Hard drive: Difference between revisions

From BoyWiki
Wanker (talk | contribs)
Eskimo (talk | contribs)
 
(31 intermediate revisions by 4 users not shown)
Line 1: Line 1:
A hard drive records data (text, images, databases, programs) on a rotating magnetic platform. Originally independent peripherals, a desktop PC will usually have one built in. Ones with larger capacity are available as add-ons that attach to a [[USB]] port, the main way peripherals are attached. This is the same technology used in server farms such as the ones Google, Youtube, and Pornhub use. Theirs are on vertical racks with plug-in cards of hard drives. (And produce tons of waste heat).
A hard drive records data (text, images, databases, software) on a magnetic platform. Originally independent peripherals, a desktop PC, tablet and smartphone will usually have one built in, that is where the operating system resides, you can expand storage with external drives attached to a hardware port, the main way peripherals are attached. This is the same technology used by cloud services, anything you store in the cloud, you must think of it as storing your data in another person´s hard drive, not yours, this means that they can read it and services like Dropbox and OneDrive automatically scan anything you upload to detect illegal images of child pornography, because it is their hard drive and not yours, they can do anything they want with it.


Other technologies have partly replaced magnetic hard drives in consumer products: read-write optical drives (CDs, DVDs, and BluRay discs use this technology), and using RAM circuits (look it up in Wikipedia) to act as memory, thus producing memory sticks and virtual hard drives. These are too expensive for use in servers, but are suitable for consumers who have only a few gigabytes of data. Solid state drives are becoming increasingly popular, since they are faster and have no moving parts, and therefore are less susceptible to catastrophic crashes due to G forces.
Other technologies have partly replaced magnetic hard drives in consumer products: read-write optical drives (CDs, DVDs, and BluRay discs use this technology), and using RAM circuits to act as memory, thus producing memory sticks and solid state disks. These are usually more expensive than rotating drives but have faster access and reliability because they have no moving parts, and therefore are less susceptible to catastrophic crashes, laptops, smartphones and tablets use solid state disk drives to store data because of their small size, reliability and low power consumption.


== [[Encryption]] ==
== Forensic analysis ==
 
In an operating system there are always temporary files and logs created all over the place. Every time you open a document, view a picture or watch a video your operating very often creates a temporary copy in another part of the drive that is not visible to you but it will be found with specialist forensic tools, even with the browser in Private mode something could be left behind.
 
You can buy programs like CyberScrub that claim to carry out military-grade erasure of all data, including temporary files, by overwriting it with multiple passes of a random algorithm or zeros and wiping hard drive free space, this makes it very difficult or impossible to recover the data but depending on many factors, like how good the software is, your computer unexpectedly crashing or permissions stopping data erasure, sometimes the software might not erase 100% of everything left behind. Another caveat of secure data erasing is that you don´t have the time to run the software every single day and if you lose your laptop it could be that the last time you securely erased the data was a week ago and every single page you visited and file you viewed will be found. Another common problem is that although the file can not be recovered, often the file name can still be read and this could be telling of the kind of file you viewed.
 
One good way to secure your operating system is by fully encrypting it with a tool like VeraCrypt in Windows, Linux and Mac have different software that can do that. If for some reason you can´t encrypt your operating system and you care about privacy you should still use Private mode in your browser and use software to securely erase data but always bearing in mind that this might not be totally effective, learning how full disk encryption works it is well worth if the leakage of the personal data you hold could lead to life changing situations such as a divorce or financial ruin. There are also differences in between how data must be securely erased in a hard drive with plates, a solid state disk and a hybrid disk, with technology changing everyday day, the software that promises to securely wipe data might not be effective.


