如何使用 sql server 2008 安全地销毁某些数据?(使用 DoD 安全擦除或等效物) [英] How can I securely destroy some data using sql server 2008 ? (using DoD secure wipe or an equivalent)

问题描述

我的一个客户希望我定期真正"销毁他的一些旧数据，我正在评估最好的方法.

One of my clients wants me to perform a periodic "real" destruction of some of his old data, and I'm evaluating the best way to do it.

数据在一个表中，我想销毁其中包含的一些行.

The data is in a table, and I want to destroy some of the rows contained in it.

我可以通过删除/导出另一台计算机上的数据库/对硬盘驱动器消磁/重新导入保存的数据来手动完成，但我需要一个自动解决方案.

I could do it manually by deleting/exporting the database on another computer/degaussing the hard drive/reimporting the saved data, but I need an automatic solution.

是否有与删除(如 delete * from foo)命令等效的命令，该命令可以安全销毁数据(使用 DoD 安全擦除或类似方法?)

您是否有其他方法可以执行此自动删除?

Do you see other ways to perform this automatic deletion?

顺便说一句，我知道有人使用 sql delete 命令检索我已销毁的某些数据的几率非常小，但我的一些客户需要它.所以请不要把这个问题变成关于数据处理程序主题的全球辩论！

Btw, I know the odds of someone retrieving some of the data I've destroyed using the sql delete command are very small, but some of my clients require it. So please don't turn this question into a global debate on the topic of data disposal procedures !

编辑:我想解决的问题不是我应该如何销毁数据使其无法恢复"，而是我如何说服我的客户他们的数据无法恢复".

Edit : the problem I want to address is not "How should I destroy the data so it cannot be recovered" but rather "How can I convince my clients that their data cannot be recovered".

推荐答案

来自 书籍在线:

从表中删除操作或导致行的更新操作move 可以立即释放空间通过删除对页面的引用排.然而，在某些情况下情况下，该行可以在物理上像幽灵一样留在数据页上记录.幽灵记录是定期的被后台进程删除.这个剩余数据不返回数据库引擎响应查询.然而，在环境中其物理安全性数据或备份文件有风险，您可以使用 sp_clean_db_free_space清理这些幽灵记录.

Delete operations from a table or update operations that cause a row to move can immediately free up space on a page by removing references to the row. However, under certain circumstances, the row can physically remain on the data page as a ghost record. Ghost records are periodically removed by a background process. This residual data is not returned by the Database Engine in response to queries. However, in environments in which the physical security of the data or backup files is at risk, you can use sp_clean_db_free_space to clean these ghost records.

这应该将您的免费"数据页归零.如果使用了即时初始化，也可以使用它，但您决定改为将页面归零.

This should zero-out your "free" data pages. It can also be used if Instant Initialization was used, but you decided you want to zero-out pages instead.

为了回答您更新的问题，我如何说服我的客户他们的数据无法恢复"，BOL 条目明确指出，后台进程会定期删除幽灵记录."

To answer your updated question, "How can I convince my clients that their data cannot be recovered", that BOL entry states it clearly, "Ghost records are periodically removed by a background process."

这篇关于如何使用 sql server 2008 安全地销毁某些数据?(使用 DoD 安全擦除或等效物)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！