In the ongoing battle of DOD 5220 and NIST SP800-88 and which secure overwrite procedure is the most suited to ensure no keyboard nor lab recovery of data stored on magnetic media; Microsoft has made further improvements to the Windows format utility to help make the choice that much easier.
With Windows 7, Microsoft changed the format utility to write a pass of 0′s with the /p:N option, with N being the number of passes that you wish to write to the drive.
Microsoft has further changed this command in Windows 8 to meet the following behavior:
/p:N – Writes a single 0 pass of zeroes, followed by N passes of random numbers. If you specify 0 for N, it will write a single pass of 0′s.
Example:
Pass 1: 0′s
Pass 2: 5′s
Pass 3: 1′s
While I do not know the specifics of how the bytes are chosen (whether it uses 0-9, or the ASCII table, or randomly chosen byte values), this is a much closer step to ensuring that your data is secure when you wish to reuse media.
Interestingly, different solid state media handle this differently. On SSD media, would it be more appropriate to leverage TRIM to ensure that SSD garbage collection clears the deleted data?
This should reduce the arguments over Active Kill Disk vs. DBAN vs. Windows Format when you migrate your users to Windows 8.
Also, you should be able to see some benefit of this for your existing Windows deployments.
Microsoft sort of coincides releases of Windows PE with the Windows OS release. Windows PE 2.0 came with Vista, 3.0 came with 7, and we are currently on 3.1 which came out Windows 7 SP1.
It’s not unreasonable to assume that we’ll see a Windows PE 4.0 with the release of Windows 8, at which point should be able to be used to deploy Windows Vista, 7, 2008, 2008R2, 8, and 2012 and should also include the updated format utility.
Currently, PE 3.1 can even be used to deploy Windows 8 and Windows Server 2012.