If you're concerned about someone reading the charge level of a Flash cell to infer the value of the cell before being erased, then overwrite with random data twice before issuing TRIM (remapping in an SSD probably makes this ineffective).
Most people needing a secure erase feature need it to satisfy legal requirements not national security requirements. Anyone needing a strong TINFOIL_HAT_ERASE feature is going to be encrypting the data anyway. A SECURE_ERASE for them is mainly to satisfy legal and statutory language requiring that the data be actually erased (when it's not worth the lawyer's fees to convince a court that loss of a key makes encrypted data unrecoverable). -- This message posted from opensolaris.org _______________________________________________ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
