Secure Delete: what is it, and do I need it?

Home » General Computing

Summary: Secure Delete is a way to make sure that when you delete a file it cannot be recovered. Understanding Secure Delete is important to protect sensitive data properly.

Although there are many software utilities that claim to be able to delete data files from hard drives securely and thoroughly, can you accomplish the same thing simply by overwriting sensitive files with large, non-sensitive ones.

To be honest, it depends on your level of paranoia. I suppose that also depend on the level of sensitivity of your data.

But you are correct in the implication that a plain old "delete" isn't nearly enough.

Let's look at that, and how far you might need to go.

•

As you may already know, deleting a file in Windows doesn't actually delete the data. In fact, it doesn't really even delete the file - in Windows Explorer if you delete a file it just gets moved to the recycle bin. The file's not really deleted until the recycle bin gets too full, or until you empty it yourself.

Naturally it's trivial to go digging around in the recycle bin to see what's been "deleted", and recover it intact.

Even a "permanent" delete after, or bypassing, the recycle bin doesn't really delete the data. In a sense, it just tells Windows "This space over here where there used to be a file? You can put something else there, if you like."

It's kind of like moving out of an apartment by only taking your name off of the door. Until someone moves in and replaces with their own, all your stuff is still inside and available to anyone who knows how to look for it.

That's where the concept of "secure delete" comes in. A secure delete overwrites the data in the file when the file is deleted. This takes longer, of course, as it has to actually go access the entire file, but it ensure that the data is no longer accessible to the casual observer. It's kind of like making sure your apartment is empty - or at least full of stuff that isn't yours - before leave.

Unfortunately simply overwriting one file with another does not do this. The problem is that you can't control where the operating system is going to write the data. Depending on how the copy is implemented it may copy the data to a new file on the hard disk, delete your old file, and then rename the new file to the old file. (A very common technique.) Note the "delete" in the middle - that's not a secure delete. Your data is still out on the hard disk.

The bottom line is that, yes, a secure delete utility is probably what you need. It will ensure that the actual sectors on the hard disk that your file occupied are overwritten with other data.

Our friends over at SysInternals have such a utility for free: SDelete.

Alternately, there are also "free space wipers" that will simply write data to all the free space on your hard drive. This removes the data from any and all files that have been permanently deleted. As it turns out, SDelete will do this as well.

"Because of the way magnetic material on hard disks works, it might be possible to actually recover data that has been overwritten."

Now, there's one more step we need to look at before we say we're done, and this is where your level of paranoia, and the sensitivity of the data, come into play.

Because of the way magnetic material on hard disks works, it might be possible to actually recover data that has been overwritten. It's most definitely not trivial, and often requires special tools and techniques (and often a fair amount of money), but it sometimes can be done.

The solution is to ensure that the secure delete utility has the option to overwrite the data multiple times. (It can actually involve much more than that, based on things like physical disk configuration and disk head movement.) By writing over those soon-to-be-free sectors multiple times, the original data is well and truly gone.

Related:

Ask Leo! - I deleted a file by mistake - can I get it back?
Ask Leo! - Why can't I delete this file?

Article 10645 | Posted August 23, 2006

•

Recent Comments

0 Comments

Yes it is definitely necessary to use some sort of software or encryption to protect and or completely erase your data. Especially since recent studies show that you can run into a lot of trouble if proper deletion of data does not take place when recycling old hardware. You can read more about it here:

http://www.techknowbizzle.com/2006/08/reduce-reuse-recycle.html

There's also new technologies that are being developed so that secure disposable of products can be done from home, from the office, and even on the battleground. http://www.darkreading.com/document.asp?doc_id=98819

Posted by: mroonie at August 24, 2006 12:17 PM

Eraser 5.8 is a great secure delete software program
and it will also overwrite all unused disk space, it is worth checking out and it's freeware.
http://www.heidi.ie/eraser/

Posted by: TDH at August 25, 2006 6:52 PM

I'sorry i don't need what i wanted no more.

Thank you

Posted by: Marc at August 27, 2006 8:00 AM

Aloha Leo....I read the "Secure Delete" article. I'm a little confused (Not unusual for a 65 yr.old). I utilize System Mechanic - it has a function that evaluates the hard drive & lets me know that I have "alot" of duplicate files - taking up alot of hard drive space. My Question: If I get rid of the "duplicate files" will it give me more disk space? (Big Bang Enterprises has "Double Killer" - a software program that "searches the Hard Drive for identical Files (Duplicate Files) there's a "Free" & a "Pro" ($14.95); that gives instructions on how to remove the files, etc. What's your recommendation? Your Advise? I'm a little leary about removing the files...if it's not necessary...but if necessary, I'm willing to purchase the "Pro" version. Thank You, for all your Excellent Advise & your concise & informnative Newsletters!! Greatly Appreciated! (& it's been my pleasure to "buy you some coffee"!!) Keep Up the Good Work! Aloha, Sebastian

Posted by: Sebastian San Filippo at August 28, 2006 2:00 PM

SecureAtom has a nice secure deletion tool with multiple shredding algorithims it can be found at http://www.secureatom.com

Posted by: Mike at March 3, 2008 8:07 AM

Please, does secure delete work with xp windows?
Thank you.

Elizabeth.

Yes.

-Leo

Posted by: Elizabeth at August 5, 2008 1:11 PM

Post a comment on "Secure Delete: what is it, and do I need it?":

Name: (Required)

Email Address: (Required)

(Email Address will not be published.)

Remember Me? YesNo

By popular demand...
my tip jar

Buy Leo a Latte!

Comments: (you may use HTML tags for style)

New!

Subscribe to the RSS Feed specifically for comments on this article.

Before commenting, please...

Read the article at the top of this page. If your comment shows you didn't, it'll be deleted and ignored.
Comment only on this article. Use the Google search box at the top of the page if you have a question about something else.
Don't include personal information in the comment. No email addresses. No phone numbers. No physical addresses.
Don't ask me to recover lost passwords or hacked accounts. I can't, and those comments will be deleted.

I can't respond to every comment. And I can't vouch for the accuracy of others who do.
Read Why didn't you answer my question? for hints on getting an answer.
By posting a comment you agree to the Terms of Service. Don't agree? Don't post.
Read the article at the top of this page. If your comment shows you didn't, it'll be deleted and ignored. Yes, I'm saying this twice; you'd be amazed.

Please wait. Your comment is being processed ...