I’ve been reading about this a lot lately, but some of the topics are kind of fuzzy and google is failing me.
In the case of a hard drive, preventing data recovery is simpler in that you can overwrite the disk with zeros or perhaps random data. There was some research in the 1990s that suggested recovery was still possible with expensive equipment unless this was done multiple times but my reading suggests this doesn’t really apply to newer drives.
My question is, is overwriting a file with zeros good enough to destroy the file? Every time I try to google this question I get nothing but topics about wiping the whole disk which is pretty time consuming. I’ve seen some tools that purpose to do that but I was a bit skeptical.
SSDs are another animal due to wear leveling. SSDs are encrypted with their own key. A secure erase, fired off with a manufacturer utility to something like hdparm simply “forgets” the key and creates a new one, which is basically instant. Baring a bug (can’t find information about how buggy things are now, but some one tested in 2011 and common SSDs secure erase was very buggy and unreliable!) or a backdoor, how secure is this? I know this one is a pretty fuzzy topic but it’s interesting.
Another question I had on the SSD secure erase, is there any reason to believe running that frequently would kill the drive?