NIH Disk Sanitization Procedures
1.0 | Identification Data |
1.1 | BSP Number |
00018 | |
1.2 | BSP Title/Name |
NIH Disk Sanitization Procedures |
|
1.3 | Version Number |
1.0 | |
1.4 | Adoption Date |
June 1, 2001 | |
1.5 | Approving Authority |
CIO Council Security Practices Subcommittee (SPS) | |
1.6 | Responsible Organization |
National Institutes of Health (NIH), Center for Information Technology (CIT), Information Security and Awareness Office (ISAO) | |
1.7 | Level of BSP |
Candidate | |
1.8 | Security Processes or other Framework(s) Supported |
|
|
1.9 | Reserved |
1.10 | Points of Contact |
Government BSP Owner:
|
|
2.0 | What This BSP Does |
2.1 | BSP's Purpose |
This BSP describes the procedure used throughout
the NIH to sanitize data storage media. The NIH is one of eight health agencies
of the U.S. Department of Health and Human Services. Comprising 27 separate
components, mainly Institutes and Centers, NIH has 75 buildings on more
than 300 acres in Bethesda, MD. From a total of about $300 in 1887, the
NIH budget has grown to more than $20.3 billion in 2001 |
|
2.2 | Requirements for this BSP |
|
|
3.0 | What This BSP Is |
3.1 | Description of BSP |
This practice and other NIH security information
is available at http://www.cit.nih.gov/security.html. There are several options for sanitizing hard disks and portable media prior to disposal or reuse. This BSP describes processes for sanitizing a workstation's hard disk that may contain data which must not be exposed to public view. These processes will also sanitize secondary bulk storage media. |
|
3.1.1 | Inputs |
|
|
3.1.2 | Process |
Hard Disks
|
|
3.1.3 | Outputs |
|
|
3.2 | Relationship to Other BSPs |
BSP 00017, Remove All Data from Workstations & Servers for USAID | |
4.0 | How To Use This BSP |
4.1 | Implementation Guidance |
Please note if the system is non-operational or cannot be booted up, the hard disk must be crushed, drilled, degaussed, or incinerated. | |
4.2 |
Implementation Resource Estimates |
None available. | |
4.3 | Performance Goals and Indicators (Metrics) |
None available. | |
4.4 | Tools |
4.5 | Training Materials |
|
|
Appendices | |
A | Executive Overview and Briefing |
None available | |
B | Reference List |
None at this time | |
C | Procurement Information |
|
|
D | Evaluation Information |
None available. | |
E | Recommended Changes |
None available. | |
F | Glossary |
None available. |