Data on a storage device can be encrypted, that is requiring some kind of password or similar to decode. Encyption is a major military topic. Both sides - as in World War Two - struggle to come with up with an encryption protocol that the other side can not figure out how to decode. By the way, Osama bin Laden, who we should never forget had an adult porn collection (that's a militarily important bit of information), did not use encryption. He used human messengers. If you know where your enemy is, which means you know who he is, you can figure out who sees him and where they came from. Making them talk, if you capture one, is sometimes possible. Check Guantanamo and Abu Ghraib. What is harder is figuring out whether what he tells you is useful - he may not know what you want to learn, and makes something up to try to get you to stop, he may know what you want to know, but tells you a deliberate lie instead, or he tells you the truth, but you have no way of verifying it, no way
Another excellent way to thwart a forensic analysis of your hard drive is by using a live operating system that runs in RAM such as Tails, for this you will need a USB thumbdrive, burn the Tails operating system in the USB and boot your computer from the USB drive, the instructions to do this can be found in the Tails homepage. When you run an operating system all in RAM logs are still created but as soon as you switch off the computer everything is going to be irrecoverable for ever because nothing was written on the disk to start with, your activities run in volatile RAM memory.  You could also have a computer without a hard drive and run your operating system using a DVD where writing data is impossible, the caveat is that if you wish to save a document you downloaded you will have to do so in an external device as saving it to the operating system will be impossible since it resets to the original state every time you reboot the computer.
to distinguish it from everything else he's said.


Briefly, the longer the passcode, the more protected the data is; it would take more time to try every possible code, what cryptographers call the "brute force" method. This is in essence the technique used by [[PGP]] ([[Pretty Good Privacy]]) and many commercial encryption applications, who may claim that their protection has never been broken, which is true but not cause for relaxation. (in military applications it's more complicated, there may be a separate passcode for each character, as in the Nazi's Enigma machine, which the Allies decoded thus changing the course of World War Two. See the Wikipedia article.)
== Encryption ==


The government is not going to use a brute force method on you. It is too resource-intensive, and incredible as it seems, there are on the other side some who are sane enough to think it's more important to use their finite resources to go after terrorists rather than individual boylovers, girllovers, family lovers, or child porn collectors. There are too many of them, and the authorities have all the cases they can handle using other methods. These include other people informing on you, financial records (money can always be followed), ISP logs, analysis of Internet traffic, etc.
Data on a storage device can be encrypted, that is requiring some kind of password or similar to decode. [[Encryption]] is a major military topic. Both sides - as in World War Two - struggle to come with up with an encryption protocol that the other side can not figure out how to decode.


== Forensic analysis ==
There are ways various ways to bypass encryption, the most common is by trying to find non encrypted versions of your files in other parts of your operating system but this will not work if you have encrypted the whole operating system, in such a case the only way in is by trying to break the encryption scheme you used, Microsoft own encryption called Bitlocker offers you to save a backup of your decryption keys, that would be a way in if somebody finds them but if you use something like Veracrypt, which is open source and has been audited as not having any backdoor and assuming you used a long passphrase, the only way in would be what cryptographers call a ''brute force attack'' which consists in a farm of cloud computers trying multiple passwords every minute, to stop this attack Veracrypt slows down the numbers of tries you can make, it could take hundreds of years for anybody, including three letter agencies, to brute force a fully encrypted operating system, when such a case comes up the best course of action is to try and guess what password you might have used by going through all of your known passwords since people often reuse them. Some countries like the UK and Australia also have laws that punish with prison refusing to reveal your password to law enforcement.
 
== See also ==


What follows deals exclusively with the older magnetic technology.
* [[Privacy Freeware]]


In an operating system such as Windows, there are temporary files and logs all over the place. Even with the browser in Private mode. Can these be erased? Sure, if you know what they are and how to do it. You can easily buy programs that claim to carry out military-grade erasure, which overwrites with multiple passes of ones and zeros. This cannot be done between the knock on the door and the law enforcement official reaching the drive and unplugging it from its power supply. Can the military-grade erasure truly prevent recovery of data? I don't know. A lawyer who has been to workshops says the only safe thing is to physically destroy the disk platter, bending it with a hammer or etching it with acid. Drives are cheap. Buy a new one.
* [[Erasure of digital information]]


Note that a program wiping the free space of a drive, with the erased files (which are not truly erased when you erase them, the space they occupy is marked as "available" so that if and when needed, other data can be written on top of it, and until this happens they are simple to recover)). The program wiping the free space is not going to wipe the space not marked as free, the temporary files, caches, and logs. Do not think these can be identified and erased manually, or that some program you acquire knows what all of these are. There is no static checklist of what these are that you can use to check. They change all the time with different versions of operating systems and applications.
* [[Encryption]]


In a forensic laboratory such as state police etc. will run, erased files and the like are recovered. The first thing they will do is make a byte-by-byte copy (image) of your drive. Then not altering the original, they will analyze the image. This is expensive, time-consuming, and these laboratories have backlogs.
[[Category:Technology]]

Latest revision as of 14:46, 9 August 2022

A hard drive records data (text, images, databases, software) on a magnetic platform. Originally independent peripherals, a desktop PC, tablet and smartphone will usually have one built in, that is where the operating system resides, you can expand storage with external drives attached to a hardware port, the main way peripherals are attached. This is the same technology used by cloud services, anything you store in the cloud, you must think of it as storing your data in another person´s hard drive, not yours, this means that they can read it and services like Dropbox and OneDrive automatically scan anything you upload to detect illegal images of child pornography, because it is their hard drive and not yours, they can do anything they want with it.

