On Thursday, 10/08/2009 at 09:49 EDT, "McKown, John" <john.mck...@healthmarkets.com> wrote: > But, again, this requires specialized equipment. However, such equipment is > out there in the commerical world for doing disaster recovery of damaged > media. So, it would be theoritically possible to sell a DASD array to another > company which would then contract to one of these recovery specialists to > recover the data. What likelihood is that? Minimal. It is more likely to be > done on PC type DASD on a stolen laptop or some such. And, in that case, the > solution is to use full DASD encryption. That is what we do on all the company > laptops. That pretty much guarantees security.
If you have a DS 8000 with encrypting disk drives, a "data security erase" (DSE) is performed when you delete the RAID array in the HMC. (This is not performed for non-encrypted drives, however.) IBM offers secure disk erasure services as well. Isn't it strange that I can find no requirements for the CMS TAPE command to support a "DSE" option? And nothing about DSE for minidisk or tdisk deallocation? Apparently home-grown erasure solutions and shredding are good enough. Alan Altmark z/VM Development IBM Endicott
