Remote Wiping and Secure Deletion on Mobile Devices: A Review

Journal of Forensic Sciences

Volumn 61, Issue 6, 2016, Pages 1473-1492

  Leom, Ming Di ^a   Choo, Kim Kwang Raymond ^a,b   Hunt, Ray ^c  

^a UNIVERSITY OF SOUTH AUSTRALIA   (Australia)

^b UNIVERSITY OF TEXAS AT SAN ANTONIO   (United States)

^c UNIVERSITY OF CANTERBURY   (New Zealand)

Author keywords

flash storage; forensic science; NAND nonvolatile flash memory; remote wiping; secure deletion; Solid state drive disk

Indexed keywords

EID: 84995549442     PISSN: 00221198     EISSN: 15564029     Source Type: Journal    
DOI: 10.1111/1556-4029.13203     Document Type: Article

References (175)

1. Australian Mobile Telecommunications Association. Lost and stolen phones, 2011. http://www.amta.org.au/pages/Lost.and.stolen.phones.
2. Lynn G, Davey E. Black market’ for stolen smartphones exposed. BBC, 2014. http://www.bbc.com/news/uk-england-london-26979061 (accessed October 7, 2015).
3. Anderson N. Hacking Scarlett Johansson – and 50 other celebs – using google and gumption. Ars Technica, 2012. http://arstechnica.com/tech-policy/2012/03/hacking-scarlett-johanssonand-50-other-celebsusing-google-and-gumption/ (accessed October 7, 2015).
4. Gallagher S. What Jennifer Lawrence can teach you about cloud security. Ars Technica, 2014. http://arstechnica.com/security/2014/09/what-jennifer-lawrence-can-teach-you-about-cloud-security/ (accessed October 7, 2015).
5. Greenberg A. The police tool that pervs use to steal nude pics from apple's iCloud. Wired, 2014. http://www.wired.com/2014/09/eppb-icloud/ (accessed October 7, 2015).
6. Verizon. 2014 data breach investigation report. http://www.verizonenterprise.com/DBIR/2014/ (accessed October 7, 2015).
7. Symantec. Symantec smartphone honey stick project. Media Release, 2012. https://www.symantec.com/about/news/resources/press_kits/detail.jsp?pkid=symantec-smartphone-honey-stick-project (accessed October 7, 2015).
8. Caldwell T. The mobile ‘kill pill’ – poison or panacea. Comput Fraud Secur 2011;10:8–12.
9. Burnett RD, Friedman M, Rodriguez RP. Managing laptop security. J Corp Account Finance 2011;22(5):53–61.
10. Hansen CK. Technology trends in mobile communications how mobile are your data? IEEE Reliability Society 2009 Annual Technology Report, 2010. http://paris.utdallas.edu/IEEE-RS-ATR/document/2009/2009-07.pdf.
11. Evers J, Johnston CJ. System architecture. In: Cauley DW, Shafer K, Evers R, Koch M editors. Professional blackberry. Indianapolis, IN: Wiley Publication, 2005;3–18.
12. Punja SG, Mislan RP. Mobile device analysis. Small Scale Digit Device Forensics J 2008;2(1):1–16.
13. Microsoft. Deploying windows mobile 5.0 with windows small business server 2003. TechNet Library, 2009. http://technet.microsoft.com/en-us/library/cc747512(v=WS.10).aspx (accessed October 7, 2015).
14. Microsoft. Microsoft releases windows mobile 5.0, 2005. http://www.microsoft.com/en-us/news/press/2005/may05/05-10windowsmobile5pr.aspx (accessed October 7, 2015).
15. Munro K. Ghost in the machine. Itnow 2008;50(2):10.
16. Erlichman J, Miller H. BlackBerry CEO briefs white house to keep Obama loyal. Bloomberg Technology, 2014. http://www.bloomberg.com/news/2014-03-06/blackberry-ceo-briefs-white-house-to-cultivate-vip-obama.html (accessed October 7, 2015).
17. Harauz J, Kaufman LM. A new era of presidential security: the president and his BlackBerry. IEEE Secur Priv 2009;7(2):67–70.
18. Morrison G. Implementation guide for email protective markings for Australian government agencies, Australian Government Information Management Office, Department of Finance and Administration, Australia, 2005. http://www.finance.gov.au/publications/protective-markings/docs/Protective_Markings.pdf (accessed October 7, 2015).
19. Ogg E. Updated: IPhone OS 3.0 now available, CNET, 2009. http://www.cnet.com/news/updated-iphone-os-3-0-now-available/ (accessed October 7, 2015).
20. Mayers S, Lee M. From MobileMe to iCloud. In: Moritz K, Larson D, Wimpsett K, editors. Learn OS X lion. New York, NY: Apress, 2011;245–53.
