{"product_id":"net-zeros-and-ones-isbn-9781119866169","title":"Net Zeros and Ones","description":"\u003cp\u003e\u003cb\u003eDesign, implement, and integrate a complete data sanitization program\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eIn\u003ci\u003e Net Zeros and Ones: How Data Erasure Promotes Sustainability, Privacy, and Security, \u003c\/i\u003ea well-rounded team of accomplished industry veterans delivers a comprehensive guide to managing permanent and sustainable data erasure while complying with regulatory, legal, and industry requirements. In the book, you’ll discover the why, how, and when of data sanitization, including why it is a crucial component in achieving circularity within IT operations. You will also learn about future-proofing yourself against security breaches and data leaks involving your most sensitive information—all while being served entertaining industry anecdotes and commentary from leading industry personalities. \u003c\/p\u003e\u003cp\u003eThe authors also discuss: \u003c\/p\u003e\u003cp\u003eSeveral new standards on data erasure, including the soon-to-be published standards by the IEEE and ISO \u003c\/p\u003e\u003cp\u003eHow data sanitization strengthens a sustainability or Environmental, Social, and Governance (ESG) program \u003c\/p\u003e\u003cp\u003eHow to adhere to data retention policies, litigation holds, and regulatory frameworks that require certain data to be retained for specific timeframes \u003c\/p\u003e\u003cp\u003eAn ideal resource for ESG, data protection, and privacy professionals, \u003ci\u003eNet Zeros and Ones\u003c\/i\u003e will also earn a place in the libraries of application developers and IT asset managers seeking a one-stop explanation of how data erasure fits into their data and asset management programs. \u003c\/p\u003e\u003cp\u003eForeword xv\u003c\/p\u003e \u003cp\u003eIntroduction xix\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 End of Life for Data 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e1.1 Growth of Data 3\u003c\/p\u003e \u003cp\u003e1.2 Managing Data 4\u003c\/p\u003e \u003cp\u003e1.2.1 Discovery 4\u003c\/p\u003e \u003cp\u003e1.2.2 Classification 5\u003c\/p\u003e \u003cp\u003e1.2.3 Risk 6\u003c\/p\u003e \u003cp\u003e1.3 Data Loss 6\u003c\/p\u003e \u003cp\u003e1.3.1 Accidental 7\u003c\/p\u003e \u003cp\u003e1.3.2 Theft 7\u003c\/p\u003e \u003cp\u003e1.3.3 Dumpster Diving 9\u003c\/p\u003e \u003cp\u003e1.4 Encryption 9\u003c\/p\u003e \u003cp\u003e1.5 Data Discovery 9\u003c\/p\u003e \u003cp\u003e1.6 Regulations 10\u003c\/p\u003e \u003cp\u003e1.7 Security 10\u003c\/p\u003e \u003cp\u003e1.8 Legal Discovery 11\u003c\/p\u003e \u003cp\u003e1.9 Data Sanitization 12\u003c\/p\u003e \u003cp\u003e1.10 Ecological and Economic Considerations 13\u003c\/p\u003e \u003cp\u003e1.10.1 Ecological 13\u003c\/p\u003e \u003cp\u003e1.10.2 Economic 13\u003c\/p\u003e \u003cp\u003e1.11 Summary: Proactive Risk Reduction and Reactive End of Life 14\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 Where Are We, and How Did We Get Here? 15\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e2.1 Digital Data Storage 16\u003c\/p\u003e \u003cp\u003e2.2 Erasing Magnetic Media 17\u003c\/p\u003e \u003cp\u003e2.3 History of Data Erasure 17\u003c\/p\u003e \u003cp\u003e2.3.1 The Beginnings of Commercial Data Erasure 19\u003c\/p\u003e \u003cp\u003e2.3.2 Darik’s Boot and Nuke (DBAN) 19\u003c\/p\u003e \u003cp\u003e2.4 Summary 21\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Data Sanitization Technology 23\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e3.1 Shredding 24\u003c\/p\u003e \u003cp\u003e3.2 Degaussing 24\u003c\/p\u003e \u003cp\u003e3.3 Overwriting 25\u003c\/p\u003e \u003cp\u003e3.4 Crypto- Erase 27\u003c\/p\u003e \u003cp\u003e3.5 Erasing Solid- State