June 23, 2015 All efforts are costly, hence, impossible to cover everything: all done
on prioritized, cost-justified basis—per your preferences &
commitment. "Absolute" destruction, sanitization or preservation are virtually impossible.
Things you can order me to do to a machine - IRREVERSIBLE
- decommission (destroy & remove from records)
- purge (recoverable)
- sanitize (preclude recoverability)
- certify & repurpose: internal/external
- forensically analyze (destructive, unless otherwise stipulated...)
- dispose of
- PRESERVING
- isolate (active but inaccessible)
- suspend (with provisions for reactivation)
- archive (offline & not in usable format)
- snapshot (standalone / incremental, aggregated)
- cross-contain
- perform digital forensics
- with an eye on legal "admissibility"
- following chain-of-custody (CoC) protocols, with full documentation
- per NIJ.gov digital evidence & forensics guidelines
NOTE:
a virtual machine is just like a real machine, and is treated as
such. The exceptions: there will be no need to discuss physical
disposal/spart parts; and no accounting entry of resale/residual value/disposal fees.
PROCESS SPARE PARTS- warehousing as whole unit, as is
- cataloged
- in bulk, unmanaged (graveyard)
- periodic review
- disect & extract spare parts (add to inventory)
|