21. Apple. iOS 4.2 software update. Apple, Inc, 2010; http://support.apple.com/kb/DL1061 (accessed October 7, 2015).
22. Aomoth D. App of the week: find my iPhone. TIME, 2010. http://techland.time.com/2010/11/23/app-of-the-week-find-my-iphone/ (accessed October 7, 2015).
23. Poiesz B. Find your lost phone with android device manager. Android Official Blog, 2013. http://officialandroid.blogspot.com/2013/08/find-your-lost-phone-with-android.html (accessed October 7, 2015).
24. Zhang H. Make mobile more manageable. Official Google for Work Blog, 2012. http://googleforwork.blogspot.com/2012/08/make-mobile-more-manageable.html (accessed October 7, 2015).
25. Shin Y. Non-volatile memory technologies for beyond 2010. In: Proceedings of Symposium on VLSI Circuits Digest of Technical Papers; 2005 June 16–18; Kyoto, Japan. Piscataway, NJ: IEEE, 2005;156–9.
26. BlackBerry. Enforcing encryption of internal and external file systems on BlackBerry devices, 2010. http://www.manualslib.com/products/Blackberry-Enterprise-Solution-Security-Enforcing-Encryption-Of-Internal-And-External-File-Systems-On-Devices-2590666.html (accessed October 7, 2015).
27. Götzfried J, Müller T. ARMORED: CPU-bound encryption for android-driven ARM devices. In: Proceedings of Eight International Conference on Availability, Reliability and Security; 2013 September 2–6; Regensburg, Germany. Piscataway, NJ: IEEE, 2013;161–8.
28. Teufl P, Zefferer T, Stromberger C. Mobile device encryption systems. In: Janczewski LJ, Wolfe HB, Shenoi S, editors. IFIP advances in information and communication technology. Heidelberg, Germany: Springer, 2013;405:203–16.
29. Microsoft. Device encryption, Security for Windows Mobile Devices, 2010. http://msdn.microsoft.com/en-us/library/bb964600.aspx (accessed October 7, 2015).
30. Belfiore J. Announcing Windows Phone 8. Windows Blog, 2012. http://blogs.windows.com/windowsexperience/2012/06/20/announcing-windows-phone-8/ (accessed October 7, 2015).
31. Godfrey R. Announcing Windows Phone 8. Microsoft UK Schools Blog, 2012. http://blogs.msdn.com/b/ukschools/archive/2012/06/27/announcing-windows-phone-8.aspx (accessed October 7, 2015).
32. Götzfried J, Müller T. Analysing Android's full disk encryption feature. J Wirel Mob Netw Ubiquitous Com Dependable Appl 2014;5(1):84–100.
33. Timberg C. Newest androids will join iPhones in offering default encryption, blocking police. The Washington Post, 2014. https://www.washingtonpost.com/news/the-switch/wp/2014/09/18/newest-androids-will-join-iphones-in-offering-default-encryption-blocking-police/ (accessed October 7, 2015).
34. Chester B, Ho J. Encryption and storage performance in android 5.0 lollipop. AnandTech, 2014. http://www.anandtech.com/show/8725/encryption-and-storage-performance-in-android-50-lollipop (accessed October 7, 2015).
35. Google. A sweet lollipop, with a kevlar wrapping: new security features in Android 5.0. Official Android Blog, 2014. http://officialandroid.blogspot.com/2014/10/a-sweet-lollipop-with-kevlar-wrapping.html (accessed October 7, 2015).
36. Malchev I. Enable hardware crypto for userdata encryption. Git at Google, 2014. https://android.googlesource.com/platform/system/vold/+/bb7d9afea9479eabbc98133d3d968225a1e1019e%5E%21/#F0 (accessed October 7, 2015).
37. Franco F. Continuing the tale of “Nexus 6 is way smoother on Android 5.1”, 2015. https://plus.google.com/+FranciscoFranco1990/posts/3RKjDGjjPQ7 (accessed October 7, 2015).
38. Elenkov N. Hardware-accelerated disk encryption in Android 5.1, 2015. http://nelenkov.blogspot.com/2015/05/hardware-accelerated-disk-encryption-in.html (accessed October 7, 2015).
39. Percival C. Stronger key derivation via sequential memory-hard functions, 2009. https://www.tarsnap.com/scrypt/scrypt.pdf (accessed October 7, 2015).
40. Elenkov N. Revisiting Android disk encryption, 2014. http://nelenkov.blogspot.com/2014/10/revisiting-android-disk-encryption.html (accessed October 7, 2015).
41. Crimes Act s 3LA. Commonwealth of Australia, Australia (1914).
42. Ockenden W, Sveen B. Abdilo, infamous Australian teen hacker, raided by police and ordered to surrender passwords. ABC News, 2015. http://www.abc.net.au/news/2015-04-02/infamous-australian-teenager-hacker-abdilo-raided-by-police/6368612 (accessed October 7, 2015).