Drives 28\u003c\/p\u003e \u003cp\u003e3.6 Bad Blocks 29\u003c\/p\u003e \u003cp\u003e3.7 Data Forensics 29\u003c\/p\u003e \u003cp\u003e3.8 Summary 31\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Information Lifecycle Management 33\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e4.1 Information Lifecycle Management vs. Data Lifecycle Management 33\u003c\/p\u003e \u003cp\u003e4.2 Information Lifecycle Management 34\u003c\/p\u003e \u003cp\u003e4.2.1 Lifecycle Stages 34\u003c\/p\u003e \u003cp\u003e4.3 Data Security Lifecycle 35\u003c\/p\u003e \u003cp\u003e4.3.1 Stages for Data Security Lifecycle 36\u003c\/p\u003e \u003cp\u003e4.4 Data Hygiene 36\u003c\/p\u003e \u003cp\u003e4.5 Data Sanitization 37\u003c\/p\u003e \u003cp\u003e4.5.1 Physical Destruction 37\u003c\/p\u003e \u003cp\u003e4.5.2 Cryptographic Erasure 37\u003c\/p\u003e \u003cp\u003e4.5.3 Data Erasure 38\u003c\/p\u003e \u003cp\u003e4.6 Summary 39\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Regulatory Requirements 41\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e5.1 Frameworks 42\u003c\/p\u003e \u003cp\u003e5.1.1 NIST Cybersecurity Framework Applied to Data 42\u003c\/p\u003e \u003cp\u003e5.2 Regulations 43\u003c\/p\u003e \u003cp\u003e5.2.1 GDPR 44\u003c\/p\u003e \u003cp\u003e5.2.1.1 The Right to Erasure 45\u003c\/p\u003e \u003cp\u003e5.2.1.2 Data Retention 51\u003c\/p\u003e \u003cp\u003e5.2.2 HIPAA Security Rule Subpart c 53\u003c\/p\u003e \u003cp\u003e5.2.3 PCI DSS V3.2 Payment Card Industry Requirements 56\u003c\/p\u003e \u003cp\u003e5.2.4 Sarbanes–Oxley 58\u003c\/p\u003e \u003cp\u003e5.2.5 Saudi Arabian Monetary Authority Payment Services Regulations 59\u003c\/p\u003e \u003cp\u003e5.2.6 New York State Cybersecurity Requirements of Financial Services Companies 23 NYCRR 500 59\u003c\/p\u003e \u003cp\u003e5.2.7 Philippines Data Privacy Act 2012 60\u003c\/p\u003e \u003cp\u003e5.2.8 Singapore Personal Data Protection Act 2012 61\u003c\/p\u003e \u003cp\u003e5.2.9 Gramm–Leach–Bliley Act 61\u003c\/p\u003e \u003cp\u003e5.3 Standards 62\u003c\/p\u003e \u003cp\u003e5.3.1 ISO 27000 and Family 62\u003c\/p\u003e \u003cp\u003e5.3.2 NIST SP 800- 88 63\u003c\/p\u003e \u003cp\u003e5.4 Summary 65\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 New Standards 67\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e6.1 IEEE P2883 Draft Standard for Sanitizing Storage 68\u003c\/p\u003e \u003cp\u003e6.1.1 Data Sanitization 68\u003c\/p\u003e \u003cp\u003e6.1.2 Storage Sanitization 68\u003c\/p\u003e \u003cp\u003e6.1.3 Media Sanitization 68\u003c\/p\u003e \u003cp\u003e6.1.4 Clear 69\u003c\/p\u003e \u003cp\u003e6.1.5 Purge 69\u003c\/p\u003e \u003cp\u003e6.1.6 Destruct 69\u003c\/p\u003e \u003cp\u003e6.2 Updated ISO\/IEC CD 27040 Information Technology Security Techniques— Storage Security 70\u003c\/p\u003e \u003cp\u003e6.3 Summary 71\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Asset Lifecycle Management 73\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e7.1 Data Sanitization Program 73\u003c\/p\u003e \u003cp\u003e7.2 Laptops and Desktops 74\u003c\/p\u003e \u003cp\u003e7.3 Servers and Network Gear 76\u003c\/p\u003e \u003cp\u003e7.3.1 Edge Computing 78\u003c\/p\u003e \u003cp\u003e7.4 Mobile Devices 79\u003c\/p\u003e \u003cp\u003e7.4.1 Crypto- Erase 80\u003c\/p\u003e \u003cp\u003e7.4.2 Mobile Phone Processing 80\u003c\/p\u003e \u003cp\u003e7.4.3 Enterprise Data Erasure for Mobile Devices 81\u003c\/p\u003e \u003cp\u003e7.4.3.1 Bring Your Own Device 81\u003c\/p\u003e \u003cp\u003e7.4.3.2 Corporate- Issued Devices 81\u003c\/p\u003e \u003cp\u003e7.5 Internet of Things: Unconventional Computing Devices 82\u003c\/p\u003e \u003cp\u003e7.5.1 Printers and Scanners 82\u003c\/p\u003e \u003cp\u003e7.5.2 Landline Phones 82\u003c\/p\u003e \u003cp\u003e7.5.3 Industrial