Secure Erase is a process for securely deleting data that follows standards developed by the Defense Security Service (DSS). These standards were developed to solve the problem of secure and permanent removal of data, and this capability is now used by many commercial enterprises. These standards require multiple passes to erase data. In the process of erasing, the system overwrites data with zeros, a random pattern of data, or ones (1s) to make the original contents unreadable.
In the DR Series system, two modes of secure erase have been adopted: 3-pass and 7-pass standards.
- 3 passes (US DoD 5220.22-M (C))
- Pass 1: Writing zeros.
- Pass 2: Writing pseudo random pattern.
- Pass 3: Writing ones.
- 7 passes (US DoD 5220.22-M (ECE))
- Pass 1-3: Writing pattern according to the 3-pass mode.
- Pass 4: Writing a pseudo random pattern.
- Pass 5-7: Writing pattern according to the 3-pass mode.
The Secure Erase process can be completed at the system level by using the DR Series system CLI. This feature securely erases all data with a 3-pass or 7-pass mode and runs during the system initialization. This method erases all of the stored data while keeping the system in tact. See the
DR Series System Command Line Reference Guide for more information.
|
NOTE: This capability is not supported on the DR2000v. |
The DR Series system supports the following file system protocols. The Rapid Data Access (RDA) protocols below provide a logical disk interface that can be used with network storage devices to store data and support data storage operation.
- Network File System (NFS)
- Common Internet File System (CIFS)
- DR Rapid
- Rapid NFS
- Rapid CIFS
- RDA with OpenStorage Technology (OST)
- RDA with NetVault Backup
- RDA with vRanger
The Network File System (NFS) is a file system protocol that is designated to be a file server standard, and its protocol uses the Remote Procedure Call (RPC) method of communication between computers. Clients can access files via the network similar to the way that local storage is accessed.
NFS is a client-server application in which a client can view, store, and update files on a remote system just like they are working on a local system. System or Network Administrators can mount all or a portion of a file system, and the file system (or portion) that is mounted can be accessed using the privileges assigned to each file.
|
NOTE: If you want to do a mount on AIX, you must set the nfs_use_reserved_ports and portcheck parameters first. The parameters cannot be set to 0. For example: root@aixhost1 / # nfso -po portcheck=1 root@aixhost1 / # nfso -po nfs_use_reserved_ports=1 |
The Common Internet File System (CIFS) remote file access protocol is supported by the DR Series system, and is also known as a Server Message Block (SMB). SMB occurs more commonly than the Network File System (NFS) protocol on systems that run the Microsoft Windows operating system. CIFS allows programs to request files or services on remote computers.
CIFS also uses the client-server programming model, whereby the client requests access to a file or passes a message to a program running on the server. Servers review all requested actions and return a response. CIFS is a public (or open) variation of the SMB that was originally developed and used by Microsoft.
|
NOTE: The DR Series system currently supports version 2.0 of the Server Message Block (SMB). |
|
NOTE: For complete details on CIFS feature restrictions, see the DR Series System Interoperability Guide, at support.quest.com/dr-series. |