43. Reardon J, Basin D, Capkun S. SoK: Secure data deletion. In: Proceedings of Symposium on Security and Privacy; 2013 May 19–22; San Francisco, CA. Piscataway, NJ: IEEE, 2013;301–15.
44. Storer MW, Greenan K, Miller EL. Long-term threats to secure archives. In: Proceedings of the Second Workshop on Storage Security and Survivability; 2006 October 31–November 2; Alexandria, VA. New York, NY: ACM, 2006;9–16.
45. Diesburg SM. Per-file full-data-path secure deletion for electronic storage (PhD dissertation). Tallahassee, FL: Florida State University, 2012.
46. DON CIO Privacy Team. Methods for hard drive/disk destruction. Department of Navy Chief Information Officer, 2010. http://www.doncio.navy.mil/ContentView.aspx?ID=1867 (accessed October 7, 2015).
47. Hughes GF, Coughlin TM. Tutorial on disk drive data sanitization. San Diego, CA: Center for Magnetic Recording Research, University of California, 2006.
48. Brown MK, Brown MS, Little HA, Totzke SW, Inventors. BlackBerry Ltd, assignee. Selectively wiping a remote device. US patent 8,056,143 (accessed 2011 November 8).
49. Honan M. How Apple and Amazon security flaws led to my epic hacking. Wired, 2012a. http://www.wired.com/2012/08/apple-amazon-mat-honan-hacking/all/ (accessed October 7, 2015).
50. Zetter K. Palin E-mail hacker says it was easy. Wired, 2008. http://www.wired.com/2008/09/palin-e-mail-ha/ (accessed October 7, 2015).
51. Yu X, Wang Z, Sun K, Zhu WT, Gao N, Jing J. Remotely wiping sensitive data on stolen smartphones. In: Proceedings of the Ninth ACM Symposium on Information, Computer and Communications Security; 2014 June 4–6; Kyoto, Japan. New York, NY: ACM, 2014;537–42.
52. Onyon R, Stannard L, Ridgard L, Inventors. Remote cell phone auto destruct. US patent 2007/0056043A1. (accessed 2007 March 8).
53. Gajdos T, Kretz M, Inventors. Sony Ericsson Mobile Communications AB, assignee. Method for disabling a mobile device. EU patent EP1725056A1. (accessed 2006 November 22).
54. Angelo M, Novoa M, Olarig S, Inventors. After the fact protection of data in remote personal and wireless devices. US patent 2003/0065934 (accessed 2003 April 3).
55. Park K, Ma GI, Yi JH, Cho Y, Cho S, Park S. Smartphone remote lock and wipe system with integrity checking of SMS notification. In: Proceedings of International Conference on Consumer Electronics; 2011 January 9–12; Las Vegas, NV. Piscataway, NJ: IEEE, 2014;263–4.
56. Kuppusamy KS, Senthilraja R, Aghila G. A model for remote access and protection of smartphones using short message service. Int J Comput Sci En Inf Technol 2012;2(1):91–100.
57. Guo C, Wang HJ, Zhu W. Smart-phone attacks and defences. In: Proceedings of Third Workshop on Hot Topics in Networks; 2004 November 15–16; San Diego, CA. New York, NY: ACM, 2004;235–45.
58. Sennett DWA, Daly BK, Inventors. AT&T Mobility II LLC, assignee. Remote disablement of a communication device. US patent 8,375,422. (accessed 2013 February 12).
59. Kenney T, Inventor. Systems and methods that provide user and/or network personal data disabling commands for mobile devices. US patent 2005/0186954. (accessed 2005 August 25).
60. Apple. iOS security, 2015. https://www.apple.com/business/docs/iOS_Security_Guide.pdf (accessed October 7, 2015).
61. BlackBerry. Security technical overview of BES10 cloud solution, 2014a. https://www.blackberry.com/blackberrytraining/web/KryptonDocs/resources/BES10_Cloud_Market_Preview_Security_Technical_Overview_en.pdf (accessed October 7, 2015).
62. BlackBerry. Blackberry enterprise solution 5.0.2: Security technical overview, 2011. http://docs.blackberry.com/en/admin/deliverables/38816/BlackBerry_Enterprise_Server_5.0_SP3_and_BlackBerry_7.1-Security_Technical_Overview-1936256-0117012254-001-5.0.3-US.pdf (accessed October 7, 2015).
63. Adusumalli P. Implementation of an android application to retrieve information from a lost android device [Graduate project report]. Corpus Christi, TX: Texas A&M University-Corpus Christi, 2014.
64. Joe I, Lee Y. Design of remote control system for data protection and backup in mobile devices. In: Proceedings of International Conference on Interaction Sciences; 2011 August 16–18; Busan, South Korea. Piscataway, NJ: IEEE, 2011;189–93.
65. Li T, Zhou X, Xing L, Lee Y, Naveed M, Wang X, et al. Mayhem in the push clouds: understanding and mitigating security hazards in mobile push-messaging services. In: Proceedings of Conference on Computer and Communications Security; 2014 November 3–7; Scottsdale, AZ. New York, NY: ACM, 2014a;978–89.
