /dev/sda) or a partition, shred poses substantial risks by overwriting the entire target, potentially destroying all on the device or partition indiscriminately, including unrelated files, boot sectors, or metadata. The -z or --zero option exacerbates this by appending a final pass of zeroed after random overwrites, which can further complicate recovery of non-sensitive on shared devices while not guaranteeing erasure if features like bad block remapping intervene. Users must exercise extreme caution, as such operations can render the entire storage medium unusable without backups. In terms of compatibility, shred operates on most Unix file systems that support in-place overwrites but encounters issues on network file systems like NFS, particularly version 3 clients that cache data in temporary locations or servers that create automatic snapshots, such as Network Appliance's implementation. Without caching or direct block access, overwrites may not propagate correctly to the remote storage, leaving original data intact on the server side.

Applicability to Modern Hardware

The shred utility, designed primarily for overwriting data on traditional hard disk drives (HDDs), encounters substantial limitations on solid-state drives (SSDs) due to inherent hardware features that disrupt in-place data modification. TRIM notifies the SSD controller to mark blocks as unused, enabling internal erasure and garbage collection that can invalidate overwrite attempts; evenly distributes writes across flash cells to prevent premature wear on specific areas; and over-provisioning allocates 7-28% of total capacity as hidden reserve space inaccessible to the operating system, where data may persist untouched. These mechanisms collectively scatter and relocate data, often resulting in incomplete sanitization—empirical evaluations from the early demonstrated that overwriting methods akin to shred left at least 10 MB of a 100 MB file recoverable across SSD models, equating to at least 10% residual data, with some techniques recovering nearly the entire file due to remapping by the flash translation layer (FTL). More recent analyses confirm that such software overwriting remains unreliable, as FTL algorithms prioritize and over host-directed erasure, potentially leaving data in over-provisioned or bad-block areas intact. NVMe interfaces, common in high-performance flash storage, exacerbate these issues through sophisticated garbage collection that operates asynchronously and independently of user-level commands like shred. This process consolidates valid data and erases invalid blocks in the background, often remapping logical addresses to new physical locations before or during overwrite operations, thereby bypassing shred's attempts to target specific sectors. As a result, traditional multi-pass overwriting achieves limited efficacy on NVMe SSDs, with studies indicating that host-initiated overwrites fail to address the full physical extent of . Instead, the ATA Secure Erase command is recommended, as it invokes the drive's to reset all cells—including over-provisioned regions—to a factory state, ensuring uniform erasure without excessive wear. Shred's scope is confined to local files on the host system, rendering it inapplicable to or virtualized storage where data resides on remote, abstracted . In environments like (AWS) S3, shred cannot influence server-side storage; secure deletion instead relies on provider APIs, such as the Delete Objects operation, which permanently removes objects from non-versioned buckets with no built-in recovery mechanism. Virtualized setups, such as those using hypervisors like KVM or , similarly limit shred to the guest , requiring administrator-level actions or provider tools to sanitize underlying shared storage pools. By 2025, the coreutils version of shred retains longstanding warnings in its manual about reliance on in-place overwriting, explicitly noting that this assumption fails on platforms with log-structured, journaled, or RAID-like systems—implicitly including SSDs with FTL —but features no major algorithmic enhancements to adapt to flash-based hardware. Documentation emphasizes verifying hardware compatibility and advises against shred for non-HDD media, aligning with broader guidance from standards bodies like NIST, which favor device-specific erasure over generic overwriting.

Alternatives and Best Practices

Comparable Unix Tools

The wipe command serves as a standalone secure deletion utility for systems, performing multiple overwrite passes (up to 35 by default) using patterns such as zeros, ones, random data, and Gutmann-derived sequences to obscure file contents before removal. Unlike shred, which is part of coreutils suite and emphasizes configurable passes with options like -n for pass count, wipe incorporates device-specific features such as and ATA cache flushing via HDIO_SET_KEEPSETTINGS to ensure complete writes, making it suitable for older magnetic media. However, wipe has seen limited maintenance since its last release in 2004 (version 2.2.0), rendering it less integrated and updated compared to actively developed tools like shred. The srm (secure remove) utility acts as a command-line compatible replacement for the standard rm command, overwriting target files multiple times using methods such as the default 35-pass Gutmann algorithm (including random data and specific patterns) or the DoD 5220.22-M standard (7 passes of random data, complements, and verification)—before unlinking them to prevent recovery. Designed for POSIX systems and implemented in C, srm prioritizes ease of use by mirroring rm's syntax, such as support for recursive (-r) and interactive (-i) modes, but it has been largely deprecated in favor of shred due to its origins in the late 1990s and reduced presence in modern package repositories. On macOS, srm was bundled until version 10.12 (Sierra) in 2016, after which Apple removed it because multi-pass overwriting proved ineffective against SSD wear-leveling and could prematurely degrade flash storage. For low-level custom overwrites, the dd command provides a basic alternative by allowing users to manually pipe random data from /dev/urandom or zeros to a file (e.g., dd if=/dev/urandom of=file bs=1M count=1), enabling single-pass or scripted multi-pass deletion without relying on higher-level automation. While versatile for devices and partitions, dd lacks shred's built-in randomization, pass management, and verbose reporting, requiring explicit user configuration for security and increasing the risk of errors on non-file targets. Platform variations exist in shred implementations; the BSD version (e.g., in and ) offers a more minimalistic approach, typically performing a single random overwrite pass on writable files before deletion via the -P option, without the multi-pass customization or final zeroing (-z) available in GNU shred. GNU shred, distributed via coreutils, provides broader options like exact byte shredding (-s) and forced permissions (-f), making it preferable for cross-platform consistency on and compatible BSD setups where GNU tools are installed.