Control Systems 82\u003c\/p\u003e \u003cp\u003e7.5.4 HVAC Controls 83\u003c\/p\u003e \u003cp\u003e7.5.5 Medical Devices 83\u003c\/p\u003e \u003cp\u003e7.6 Automobiles 83\u003c\/p\u003e \u003cp\u003e7.6.1 Off- Lease Vehicles 84\u003c\/p\u003e \u003cp\u003e7.6.2 Used Vehicle Market 85\u003c\/p\u003e \u003cp\u003e7.6.3 Sanitization of Automobiles 85\u003c\/p\u003e \u003cp\u003e7.7 Summary 86\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 Asset Disposition 87\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e8.1 Contracting and Managing Your ITAD 88\u003c\/p\u003e \u003cp\u003e8.2 ITAD Operations 89\u003c\/p\u003e \u003cp\u003e8.3 Sustainability and Green Tech 91\u003c\/p\u003e \u003cp\u003e8.4 Contribution from R2 91\u003c\/p\u003e \u003cp\u003e8.4.1 Tracking Throughput 91\u003c\/p\u003e \u003cp\u003e8.4.2 Data Security 92\u003c\/p\u003e \u003cp\u003e8.5 e- Stewards Standard for Responsible Recycling and Reuse of Electronic Equipment 92\u003c\/p\u003e \u003cp\u003e8.6 i- SIGMA 93\u003c\/p\u003e \u003cp\u003e8.7 FACTA 93\u003c\/p\u003e \u003cp\u003e8.8 Summary 95\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 Stories from the Field 97\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e9.1 3stepIT 98\u003c\/p\u003e \u003cp\u003e9.2 TES – IT Lifecycle Solutions 101\u003c\/p\u003e \u003cp\u003e9.2.1 Scale of Operations 103\u003c\/p\u003e \u003cp\u003e9.2.2 Compliance 104\u003c\/p\u003e \u003cp\u003e9.2.3 Conclusion 104\u003c\/p\u003e \u003cp\u003e9.3 Ingram Micro 104\u003c\/p\u003e \u003cp\u003e9.4 Summary 106\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10 Data Center Operations 109\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e10.1 Return Material Allowances 110\u003c\/p\u003e \u003cp\u003e10.2 NAS 110\u003c\/p\u003e \u003cp\u003e10.3 Logical Drives 110\u003c\/p\u003e \u003cp\u003e10.4 Rack- Mounted Hard Drives 111\u003c\/p\u003e \u003cp\u003e10.5 Summary 112\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 11 Sanitizing Files 113\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e11.1 Avoid Confusion with CDR 113\u003c\/p\u003e \u003cp\u003e11.2 Erasing Files 114\u003c\/p\u003e \u003cp\u003e11.3 When to Sanitize Files 115\u003c\/p\u003e \u003cp\u003e11.4 Sanitizing Files 116\u003c\/p\u003e \u003cp\u003e11.5 Summary 116\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 12 Cloud Data Sanitization 117\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e12.1 User Responsibility vs. Cloud Provider Responsibility 117\u003c\/p\u003e \u003cp\u003e12.2 Attacks Against Cloud Data 119\u003c\/p\u003e \u003cp\u003e12.3 Cloud Encryption 119\u003c\/p\u003e \u003cp\u003e12.4 Data Sanitization for the Cloud 120\u003c\/p\u003e \u003cp\u003e12.5 Summary 121\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 13 Data Sanitization and Information Lifecycle Management 123\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e13.1 The Data Sanitization Team 124\u003c\/p\u003e \u003cp\u003e13.2 Identifying Data 124\u003c\/p\u003e \u003cp\u003e13.3 Data Sanitization Policy 124\u003c\/p\u003e \u003cp\u003e13.3.1 Deploy Technology 125\u003c\/p\u003e \u003cp\u003e13.3.2 Working with DevOps 125\u003c\/p\u003e \u003cp\u003e13.3.3 Working with Data Security 125\u003c\/p\u003e \u003cp\u003e13.3.4 Working with the Legal Team 125\u003c\/p\u003e \u003cp\u003e13.3.5 Changes 126\u003c\/p\u003e \u003cp\u003e13.4 Summary 126\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 14 How Not to Destroy Data 127\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e14.1 Drilling 127\u003c\/p\u003e \u003cp\u003e14.1.1 Nail Gun 128\u003c\/p\u003e \u003cp\u003e14.1.2 Gun 128\u003c\/p\u003e \u003cp\u003e14.2 Acids and Other Solvents 128\u003c\/p\u003e \u003cp\u003e14.3 Heating 128\u003c\/p\u003e \u003cp\u003e14.4 Incineration 