66. Android Developers n.d.a, Android security overview. http://source.android.com/devices/tech/security/index.html (accessed October 7, 2015).
67. Android Developers n.d.b. Device administration. https://developer.android.com/guide/topics/admin/device-admin.html (accessed October 7, 2015).
68. BlackBerry. BlackBerry device service solution security technical overview (v10.2), 2014b. http://docs.blackberry.com/en/admin/deliverables/60198/BES10_v10.2_BDS_Security_Technical_Overview_en.pdf (accessed October 7, 2015).
69. BlackBerry. BlackBerry device service advanced administration guide (v10.2), 2014c. http://docs.blackberry.com/en/admin/deliverables/59623/BES10_v10.2_BDS_Advanced_Admin_Guide_en.pdf (accessed October 7, 2015).
70. BlackBerry. BlackBerry protect user guide (v1.2.1), 2015. http://docs.blackberry.com/en/smartphone_users/deliverables/49400/BlackBerry_Protect-User_Guide-1343391475156-1.2.1-en.pdf (accessed October 7, 2015).
71. Apple n.d.b. About configuration profile. https://help.apple.com/configurator/mac/1.6/#/cadbf9e668 (accessed October 7, 2015).
72. ManageEngine n.d. MDM architecture. http://www.manageengine.com/products/desktop-central/mobile-device-management-mdm-architecture.html (accessed October 7, 2015).
73. Apple n.d.a. iPhone in business: manage devices. https://www.apple.com/iphone/business/it/management.html (accessed October 7, 2015).
74. Microsoft. Exchange ActiveSync, 2013. http://technet.microsoft.com/en-US/library/aa998357%28v=exchg.150%29.aspx (accessed October 7, 2015).
75. Microsoft. Windows Phone 8.1 security overview, 2014. http://www.microsoft.com/en-us/download/details.aspx?id=42509&751be11f-ede8-5a0c-058c-2ee190a24fa6=True (accessed October 7, 2015).
76. Hannay P, Carpene C, Valli C, Woodward A, Johnstone M. Exchanging demands: weaknesses in SSL implementations for mobile platforms. In: Proceedings of the Eleventh Australian Information Security Management Conference; 2013 December 2–4; Perth, Australia. Perth, Australia: Edith Cowan University, 2013;42–8.
77. Hubbard J, Weimer K, Chen Y. A study of SSL proxy attacks on android and iOS mobile applications. In: Proceedings of the Eleventh Consumer Communications and Networking Conference; 2014 January 10–13; Las Vegas, NV. Piscataway, NJ: IEEE, 2014;86–91.
78. Fahl S, Harbach M, Muders T, Baumgärtner L, Freisleben B, Smith M. Why eve and mallory love android: An analysis of android SSL (in)security. In: Proceedings of the Conference on Computer and Communications Security; 2012 October 16–18; Raleigh, NC. New York, NY: ACM, 2012;50–61.
79. Georgiev M, Iyengar S, Jana S, Anubhai R, Boneh D, Shmatikov V. The most dangerous code in the world: validating SSL certificates in non-browser software. In: Proceedings of the Conference on Computer and Communications Security; 2012 October 16–18; Raleigh, NC. New York, NY: ACM, 2012;38–49.
80. Ducklin P. Anatomy of a “goto fail” - Apple's SSL bug explained, plus an unofficial patch for OS X!, Naked Security, 2014. https://nakedsecurity.sophos.com/2014/02/24/anatomy-of-a-goto-fail-apples-ssl-bug-explained-plus-an-unofficial-patch/ (accessed October 7, 2015).
81. Li T, Zhou X, Xing L, Lee Y, Naveed M, Wang X, et al. Supplement materials for mayhem in the push clouds paper, 2014b. https://sites.google.com/site/cloudmsging/ (accessed October 7, 2015).
82. Kingsley-Hughes A. Apple patches ‘find my iPhone’ exploit. ZDNet, 2014. http://www.zdnet.com/apple-patches-find-my-iphone-exploit-7000033171/ (accessed October 7, 2015).
83. Pagliery J. Hackers can ‘un-brick’ stolen iPhones, CNN, 2014. http://money.cnn.com/2014/05/21/technology/security/icloud-hack/ (accessed October 7, 2015).
84. OWASP. Cross-site request forgery (CSRF), 2014. https://www.owasp.org/index.php/Cross-Site_Request_Forgery_%28CSRF%29 (accessed October 7, 2015).
85. US-CERT. CVE-2014-8346, National Vulnerability Database, 2014. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8346 (accessed October 7, 2015).
86. Honan M. Yes, I was hacked. Hard, 2012b. http://www.emptyage.com/post/28679875595/yes-i-was-hacked-hard (accessed October 7, 2015).
