Destroying data on smartphones
1. Is performing a wipe in ActiveSync or BlackBerry a sufficient method to destroy sensitive data on a smartphone? If so what type of data destruction methods are used in the scripting? DOD? 3 pass? Etc.
2. And what is the best way to destroy data on a non-exchange synchronized smartphone.
2. And what is the best way to destroy data on a non-exchange synchronized smartphone.
Hi,
Can you provide more information on the type of smartphone/OS being used?
Several tools exist from the likes of McAfee and others which might be suitable but the options available vary between mobile OS - e.g. Windows Mobile 6.x is easier to manage and secure than Android, for example.
In addition, sensitive information should be encrypted as bootloader attacks could render the internal flash open to interrogation and unencrypted data would therefore be available.
Unless it's a 3rd party product which enforces a wipe method, then in many cases you'd be reliant on the vendor and/or the OS provider to determine the wipe method employed - this will probably vary between platforms and could be weaker on some than others.
Flash doesn't work in the same way as magnetic media, however, so the multiple re-write method, which is used to remove a magnetic residue on a magnetic drive, isn't necessarily applicable to Flash.
Regards,
RobMobility.
Can you provide more information on the type of smartphone/OS being used?
Several tools exist from the likes of McAfee and others which might be suitable but the options available vary between mobile OS - e.g. Windows Mobile 6.x is easier to manage and secure than Android, for example.
In addition, sensitive information should be encrypted as bootloader attacks could render the internal flash open to interrogation and unencrypted data would therefore be available.
Unless it's a 3rd party product which enforces a wipe method, then in many cases you'd be reliant on the vendor and/or the OS provider to determine the wipe method employed - this will probably vary between platforms and could be weaker on some than others.
Flash doesn't work in the same way as magnetic media, however, so the multiple re-write method, which is used to remove a magnetic residue on a magnetic drive, isn't necessarily applicable to Flash.
Regards,
RobMobility.
ASKER
@RobMobility: Wow. Thanks for your response and for the insight! So if I understand you correctly the commands on both Exchange and BlackBerry to “wipe” the phone are not reliable? How do you clean phones without breaking them? Is there a particle way for SMBs to do so?
Currently I have four phones that need wiping/cleaning. The carrier is ATT for all except the BlackBerry which is T-Mobile. a) iPhone 3G/ 4.2.1, b) HTC Inspire/Android 2.2.1, c) HTC Fuse/Window Mobile 6.1 Pro & d) BlackBerry Pearl 8220/ OS 4.6.0.259.
The iPhone is not setup on Exchange so I can’t issue a remote wipe command. How do you recommend cleaning the phone for selling purposes?
The other phones mentioned above are on Exchange and BlackBerry respectively. They have since had there SIMs removed and put into new replacement phones. How would you suggest I clean these?
Currently I have four phones that need wiping/cleaning. The carrier is ATT for all except the BlackBerry which is T-Mobile. a) iPhone 3G/ 4.2.1, b) HTC Inspire/Android 2.2.1, c) HTC Fuse/Window Mobile 6.1 Pro & d) BlackBerry Pearl 8220/ OS 4.6.0.259.
The iPhone is not setup on Exchange so I can’t issue a remote wipe command. How do you recommend cleaning the phone for selling purposes?
The other phones mentioned above are on Exchange and BlackBerry respectively. They have since had there SIMs removed and put into new replacement phones. How would you suggest I clean these?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Another option is to wipe the data and reset the devices and then re-install the OS.
http://www.ehow.com/how_4691139_reinstall-operating-system-iphone.html
Regards
RobMobility.
http://www.ehow.com/how_4691139_reinstall-operating-system-iphone.html
Regards
RobMobility.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you both for all your input. My apologies for the delay…I was out on sick leave.
I am splitting points since you both provided so much solid info on the subject.
I am splitting points since you both provided so much solid info on the subject.
The only way to secure data on a flash memory device or device which uses flash memory is to destroy it (crush etc).
Due to the methods used by flash when deleting information and preventing cells becoming damaged through too many re-writes (wear levelling), some data may be left on the flash memory which isn't deleted when it's wiped.
Products are available to securely wipe the functioning areas of flash memory but these do not cover the areas that are not being used.
A sufficiently motivated and funded organisation wanting to compromise your company's data could potentially recover some of this information, but in reality unless you are a military or other government department, it's unlikely to be a significant concern.
Regards,
RobMobility.