I wouldn’t trust anything to secure delete individual files on flash based storage. There is nothing that can reliably do that.
https://www.usenix.org/legacy/events/fast11/tech/full_papers/Wei.pdf
2 Likes
Ok, and what about the case of wiping available space on a non-SSD HD, on the host, for the purpose of clearing previously saved VM states?
there is essentially no difference. immutable drives automate that process. other drive states require you to do that manually.
if new data was immediately wiped after you shut down your virtual machine with immutable drives, you would never be able to update it.
it might. depending on the type of drive, there may be some issues. but a wipe of your free space through one method or another is a tactic used.
disk wiping is an issue that involves a number of variables and generally involves a threat scenario where your computer or disk is obtained by an enemy. this is yet another example of where software alone is probably not enough.
1 Like