Schneier on Security

> How not to delete evidence.
The cover-up they attempted seems kind of logical. How should they have deleted the evidence?

So we're never allowed to delete our browsing history, cookies, etc.?

Interesting to compare this story with the previous entry about the UN spending the weekend deleting files.

Here's hoping that the UN's backup strategy is not as good as Mesa.

I believe the Mesa file deletion happened after the court order requiring them to turn the data over. It's a crime.

I'm all for deleting browing history, cookies, etc, at regular intervals, and have my computer set up to do it automatically.

"Here's hoping that the UN's backup strategy is not as good as Mesa."

Deleting data is actually very hard.

"I believe the Mesa file deletion happened after the court order requiring them to turn the data over."

That's the key point. Deleting files at will is fine. Doing it after you have been ordered by a court to provide those files is not.

Here's an article on e-discovery (legal issues) worth reading:

http://www.ciostrategycenter.com/cmp-insurancetech/Reg/law/facing_ediscovery/index.html

Ain't that the way it always is - haole stealing from the hawaiian!!!

"But Mesa says any deletion was not intentional and they have copies of the deleted files."

Given that they admit they have backups of the deleted files, they can't be claiming that they have accidentally lost any data.

This month's ;login: has an article by Alexander Muentz on IT aspects of preparing for litigation.

I love the pornography defense.. a kind of plausible deniability??

Some years ago someone suggested that private steganographic messages be hidden in porn files, as it would make a good cover for secretively downloading and keeping lots of images.

And when all of that fails, check into rehab. To hide, presumably.

Actually, there are laws that require the maintenance of specific types of records for business and legal purposes.

So you can't delete some records at all.

For example, the Federal Government must backup and keep ALL emails, written documents, and electronic documents forever.

If you work for the Feds, you have no secrets on your computer.

There is also the issue of recovery. Good techs with the right tools and software can recover data at least as many as 10 to 20 generations back or more.

That is why file scrubber software often writes patterns over and over thousands of times to "clean" a hard disk. Usually bits of 1's and 0's in various patterns

Exactly how many layers that can really be recovered is dependant on the current state of the art technology.

The top of the line stuff is likely classified and in the hands of the government. The NSA, CIA, or the Military.

It's funny that they spoke out of both sides of their mouth... 1st John O says we keep copies then we don't have copies.
Could the data have been so damning that they decided to let Murdane take a fall because better one than all?