87. OWASP. OWASP top 10, 2013. https://www.owasp.org/index.php/Top10 (accessed October 7, 2015).
88. Siciliano R. I found your data on that used device you sold, McAfee, 2012. https://blogs.mcafee.com/consumer/i-found-your-data-on-that-used-device-you-sold (accessed October 7, 2015).
89. Honan M. Break out a hammer: you'll never believe the data ‘wiped’ smartphones store, Wired, 2013. http://www.wired.com/2013/04/smartphone-data-trail/ (accessed October 7, 2015).
90. The Guardian. Recycled mobile phones retain previous owner data, 2013. http://web.archive.org/web/20140529182505/http://www.theguardian.com/media-network/partner-zone-infosecurity/mobile-phones-previous-owner-data (accessed October 12, 2015).
91. Schwamm R. Effectiveness of the factory reset on a mobile device [Master's thesis]. Monterey, CA: Naval Postgraduate School, 2014.
92. Schwamm R, Rowe NC. Effects of the factory reset on mobile devices. J Digit Forensics Secur Law 2014;9(2):205–20.
93. McColgan J. Tens of thousands of Americans sell themselves online every day, AVAST Software, 2014. https://blog.avast.com/2014/07/08/tens-of-thousands-of-americans-sell-themselves-online-every-day/ (accessed October 12, 2015).
94. Simon L, Anderson R. Security analysis of Android factory resets. In: Proceedings of the Mobile Security Technologies Workshop; 2015 May 21; San Jose, CA. Piscataway, NJ: IEEE, 2015a;1–10. http://ieee-security.org/TC/SPW2015/MoST/papers/s1p3.pdf (accessed October 12, 2015).
95. Woodhouse D. General MTD documentation, Memory Technology Device (MTD) Subsystem for Linux, 2008. http://www.linux-mtd.infradead.org/doc/general.html (accessed October 7, 2015).
96. Intel. Understanding the flash translation layer (FTL) specification, 1998. http://www.eetasia.com/ARTICLES/2002MAY/2002MAY07_MEM_AN.PDF (accessed October 12, 2015).
97. Ma D, Feng J, Li G. A survey of address translation technologies for flash memories. ACM Comput Surv 2014;46(3):1–39.
98. Skillen A, Mannan M. On implementing deniable storage encryption for mobile devices. In: Proceedings of the Twentieth Annual Network and Distributed System Security Symposium; 2013 February 24–27; San Diego, CA. Reston, VA: Internet Society, 2013;1–17.
99. Reardon J, Capkun S, Basin D. Data node encrypted file system: efficient secure deletion for flash memory. In: Proceedings of the Twenty Second USENIX Security Symposium; 2013 August 14–16; Washington, D.C. Berkeley, CA: USENIX Association, 2013b;333–48.
100. Kim H, Kim J, Choi S, Jung H, Jung J. A page padding method for fragmented flash storage. In: Gervasi O, Gavrilova ML, editors. Lecture notes in computer science. Heidelberg, Germany: Springer, 2007;4705:164–77.
101. Huang P, Zhou K, Wu C. ShiftFlash: make flash-based storage more resilient and robust. Perform Eval 2011;68(11):1193–206.
102. Gutmann P. Secure deletion of data from magnetic and solid-state memory. In: Proceedings of the Sixth USENIX Security Symposium; 1996 July 22–25; San Jose, CA. Berkeley, CA: USENIX Association, 1996;1–18.
103. Wei MYC, Grupp LM, Spada FE, Swanson S. Reliably erasing data from flash-based solid state drives. In: Proceedings of the Ninth USENIX Conference on File and Storage Technologies; 2011 February 15–17, San Jose, CA. Berkeley, CA: USENIX Association, 2011;8–20.
104. Garfinkel SL, Shelat A. Remembrance of data passed: a study of disk sanitization practices. IEEE Secur Priv 2003;1(1):17–27.
105. Hughes GF, Coughlin TM. Secure erase of disk drive data. IDEMA Insight Magazine 2002;25.
106. Cornell University. Disk and file erasure, best practices for media destruction, 2012. http://www.it.cornell.edu/security/depth/practices/media_destruct.cfm#erasure (accessed October 12, 2015).
107. Kissel R, Regenscheid A, Scholl M, Stine K. Guidelines for media sanitization, NIST Special Publication 800-88, 2014. http://dx.doi.org/10.6028/NIST.SP.800-88r1 (accessed October 12, 2015).
108. Australian Signals Directorate. 2015 Australian Government Information Security Manual, 2015. http://www.asd.gov.au/publications/Information_Security_Manual_2015_Controls.pdf (accessed October 12, 2015).
109. Joukov N, Papaxenopoulos H, Zadok E. Secure deletion myths, issues, and solutions. In: Proceedings of the Second Workshop on Storage Security and Survivability; 2006 October 31–November 2; Alexandria, VA. New York, NY: ACM, 2006;61–6.
