[Faccus] [Sec-wg] Hard drive degausser

Robyn Landers rblander at mfcf.math.uwaterloo.ca
Tue Jan 31 13:57:14 EST 2012


> "Do I think it is a meaningful risk?  No." <-- Unfortunately, as many
> of us are acting as an Information Custodians, deciding on the level of
> risk that is acceptable is NOT our responsibility.  Yes, we inform the
> Stewards from an operational perspective about the costs of maintaining
> 'physical and logical controls' but the decision about acceptable risk
> is not ours to make.


Allow me to rephrase.

In my opinion, the likelihood of sensitive data actually being exposed
by returning a failed drive from a researcher's RAID array
is very low.

Other opinions, policy decisions, and actions in a given situation
may vary from that opinion.


Robyn


More information about the Faccus mailing list