ISO27001:2013におけるデータセキュリティの要件について、企業は注意が必要です!
《ISO27001:2013》 is a guide of risk management of data security for enterprises formulated by the International Organization for Standardization (ISO). Most enterprises will eliminate the SAS hard drives of their computers and servers every three years.
Physical destruction may cause data residual problems, and hard drives cannot be reused, which is less benefit for enterprises. Especially the capacity of hard drives is frequently above 10TB, the cost is increasing nowadays.
Erasing the hard disks and reuses them in departments with low confidentiality levels is compliant with the spirit of environmentally friendly, which is a new direction for enterprises to increase the benefit.
Hard disks can be erased by software or erasing machines. The former needs to be operated on PC and there will have risk of data leakage. The latter can be operated independently, supporting multiple erasure standards and audit report output.
To comply with the requirements of 《ISO27001》, UReach offers the solutions for you:
A.8.3.2 Disposal of Media
When no longer required media must be disposed of securely by following documented procedures. These procedures minimize the risk of confidential information leakage to unauthorized parties.
Solution:
UReach Data Eraser has a variety of international erasing standards, including NIST-800–88 and DoD, etc., and has qualify international certifications. After erasing, the hard disk cannot be recovered, and the devices can be effectively eliminated or recycled.
A.9.3.1 Use of Secret Authentication Information Control
Use of secret authentication information should be allowed for users to follow the organization’s practices.
Solution:
UReach Data Eraser operates independently with FPGA chip. The Data Eraser has password management and setting of permission, which can ensure that there will be no data leakage during erasing process.
A.12.4.2 Protection of Log Information Control
Logging and log information should be secure from intrusion and unauthorized access.
Solution:
UReach Data Eraser can be set with an authority password, so that only auditors or authorized persons can access the log. The audit report is stored in Data Eraser and cannot be tampered with. It supports report output, which is convenient for auditors to review.
Instructions:
1. UReach Data Eraser operates independently with FPGA chip, which is no need to set IP and no risk of data leakage.
↑ GT-864 SAS/SATA hard disk eraser supports 30GB/min erasing speed and is suitable for SATA/SAS hard disks of desktop or server erasing.
2. M.2 NVMe SSD erasing, safe and reliable
↑GE936 M.2 (NVMe/SATA) SSD Eraser supports 12GB/min erasing speed and is suitable for erasing M.2 SSD in notebooks.
↑Because the erasing speed of each hard disk is different, you can use the Asynchronous Erase Button(blue) to erase the hard disk that has been erased completely and replace it with the next hard disk.
The indicator light display can help the operator recognize the status of hard disk erasing intuitively.
P.S. The erasing speed depend on the device and the erasing machine.
3. Independent audit report for each hard disk, which meets the audit requirements.
↑GT864 and GE936 support multi-language switching and can output through a USB flash drive or print audit reports.
Conclusion:
UReach Data Eraser has qualify a variety of international certifications and the data cannot be recovered after erasing. It complies with the ISO27001 and supports multiple erasing standards and audit report output.
The hard disk can be reused after erasing, which is compliant with the spirit of environmentally friendly and increase benefit for enterprises.
To know more information about UReach Data Eraser.
Please refer to⧐JetMedia Inc.