Other technologies have partly replaced magnetic hard drives in consumer products: read-write optical drives (CDs, DVDs, and BluRay discs use this technology), and using RAM circuits to act as memory, thus producing memory sticks and solid state disks. These are usually more expensive than rotating drives but have faster access and reliability because they have no moving parts, and therefore are less susceptible to catastrophic crashes, laptops, smartphones and tablets use solid state disk drives to store data because of their small size, reliability and low power consumption.

Forensic analysis

In an operating system there are always temporary files and logs created all over the place. Every time you open a document, view a picture or watch a video your operating very often creates a temporary copy in another part of the drive that is not visible to you but it will be found with specialist forensic tools, even with the browser in Private mode something could be left behind.

You can buy programs like CyberScrub that claim to carry out military-grade erasure of all data, including temporary files, by overwriting it with multiple passes of a random algorithm or zeros and wiping hard drive free space, this makes it very difficult or impossible to recover the data but depending on many factors, like how good the software is, your computer unexpectedly crashing or permissions stopping data erasure, sometimes the software might not erase 100% of everything left behind. Another caveat of secure data erasing is that you don´t have the time to run the software every single day and if you lose your laptop it could be that the last time you securely erased the data was a week ago and every single page you visited and file you viewed will be found. Another common problem is that although the file can not be recovered, often the file name can still be read and this could be telling of the kind of file you viewed.

One good way to secure your operating system is by fully encrypting it with a tool like VeraCrypt in Windows, Linux and Mac have different software that can do that. If for some reason you can´t encrypt your operating system and you care about privacy you should still use Private mode in your browser and use software to securely erase data but always bearing in mind that this might not be totally effective, learning how full disk encryption works it is well worth if the leakage of the personal data you hold could lead to life changing situations such as a divorce or financial ruin. There are also differences in between how data must be securely erased in a hard drive with plates, a solid state disk and a hybrid disk, with technology changing everyday day, the software that promises to securely wipe data might not be effective.

Another excellent way to thwart a forensic analysis of your hard drive is by using a live operating system that runs in RAM such as Tails, for this you will need a USB thumbdrive, burn the Tails operating system in the USB and boot your computer from the USB drive, the instructions to do this can be found in the Tails homepage. When you run an operating system all in RAM logs are still created but as soon as you switch off the computer everything is going to be irrecoverable for ever because nothing was written on the disk to start with, your activities run in volatile RAM memory. You could also have a computer without a hard drive and run your operating system using a DVD where writing data is impossible, the caveat is that if you wish to save a document you downloaded you will have to do so in an external device as saving it to the operating system will be impossible since it resets to the original state every time you reboot the computer.

Encryption

Data on a storage device can be encrypted, that is requiring some kind of password or similar to decode. Encryption is a major military topic. Both sides - as in World War Two - struggle to come with up with an encryption protocol that the other side can not figure out how to decode.

There are ways various ways to bypass encryption, the most common is by trying to find non encrypted versions of your files in other parts of your operating system but this will not work if you have encrypted the whole operating system, in such a case the only way in is by trying to break the encryption scheme you used, Microsoft own encryption called Bitlocker offers you to save a backup of your decryption keys, that would be a way in if somebody finds them but if you use something like Veracrypt, which is open source and has been audited as not having any backdoor and assuming you used a long passphrase, the only way in would be what cryptographers call a brute force attack which consists in a farm of cloud computers trying multiple passwords every minute, to stop this attack Veracrypt slows down the numbers of tries you can make, it could take hundreds of years for anybody, including three letter agencies, to brute force a fully encrypted operating system, when such a case comes up the best course of action is to try and guess what password you might have used by going through all of your known passwords since people often reuse them. Some countries like the UK and Australia also have laws that punish with prison refusing to reveal your password to law enforcement.

See also