110. Wright C, Kleiman D, Sundhar S. Overwriting hard drive data: the great wiping controversy. In: Sekar R, Pujari AK, editors. Lecture notes in computer science. Heidelberg, Germany: Springer, 2008;5352:243–57.
111. Gutmann P. Secure deletion of data from magnetic and solid-state memory, Department of Computer Science, University of Auckland, New Zealand, 2003. https://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html (accessed October 12, 2015).
112. Spreitzenbarth M, Holz T. Towards secure deletion on smartphones. In: Proceedings of the Fifth Conference of the GI Special Interest Group “Sicherheit, schutz und zuverlässigkeit”; 2010 October 5–7; Berlin, Germany. Bonn, Germany: Gesellschaft für Informatik e.V. (GI), 2010;165–76.
113. Shin I. Secure file delete in NAND-based storage. Int J Secur Appl 2012;6(2):257–60.
114. Choi Y, Lee D, Jeon W, Won D. Password-based single-file encryption and secure data deletion for solid-state drive. In: Proceedings of the Eighth International Conference on Ubiquitous Information Management and Communication; 2014 January 9–11; Siem Reap, Cambodia. New York, NY: ACM, 2014;1–7.
115. Qin Y, Tong W, Liu J, Zhu Z. SmSD: a smart secure deletion scheme for SSDs. J Converg 2013;4(4):30–5.
116. Gupta A, Singhal M, Gangil A, Mishra A. SDC: secure deletion classification. In: Proceedings of the International Conference on Recent Trends in Information Technology; 2011 June 3–5; Chennai, India. Piscataway, NJ: IEEE, 2011;1303–7.
117. Reardon J, Marforio C, Capkun S, Basin D. User-level secure deletion on log-structured file systems. In: Proceedings of the Seventh Symposium on Information, Computer and Communications Security; 2012 May 1–3; Seoul, South Korea. New York, NY: ACM, 2012;63–73.
118. Albano P, Castiglione A, Cattaneo G, De Santis A. A novel anti-forensics technique for the android OS. In: Proceedings of the Sixth International Conference on Broadband and Wireless Computing, Communication and Applications; 2011 October 26–28; Barcelona, Spain. Piscataway, NJ: IEEE, 2011;380–5.
119. Pieterse H, Olivier MS. Security steps for smartphone users. In: Proceedings of the Twelfth International Information Security for South Africa Conference; 2013 August 14–16; Johannesburg, South Africa. Piscataway, NJ: IEEE, 2013;1–6.
120. Kang S, Park K, Kim J. Cost effective data wiping methods for mobile phone. Multimed Tools Appl 2013;71(2):643–55.
121. Steele RK, Key DS, Abbasi MA, Lutz BC, Inventors. Method and apparatus for sanitizing or modifying flash memory chip data. US patent application 2009/0113113 (accessed 2009 April 30).
122. Jevans D, Ficcaglia R, Spencer G, Ryan S, Inventors. IronKey Inc, assignee. Memory data shredder. US patent application 2007/0300031 (accessed 2007 December 27).
123. Weng WK, Wu HH, Inventors. Skymedi Corp, assignee. Secure erase system for a solid state non-volatile memory device. US patent application 2012/0079289 (accessed 2012 March 29).
124. Lee J, Yi S, Heo J, Park H, Shin SY, Cho Y. An efficient secure deletion scheme for flash file systems. J Inf Sci Eng 2010;26(1):27–38.
125. Park S, Kim J, Jung Y, Lim D, Seo Y, Cho Y, et al. Electronics and Telecommunications Research Institute, assignee. Flash memory device having secure file deletion function and method for securely deleting flash file. US patent 8,117,377. 2012.
126. Lee B, Son K, Won D, Kim S. Secure data deletion for USB flash memory. J Inform Sci Eng 2011;27(3):933–52.
127. Guyot C, Bandic ZZ, Cassuto Y, Espeseth AM, Sanvido M, Inventors. HGST Netherlands BV, assignee. Implementing secure erase for solid state drives. US patent 8,250,380, 2012.
128. Sun K, Choi J, Lee D, Noh SH. Models and design of an adaptive hybrid scheme for secure deletion of data in consumer electronics. IEEE Trans Consumer Electron 2008;54(1):100–4.
129. Subha S. An algorithm for secure deletion in flash memories. In: Proceedings of the Second International Conference on Computer Science and Information Technology; 2009 August 8–11; Beijing, China. Piscataway, NJ: IEEE, 2009;260–2.
130. Brož M, Matyáš V. The TrueCrypt on-disk format-an independent view. IEEE Secur Priv 2014;12(3):74–7.
131. Halderman JA, Schoen SD, Heninger N, Clarkson W, Paul W, Calandrino JA, et al. Lest we remember: cold-boot attacks on encryption keys. Commun ACM 2009;52(5):91–8.
