There are many ways to wipe or reset an endpoint, but they all come with one compromise or the other. Some don’t erase all data; others are expensive or complex and almost none help when an endpoint is stolen. There has got to be a better way to deal with this crucial task of erasing an endpoint. FirmGuard SecureWipe provides that better way and is the best choice with no compromises.
SecureWipe supports a critical use case, stolen endpoint, that neither Windows Reset nor physical destruction comes close to solving.
The simplest method to reset (notice we do not use the word “erase”) an endpoint is to use the native “Windows Reset” mechanism. This can be done remotely for convenience using an RMM or some other tool like Microsoft Intune. However, this is a reset method and NOT an erase method because it leaves large amounts of data behind even if you ask it not to. This is an OS level erase, and thus doesn’t have access to hidden sectors or other parts of the hard drive. Data can be recovered using simple forensic techniques, so this method is not acceptable for media sanitization compliance such as with NIST SP 800-88. In fact, NIST defines three different categories of media sanitization called “clear”, “purge” and “destroy.” Windows Reset is the most basic and thus falls in the “clear” category.
On the opposite extreme from Windows Reset is physical destruction of an endpoint or hard drive and this appropriately falls under the NIST “destroy” category. While this method is very effective, it comes with many downsides including cost, complexity and the fact that the device is no longer usable.
SecureWipe falls in the middle “purge” NIST category and is the best and most balanced choice as shown in the table below. It incorporates all the benefits of Windows Reset and avoids all the downsides of physical destruction. SecureWipe even supports a critical use case, stolen endpoint, that neither Windows Reset nor physical destruction comes close to solving.
Windows Reset | SecureWipe | Physical Destruction | |
---|---|---|---|
NIST 800-88 Definition | Clear | Purge | Destroy |
No Data Recoverable | |||
Wipe Stolen Endpoint | |||
Execute Wipe Remotely | |||
Certificate of Erasure/Destruction Provided | |||
Low Cost | |||
Can Reuse Endpoint | |||
Endpoint Never Leaves Client Office |