Wiping VM

Before starting this section, it should be noted that I don’t have a prior low level knownledge of data wiping. This section is some thinkings about how can we assure that a file have been deleted. And in our context, the goal would be to wipe out a LVM image.

Low level storage technologies

Must read

• Wei.pdf

• how-can-i-reliably-erase-all-information-on-a-hard-drive

• https://www.sans.org/blog/spin-stand-microscopy-of-hard-disk-data/

• https://www.vidarholen.net/ vidar/overwriting_hard_drive_data.pdf

• https://wiki.archlinux.org/index.php/Securely_wipe_disk

TL;DR of my understanding of the issue

Magnetic disk have non physical way of wiping data that are considered as relatively reliable.

SSD are a nightmare to wipe anything, and in most of the cases, it is impossible.

Things that could by implemented by QubesOS

TODO.

Links to the ongoing discussion on the subjects. But basically my idea: encryption, and store the encryption key on a specific physical device that can be logically destroyed (HDD ?), or that can be easily physically destroyed (MicroSD ?)

TODO