132. Müller T, Spreitzenbarth M. FROST: Forensic Recovery of Scrambled Telephones. In: Proceedings of the Eleventh International Conference on Applied Cryptography and Network Security; 2013 June 25–28; Alberta, Canada. Piscataway, NJ: IEEE, 2013;373–88.
133. AMD. RAIDXpert user manual, 2010. http://www2.ati.com/relnotes/AMD_RAIDXpert_User_v2.1.pdf (accessed October 12, 2015).
134. ® RST), 2014. http://www.intel.com/support/chipsets/imsm/sb/CS-009337.htm (accessed October 7, 2015).
135. Vantage Technologies n.d., RAID 5 data recovery FAQ. http://www.vantagetech.com/faq/raid-5-recovery-faq.html (accessed October 7, 2015).
136. Diesburg SM, Meyers C, Stanovich M, Mitchell M, Marshall J, Gould J, et al. TrueErase: per-file secure deletion for the storage data path. In: Proceedings of the Twenty Eighth Annual Computer Security Applications Conference; 2012 December 3–7; Orlando, FL. New York, NY: ACM, 2012;439–48.
137. Bonetti G, Viglione M, Frossi A, Maggi F, Zanero S. Black-box forensic and antiforensic characteristics of solid-state drives. J Comput Virol Hacking Tech 2014;10(4):255–71.
138. Linnell TE, Inventor. EMC Corp, assignee. Securely erasing flash-based memory. US patent 8,130,554, 2012.
139. Koren R, Leibinger E, Wiesz N, Zilberman E, Tzur O, Aharonoff S, et al. SanDisk IL Ltd, assignee. Methods of sanitizing a flash-based data storage device. US patent 7,089,350. 2006.
140. Sang W. [RFC 04/10] devfs & mtd: Add MEMERASE ioctl support, 2012. http://lists.infradead.org/pipermail/barebox/2012-October/010713.html (accessed October 7, 2015).
141. Jangir ML. Working with MTD devices, Open Source For U, 2012. http://www.opensourceforu.com/2012/01/working-with-mtd-devices/ (accessed October 7, 2015).
142. Google n.d. Implementing security. https://source.android.com/devices/tech/security/implement.html (accessed October 7, 2015).
143. Leom MD, D'Orazio CJ, Deegan G, Choo KKR. Forensic collection and analysis of thumbnails in Android. In: Proceedings of the Fifth International Symposium on Trust and Security in Cloud Computing; 2015 August 20–22; Helsinki, Finland. Piscataway, NJ: IEEE, 2015;1059–66.
144. Grupp LM, Caulfield AM, Coburn J, Davis JD, Swanson S. Beyond the datasheet: using test beds to probe non-volatile memories’ dark secrets. In: Proceedings of the IEEE Globecom 2010 Workshop on Application of Communication Theory to Emerging Memory Technologies; 2010 December 6–10 Miami, FL. Piscataway, NJ: IEEE, 2010;1930–5.
145. Saxena M, Zhang Y, Swift MM, Arpaci-Dusseau AC, Arpaci-Dusseau RH. Getting real: lessons in transitioning research simulations into hardware systems. In: Proceedings of the Eleventh USENIX Conference on File and Storage Technologies; 2013 February 12–15; San Jose, CA. Berkeley, CA: USENIX Association, 2013;215–28.
146. Reddy VK, Rao JE. Survey on security in cloud using homographic and disk encryption methods. Int J Chem Eng Appl 2014;2(4):107–12.
147. Larabel M. The performance impact of Linux disk encryption on Ubuntu 14.04 LTS, Phoronix, 2014. http://www.phoronix.com/scan.php?page=article&item=ubuntu_1404_encryption (accessed October 7, 2015).
148. Swanson S, Wei M. Safe: fast, verifiable sanitization for SSDs. San Diego, CA: University of California-San Diego, 2010.
149. Müller T, Latzo T, Freiling FC. Self-encrypting disks pose self-decrypting risks. In: Proceedings of the Twenty Ninth Chaos Communication Congress; 2012 December 27–30; Hamburg, Germany. Hamburg, Germany: Chaos Computer Club, 2012;1–10.
150. Trusted Computing Group. TCG storage security subsystem class (SSC): Opal, specification version 2.00, revision 1.0 ed, 2012; http://www.trustedcomputinggroup.org/resources/storage_work_group_storage_security_subsystem_class_opal (accessed October 7, 2015).
151. Microsoft. Encrypted hard drive, TechNet Library, 2012. http://technet.microsoft.com/en-us/library/hh831627.aspx (accessed October 7, 2015).
152. Rich D. Authentication in transient storage device attachments. Comput 2007;40(4):102–4.
153. ® solid-state drive pro 1500 series (M.2), Product Specification, 2013. http://www.intel.com/content/dam/www/public/us/en/documents/product-specifications/ssd-pro-1500-series-m2-specification.pdf (accessed October 7, 2015).