Complementary Secure Deletion Strategies

Full-disk encryption provides a preventive strategy for secure deletion by rendering data inaccessible without the need for overwriting tools like shred. Systems such as on and on macOS encrypt the entire storage volume, ensuring that deleting the encryption key effectively sanitizes all data, as it becomes unrecoverable without the key. This cryptographic erase method, recognized in NIST SP 800-88 guidelines, leverages built-in hardware or software to purge keys, making it suitable for both hard drives and solid-state drives where traditional overwriting may be inefficient. Secure erase commands offer a hardware-level approach to data deletion, bypassing file-system interactions and directly targeting storage media. For ATA-compatible hard disk drives and solid-state drives, the hdparm utility issues the ATA Secure Erase command, which instructs the drive firmware to overwrite all sectors, including bad ones, in a single pass optimized by the manufacturer. Similarly, for NVMe drives, the nvme-cli tool performs a format operation with secure erase settings, such as user data erase or cryptographic erase, which resets the drive to a factory state by clearing encryption keys or overwriting namespaces. These methods are recommended for end-of-life devices, as they ensure compliance with sanitization standards without the performance overhead of multi-pass software overwrites. Best practices for secure deletion emphasize proactive data lifecycle management to minimize recovery risks. Organizations should avoid creating unnecessary backups of sensitive data or implement encrypted, short-retention backups that are securely purged upon restoration, aligning with GDPR's storage limitation principle and CCPA's data minimization requirements. Ephemeral storage, such as Unix tmpfs or container-local volumes, inherently supports secure deletion by storing data in that is automatically cleared on process termination or reboot, reducing persistence without additional wiping. Compliance with regulations like GDPR and CCPA involves defining retention periods based on purpose, conducting regular audits, and automating deletion to prevent indefinite storage. Hybrid approaches integrate shred with other techniques for comprehensive coverage, particularly in complex environments. For free space wiping, tools like sfill from the secure-delete package can overwrite unused filesystem areas after shredding files, ensuring remnants are purged without full disk operations; this may follow filesystem checks with to verify integrity post-wipe. , via technologies like Docker on Unix systems, provides isolation by confining data to ephemeral namespaces and volumes, allowing secure deletion through container removal, which discards isolated storage without affecting the host. These combinations enhance shred's effectiveness on modern hardware by addressing file-system fragmentation and leveraging virtualization for boundary enforcement.

References

  1. https://www.gnu.org/software/coreutils/manual/html_node/shred-invocation.html
  2. https://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html
  3. https://www.gnu.org/brave-gnu-world/issue-1.html
  4. http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html
  5. https://csrc.nist.gov/pubs/sp/800/88/r2/final
  6. https://www.gnu.org/software/coreutils/
  7. https://man7.org/linux/man-pages/man1/shred.1.html
  8. https://github.com/coreutils/coreutils/blob/master/src/shred.c
  9. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-88r2.pdf
  10. https://www.researchgate.net/publication/221160815_Overwriting_Hard_Drive_Data_The_Great_Wiping_Controversy
  11. https://commons.erau.edu/cgi/viewcontent.cgi?article=1131&context=jdfsl
  12. https://www.darkreading.com/application-security/ssds-prove-tough-to-erase
  13. https://www.researchgate.net/publication/221353708_Reliably_Erasing_Data_From_Flash-Based_Solid_State_Drives
  14. https://datadestruction.com/ssd-data-destruction-what-works-what-fails-and-best-practices-for-enterprises/
  15. https://wiki.archlinux.org/title/Solid_state_drive/Memory_cell_clearing
  16. https://dl.acm.org/doi/10.5555/1960475.1960483
  17. https://docs.aws.amazon.com/AmazonS3/latest/userguide/delete-objects.html
  18. https://wipe.sourceforge.net/
  19. https://linux.die.net/man/1/wipe
  20. https://srm.sourceforge.net/
  21. https://www.manpagez.com/man/1/srm/
  22. https://sourceforge.net/projects/srm/
  23. https://discussions.apple.com/thread/7675060
  24. https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-88r1.pdf
  25. https://missing.csail.mit.edu/2019/security/
  26. https://dodcio.defense.gov/Portals/0/Documents/Cyber/Slicksheet_BestPracticesForKeepingYourHomeNetworkSecure_Web_update.pdf
  27. https://man7.org/linux/man-pages/man8/hdparm.8.html
  28. https://grok.lsu.edu/article.aspx?articleid=16716
  29. https://nvmexpress.org/open-source-nvme-management-utility-nvme-command-line-interface-nvme-cli/
  30. https://manpages.debian.org/testing/nvme-cli/nvme-format.1.en.html
  31. https://www.cookieyes.com/blog/ccpa-data-retention/
  32. https://usercentrics.com/knowledge-hub/gdpr-data-retention/
  33. https://docs.redhat.com/en/documentation/openshift_container_platform/4.3/html/storage/understanding-ephemeral-storage
  34. https://www.cookieyes.com/blog/gdpr-how-long-to-keep-data/
  35. https://www.zendata.dev/post/data-retention-policy-101-best-practices-for-storing-and-deleting-data-responsibly
  36. https://wiki.archlinux.org/title/Securely_wipe_disk
  37. https://www.aquasec.com/blog/container-isolation/
  38. https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-190.pdf
Add your contribution
Related Hubs
User Avatar
No comments yet.