[Faccus] [Sec-wg] Hard drive degausser
rblander at mfcf.math.uwaterloo.ca
Tue Jan 31 13:57:14 EST 2012
> "Do I think it is a meaningful risk? No." <-- Unfortunately, as many
> of us are acting as an Information Custodians, deciding on the level of
> risk that is acceptable is NOT our responsibility. Yes, we inform the
> Stewards from an operational perspective about the costs of maintaining
> 'physical and logical controls' but the decision about acceptable risk
> is not ours to make.
Allow me to rephrase.
In my opinion, the likelihood of sensitive data actually being exposed
by returning a failed drive from a researcher's RAID array
is very low.
Other opinions, policy decisions, and actions in a given situation
may vary from that opinion.
More information about the Faccus