129\u003c\/p\u003e \u003cp\u003e14.5 Street Rollers 129\u003c\/p\u003e \u003cp\u003e14.6 Ice Shaving Machines 129\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 15 The Future of Data Sanitization 131\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e15.1 Advances in Solid- State Drives 132\u003c\/p\u003e \u003cp\u003e15.2 Shingled Magnetic Recording 133\u003c\/p\u003e \u003cp\u003e15.3 Thermally Assisted Magnetic Recording, Also Known as Heat- Assisted Magnetic Recording 133\u003c\/p\u003e \u003cp\u003e15.4 Microwave- Assisted Magnetic Recording 134\u003c\/p\u003e \u003cp\u003e15.5 DNA Data Storage 135\u003c\/p\u003e \u003cp\u003e15.6 Holographic Storage 135\u003c\/p\u003e \u003cp\u003e15.7 Quantum Storage 136\u003c\/p\u003e \u003cp\u003e15.8 NVIDMM 137\u003c\/p\u003e \u003cp\u003e15.9 Summary 138\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 16 Conclusion 139\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAppendix Enterprise Data Sanitization Policy 143\u003c\/p\u003e \u003cp\u003eIntroduction 143\u003c\/p\u003e \u003cp\u003eIntended Audience 143\u003c\/p\u003e \u003cp\u003ePurpose of Policy 144\u003c\/p\u003e \u003cp\u003eGeneral Data Hygiene and Data Retention 144\u003c\/p\u003e \u003cp\u003eData Spillage 144\u003c\/p\u003e \u003cp\u003eHandling Files Classified as Confidential 144\u003c\/p\u003e \u003cp\u003eData Migration 144\u003c\/p\u003e \u003cp\u003eEnd of Life for Classified Virtual Machines 145\u003c\/p\u003e \u003cp\u003eOn Customer’s Demand 145\u003c\/p\u003e \u003cp\u003eSeven Steps to Creating a Data Sanitization Process 145\u003c\/p\u003e \u003cp\u003eStep 1: Prioritize and Scope 146\u003c\/p\u003e \u003cp\u003eStep 2: Orient 146\u003c\/p\u003e \u003cp\u003eStep 3: Create a Current Profile 146\u003c\/p\u003e \u003cp\u003eStep 4: Conduct a Risk Assessment 147\u003c\/p\u003e \u003cp\u003eStep 5: Create a Target Profile 147\u003c\/p\u003e \u003cp\u003eStep 6: Determine, Analyze, and Prioritize Gaps 147\u003c\/p\u003e \u003cp\u003eStep 7: Implement Action Plan 147\u003c\/p\u003e \u003cp\u003eData Sanitization Defined 147\u003c\/p\u003e \u003cp\u003ePhysical Destruction 148\u003c\/p\u003e \u003cp\u003eDegaussing 148\u003c\/p\u003e \u003cp\u003ePros and Cons of Physical Destruction 148\u003c\/p\u003e \u003cp\u003eCryptographic Erasure (Crypto- Erase) 148\u003c\/p\u003e \u003cp\u003ePros and Cons of Cryptographic Erasure 149\u003c\/p\u003e \u003cp\u003eData Erasure 149\u003c\/p\u003e \u003cp\u003ePros and Cons of Data Erasure 150\u003c\/p\u003e \u003cp\u003eEquipment Details 150\u003c\/p\u003e \u003cp\u003eAsset Lifecycle Procedures 151\u003c\/p\u003e \u003cp\u003eSuggested Process, In Short 152\u003c\/p\u003e \u003cp\u003eCreate Contract Language for Third Parties 152\u003c\/p\u003e \u003cp\u003eData Erasure Procedures 152\u003c\/p\u003e \u003cp\u003eResponsibility 152\u003c\/p\u003e \u003cp\u003eValidation of Data Erasure Software and Equipment 153\u003c\/p\u003e \u003cp\u003ePersonal Computers 153\u003c\/p\u003e \u003cp\u003eServers and Server Storage Systems 154\u003c\/p\u003e \u003cp\u003ePhotocopiers, Network Printers, and Fax Machines 154\u003c\/p\u003e \u003cp\u003eMobile Phones, Smartphones, and Tablets 154\u003c\/p\u003e \u003cp\u003ePoint- of- Sale Equipment 155\u003c\/p\u003e \u003cp\u003eVirtual Machines 155\u003c\/p\u003e \u003cp\u003eRemovable Solid- State Memory Devices (USB Flash Drives, SD Cards) 155\u003c\/p\u003e \u003cp\u003eCDs, DVDs, and Optical Discs 155\u003c\/p\u003e \u003cp\u003eBackup Tape 155\u003c\/p\u003e \u003cp\u003eGeneral Requirements for Full Implementation 155\u003c\/p\u003e \u003cp\u003eProcedure for Partners and Suppliers 155\u003c\/p\u003e \u003cp\u003eAudit Trail Requirement 156\u003c\/p\u003e \u003cp\u003ePolicy Ownership 156\u003c\/p\u003e \u003cp\u003eMandatory Revisions 156\u003c\/p\u003e \u003cp\u003eRoles and Responsibilities 157\u003cbr\u003eCEO 157\u003cbr\u003eBoard of Directors 157\u003c\/p\u003e \u003cp\u003eIndex 159\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eRICHARD STIENNON\u003c\/b\u003e is a renowned cybersecurity industry analyst. He has held executive roles with Gartner, Webroot Software, Fortinet, and Blancco Technology Group. He was a member of the Technical Advisory Committee of the Responsible Recycling standard. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eRUSS B. ERNST\u003c\/b\u003e has over twenty years’ experience in product strategy and management and is frequently sought for comment on issues related to data security in the circular economy. As Chief Technology Officer at Blancco Technology Group, he is responsible for defining, driving and executing the product strategy across the entire Blancco data erasure and device diagnostics product suite. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eFREDRIK FORSLUND \u003c\/b\u003ehas over 20 years’ experience in the data sanitization industry. He is the Director of the International Data Sanitization Consortium (IDSC) and is a sought-after speaker on topics related to IT security and data protection.   \u003c\/p\u003e\u003cp\u003eA COMPREHENSIVE GUIDE TO \u003cb\u003eDESIGNING, IMPLEMENTING, AND INTEGRATING A DATA SANITIZATION PROGRAM\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eNot all data is meant to live forever. Regulatory, legislative, or operational considerations may require the regular deletion and destruction of data or a one-off data deletion event. But there is no set industry standard for how that destruction should be carried out. Should you drill a hole through that hard drive? Should you overwrite all its partitions? \u003c\/p\u003e\u003cp\u003eIn \u003ci\u003eNet Zeros and Ones: How Data Erasure Promotes Sustainability, Privacy, and Security\u003c\/i\u003e, a team of accomplished data and security professionals delivers an expert discussion of the why, how, and when of data sanitization, including an examination of why it is so crucial to the achievement of IT operations circularity. Sustainability and ESG have become the biggest drivers of repurposing electronic waste and data erasure is a required element of that. You’ll also discover how to future-proof your organization against breaches and data leaks involving your company’s most sensitive information.  \u003c\/p\u003e\u003cp\u003eIn the book, the authors offer entertaining and engaging industry anecdotes and commentary from leading industry personalities and discuss new standards in data erasure, including soon-to-be published standards from the IEEE and ISO. \u003c\/p\u003e\u003cp\u003eAn essential handbook for ESG, privacy, and data protection professionals, \u003ci\u003eNet Zeros and Ones\u003c\/i\u003e will also be of interest to application developers and IT asset managers. Readers will also find: \u003c\/p\u003e\u003cul\u003e\u003cb\u003e\u003cli\u003eHow data sanitization contributes to ESG initiatives\u003c\/li\u003e \u003cli\u003eGuidance on complying with litigation holds\u003c\/li\u003e \u003cli\u003eAdvice on applicable regulatory frameworks\u003c\/li\u003e \u003cli\u003eHow to adhere to data retention policies \u003c\/li\u003e \u003cli\u003eStrategies for integrating data erasure into your company’s data management program \u003c\/li\u003e\u003c\/b\u003e\u003c\/ul\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989680472293,"sku":"NP9781119866169","price":24.99,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781119866169.jpg?v=1761785079","url":"https:\/\/k12savings.com\/products\/net-zeros-and-ones-isbn-9781119866169","provider":"K12savings","version":"1.0","type":"link"}