ACTIVE@ KILLDISK -SCRIPTING

AUTHOUR: DARIUSZ SAJDAK

Active@ KillDisk Overview
Active@ KillDisk is a powerful utility that will:
 Wipe confidential data from unused space on your hard drive,
 Erase data from partitions or from an entire hard disk.
 Destroy data permanently.

When you erase data with Active@ KillDisk, you destroy data permanently by
conforming to any one of more than twenty international data sanitizing
standards or using your own custom settings.
Active@ KillDisk Overview
Erase and Wipe Methods supported:

Erases with one-pass zeros

Erases with one-pass random characters
Erases with user-defined number of passes (up to 99)
US Department of Energy M205.1-2
US Department of Defense 5220.22 M
US Department of Defense 5220.22 M (ECE)
German VISTR compliant
Russian GOST p50739-95 compliant
Active@ KillDisk Overview
Gutmann compliant
Bruce Schneier's algorithm
Canadian OPS-II
Canadian CSEC ITSG-06
BritishHMG IS5 Baseline
BritishHMG IS5 Enhanced
Navso P-5329-26 (RL)
Navso P-5329-26 (MFM)
NCSC-TG-025
US Army AR380-19
Active@ KillDisk Overview
US Air Force 5020
NIST 800-88 erase 1 standard
NIST 800-88 erase 2 standard
NIST 800-88 erase 3 standard
Australian ISM-6.2.93
Secure Erase ATA low-level command
DoD 5220.22-M
DoD 5220.22-M data sanitization method, or the DoD 3-pass method, is usually
implemented in the following way:
Pass 1: Overwrite all addressable locations with binary zeroes.
Pass 2: Overwrite all addressable locations with binary ones (the compliment
of the above).
Pass 3: Overwrite all addressable locations with a random bit pattern
Verify the final overwrite pass.
Erasing an HDD using the DoD 5220.22-M data sanitization method will
prevent all software-based file recovery methods, as well as hardware-based
recovery methods, from recovering meaningful data from the drive.
Active@ KillDisk mode
KillDisk can be :
 executed with some settings pre-defined when started from a command
prompt with specific command line parameters,
 launched in fully automated mode(batchmode) which requires no user
interaction.
KillDisk execution behaviour depends on either command line
parameters(highestpriority), settings configured in interactive mode and stored
in the KILLDISK.INI file.
BootDisk_Scripts
File KD-SN.cmd
 script define letter of USB-stick,
 copy and replace KILLDISK.INI,
 add information about serialnumber to KILLDISK.INI,
 run killdisk application and execute paramerts to erase data from all
disk (without USB-stick) with method USDoD5220.22-M.
BootDisk_Scripts
BootDisk_Scripts
File CopyScript.cmd
 script define letter of USB-stick,
 copy file CopyPen.cmd.
User_Files
File killdisk.ini
 file included settings configured.
User_Files
File CopyPen.cmd
 script runs in the background with information about putting USB-
stick and waiting for user action.
After erased all data by Killdisk, user puts empty USB-Stick to USB-port
and runs script.
 script write serialnumber device included on the BIOS to name of
certificate and copy pdf to USB-Stick,
 script shows serialnumber on the screen, and put information about
possibility to turn off device (if user press ENTER)
User_Files
Practice
Please insert a USB-stick with Active@ KillDisk included scripts and
turn on the device. Enter BIOS ( press ESC ) and Select Boot Menu.
Practice
Please select a USB-stick.
Practice
Now script leads the process automatically, you can unplug USB-stick
and go to new device.
Practice
We come back to device when Active@ KillDisk generate a certificate. Below
picture show completed erased disk drive proces.
Practice
We need to find a script CopyPen.cmd working on the background
Practice
We need to put USB-stick and press “Enter” to record certificate on the USB-
stick (left picture), next we press “Enter” to shutdown device (right picture).
Practice
You can find copied pdf-certificate on the folder Certificate on your USB-
stick.
Practice
Next step is copy generated certificate to shared disk, at this location, it will
be available for printing or sharing as requested by the customer.