Which of the following is not appropriate in addressing object reuse?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
Object reuse requirements, applying to systems rated TCSEC C2 and above, are used to protect files, memory, and other objects in a trusted system from being accidentally accessed by users who are not authorized to access them.
Deleting files on disk merely erases file headers in a directory structure.
It does not clear data from the disk surface, thus making files still recoverable.
All other options involve clearing used space, preventing any unauthorized access.
Source: RUSSEL, Deborah & GANGEMI, G.T.
Sr., Computer Security Basics, O'Reilly, July 1992 (page 119).
Object reuse refers to the practice of repurposing resources such as files, memory blocks, and magnetic tapes for a different use after they are no longer needed for their original purpose. However, before reusing these resources, it is important to ensure that they do not contain any sensitive or confidential information that can be accessed by unauthorized individuals. This process is commonly referred to as sanitization or data sanitization.
Let's look at each of the given options and determine which one is not appropriate in addressing object reuse:
A. Degaussing magnetic tapes when they're no longer needed.
Degaussing is the process of using a magnetic field to erase data from a magnetic tape. This process is effective in destroying any data that may have been stored on the tape and is a recommended method of sanitization for magnetic media. Therefore, this option is appropriate in addressing object reuse.
B. Deleting files on disk before reusing the space.
Deleting files on a disk before reusing the space is a common practice in sanitizing hard drives. However, simply deleting files does not necessarily erase the data permanently. The data may still be recoverable using specialized software tools. Therefore, more secure methods of sanitization such as overwriting the disk with random data or using disk wiping software are recommended. However, since the question only asks whether deleting files is appropriate, this option is also considered appropriate in addressing object reuse.
C. Clearing memory blocks before they are allocated to a program or data.
Clearing memory blocks before they are allocated to a program or data is a recommended practice in sanitizing memory. This process ensures that any sensitive data that may have been stored in the memory is erased before it is allocated to a new program or data. Therefore, this option is appropriate in addressing object reuse.
D. Clearing buffered pages, documents, or screens from the local memory of a terminal or printer.
Clearing buffered pages, documents, or screens from the local memory of a terminal or printer is also a recommended practice in sanitizing these devices. This process ensures that any sensitive data that may have been stored in the memory of these devices is erased before they are reused. Therefore, this option is also appropriate in addressing object reuse.
Conclusion: All of the given options are appropriate in addressing object reuse. Therefore, the answer to the question is none of the above (E) since there is no option that is not appropriate in addressing object reuse.