154. Kingston. Kingston introduces optional TCG opal 1.0 compliant SSD, 2013 Flash Press Release, 2013. http://www.kingston.com/us/company/press/article/6979 (accessed October 7, 2015).
155. TCG n.d. Data production solution, Trusted Computing Group. http://www.trustedcomputinggroup.org/solutions/data_protection (accessed October 7, 2015).
156. Wetzels J. Hidden in snow, revealed in thaw: cold boot attacks revisited, 2014. http://arxiv.org/abs/1408.0725 (accessed October 12, 2015).
157. Rutkowska J. Evil maid goes after TrueCrypt, The Invisible Things Lab's blog, 2009. http://theinvisiblethings.blogspot.com/2009/10/evil-maid-goes-after-truecrypt.html (accessed October 7, 2015).
158. Rutkowska J. Anti evil maid, The Invisible Things Lab's blog, 2011. http://theinvisiblethings.blogspot.com/2011/09/anti-evil-maid.html (accessed October 7, 2015).
159. Tereshkin A. Evil maid goes after PGP whole disk encryption. In: Proceedings of the Third International Conference on Security of Information and Networks; 2010 September 7–11; Taganrog, Russia. New York, NY: ACM, 2010.
160. Sophos. SafeGuard device encryption: OPAL support, Sophos Knowledgebase Support, 2014. https://www.sophos.com/en-us/support/knowledgebase/113366.aspx (accessed October 7, 2015).
161. Intel. Data security features in the Intel solid - state drive 520 series, Intel SSD 520 Series Technology Brief, 2012. http://www.intel.com/content/dam/www/public/us/en/documents/technology-briefs/ssd-520-aes-tech-brief.pdf (accessed October 7, 2015).
162. Lee S, Kim J. Understanding SSDs with the OpenSSD platform. Seoul, South Korea: Sungkyunkwan University, 2011.
163. Davis JD, Zhang L. FRP: a nonvolatile memory research platform targeting NAND flash. In: Proceedings of the First Workshop on Integrating Solid-state Memory into the Storage Hierarchy; 2009 March 7–11; Washington, D.C. New York, NY: ACM, 2009;1–8.
164. Lee S, Fleming K, Park J, Ha K, Caulfield A, Swanson S, et al. BlueSSD: an open platform for cross-layer experiments for NAND flash-based SSDs. In: Proceedings of the Fifth Workshop on Architectural Research Prototyping; 2015 June 19–23; Saint-Malo, France. New York, NY: ACM, 2015;1–5; http://research.microsoft.com/pubs/198375/WARP2010_BlueSSD.pdf (accessed October 12, 2015).
165. Bunker T, Wei M, Swanson SJ. Ming II: a flexible platform for NAND flash-based research. San Diego, CA: Department of Computer Science and Engineering, University of California-San Diego, 2012.
166. Mislan RP, Casey E, Kessler GC. The growing need for on-scene triage of mobile devices. Digit Investig 2010;6(3–4):112–24.
167. Wakefield J. Devices being remotely wiped in police custody. BBC, 2014. http://www.bbc.com/news/technology-29464889 (accessed October 7, 2015).
168. Barrett D, Yadron D, Wakaba D. Apple and others encrypt phones, fueling government standoff. Wall Street Journal, 2014; http://www.wsj.com/articles/apple-and-others-encrypt-phones-fueling-government-standoff-1416367801 (accessed October 7, 2015).
169. Hattem J. Crypto wars’ return to congress. The Hill, 2014. http://thehill.com/policy/cybersecurity/221147-crypto-wars-return-to-congress (accessed October 12, 2015).
170. Timberg C, Miller G. FBI blasts apple, google for locking police out of phones. The Washington Post, 2014. http://www.washingtonpost.com/business/technology/2014/09/25/68c4e08e-4344-11e4-9a15-137aa0153527_story.html (accessed October 12, 2015).
171. Frizell S. Yahoo is making it harder for the NSA to read your emails. TIME, 2014. http://time.com/3092881/email-encryption/ (accessed October 12, 2015).
172. Gustin S. NSA spying scandal could cost U.S. tech giants billions. TIME, 2013. http://business.time.com/2013/12/10/nsa-spying-scandal-could-cost-u-s-tech-giants-billions/ (accessed October 12, 2015).
173. Agrawal N, Prabhakaran V, Wobber T, Davis JD, Manasse M, Panigrahy R. Design tradeoffs for SSD performance. In: Proceedings of the USENIX Annual Technical Conference; 2008 June 22–27; Boston, MA: USENIX Association, 2008;57–70.
174. Walker DR, Fyke SH, Inventors. BlackBerry Ltd, assignee. System and method for remote wipe through voice mail. EU patent EP2575384A1. (accessed 2013 April 3).
175. Hasebe M, Inventor. Toshiba Corp, assignee. System for remotely securing/locking a stolen wireless device via an email message. US patent 5,987,609 (accessed 1999 November 16).