Information Technology Services Office
ITS staff access only
Start main content

Remove sensitive / confidential data on storage devices

Secure deletion of data from disk storage devices is essential to protect sensitive information.

01

 

Here are some methods for secure data deletion for different types of storage devices:

 

  • Methods for Secure Data Deletion from Hard Disk Drive (HDD):

  1. Use Microsoft Diagnostics and Recovery Toolset (MSDaRT) Disk Wipe:

    A tool provided by Microsoft for securely erasing the contents of a hard drive. You may find the steps here.

     

  2. Use Low-level formatting1:

    This method reinitializes the hard drive at the hardware level, effectively erasing all data. Multiple low-level formatting attempts might degrade the performance of the HDD and reduce the lifespan of the drive.

     

    You may find the software in the following list:

    1. Windows Diskpart2 (built-in command line in different Windows systems) 
    2. Intel Memory and Storage Tool 
    3. DBAN2 (Darik's Boot and Nuke) (third-party software) 
    4. HDD LLF By HDDGURU (third-party software) 

     

  3. Use a Degausser to erase the HDD:

    Degaussing uses a strong magnetic field to erase data from the hard drive to ensure the HDD cannot be reused. You may fill in the 'Degaussing Service Request Form' to ITS or contact the IT Operation Team at its.operations@polyu.edu.hk for the degaussing service.

     

  4. Physically destroy the HDD:

    Physical destruction of the hard drive ensures data cannot be recovered.
    (You may refer to the     NIST 800-88 standards to understand how to ensure that the destruction is thorough enough to prevent the data from being reconstructed.)

 

 

  • Methods for Secure Data Deletion from Solid State Disk (SSD) drive:

  1. Use your BIOS/UEFI (Motherboard):

    Some SSDs have built-in secure erase functions accessible through the BIOS/UEFI.

    Steps3:

    1. Enter your system BIOS / UEFI settings.
    2. Look for your drive and select it. It may be listed in a device index or under a separate tab; however, the exact location varies depending on the interface provided by your manufacturer.
    3. Look for a Secure Erase or data wipe option. Some programs may use other names, so you might need to look out for different terms.
    4. Perform the Secure Erase or wipe procedure, following any pertinent prompts or instructions that arise.

       

  2. Use a Manufacturer-provided driver software

    Manufacturer-provided software can be used to securely erase data from SSDs.

    Examples:

    1. Intel® Solid State Drive Toolbox3
    2. Samsung Magician2,3
    3. Western Digital Dashboard2
    4. Kingston SSD Manager2
    5. SK hynix SSD Tools2
    6. Adata SSD Toolbox2
    7. Sabrent Control Panel2
    8. Crucial Storage Executive2
    9. SeaTools for Seagate Drives2

       

  3. Use third-party driver software
    1. GParted3
    2. EaseUS3
    3. PartedMagic2,3

     

  4. Physically Destroy the SSD:

    Similar to hard drives, physically destroying the SSD ensures data cannot be recovered. (You may refer to the NIST 800-88 standards to understand how to ensure that the destruction is thorough enough to prevent the data from being reconstructed.)

 

 

  • Methods for Secure Data Deletion from Windows systems:

  1. Windows Diskpart2:

    A built-in command line tool in Windows for securely deleting data.

     

  2. SDelete4:

    A command-line utility designed for securely deleting files and freeing space on a disk.

     

     

  • Methods for Secure Data Deletion from Linux systems:

Command

Function

Applicable to HDD or SSD

Data Recovery Possibility

Impact on HDD/SSD Performance

hdparm5

Used to set and view the hardware parameters of hard disk drives.

HDD & (limited) SSD

Low
(if secure erase is used)

Minimal impact on HDD performance, but not recommended for use with SSDs

dd6

A low-level data copying tool that can be used for secure deletion.

HDD and SSD

Low
(if zeros or random data are used)

May affect performance, particularly on SSDs

 

It is important to choose the appropriate method based on the type of storage device and the sensitivity of the data being erased. Please ensure that you follow the recommended guidelines and best practices for secure data deletion.

 

If you have any questions or require assistance with data deletion, please contact the IT HelpCentre (Tel: 2766 5900, WhatsApp / WeChat: 6577 9669) or reach out to us via the IT Online ServiceDesk.

02

Reference

  1. Tom’s Hardware, How to Securely Erase an SSD or HDD Before Selling It or Your PC, [2023] https://www.tomshardware.com/how-to/secure-erase-ssd-or-hard-drive
  2. HP, How to Secure Erase an SSD Drive [2023] https://www.hp.com/hk-en/shop/tech-takes/post/how-to-secure-erase-an-ssd-drive
  3. PolyU IT Security webpage, Secure Erasure of Data on Solid State Drives (SSDs) to Prevent Malicious Data Recovery [2017], https://www.polyu.edu.hk/itsecurity/index.php/security-newsletters/200-secure-erasure-of-data-on-solid-state-drives-ssds-to-prevent-malicious-data-recovery
  4. Linux Remove All Partitions / Data And Create Empty Disk, [2024] https://www.cyberciti.biz/faq/linux-remove-all-partitions-data-empty-disk/

 

We use Cookies to give you a better experience on our website. By continuing to browse the site without changing your privacy settings, you are consenting to our use of Cookies. For more information, please see our Privacy Policy Statement.

Your browser is not the latest version. If you continue to browse our website, Some pages may not function properly.

You are recommended to upgrade to a newer version or switch to a different browser. A list of the web browsers that we support can be found here