Sanitization of embedded network devices : Investigation of vendor’s factory reset procedure

University essay from KTH/Radio Systems Laboratory (RS Lab)

Author: Magnus Larsson; [2015]

Keywords: Network device; router; switch; sanitization; forensics; flash; EEPROM; configuration erase; rommon. NVRAM; JTAG; programmer; RS-232; terminal; marker probability in data; Nätverksutrustning; router; switch informations sanering; flash; EEPROM; radera konfigurationer; rommon; NVRAM; JTAG; programmerare; RS-232 terminal; markör sannolikhet i data;

Abstract: Embedded devices such as routers, switches, and firewalls commonly have sensitive information stored on them such as passwords, cryptographic keys, and information about the network around them and services that these device(s) provide. When disposing of or reselling this equipment in the secondary market it is crucial to erase this sensitive information. However, there is an important question that must be asked: Do the erase commands and routines offered by the device manufacturers actually erase the sensitive data? This thesis investigates methods and tools to determine the completeness of this erasure in some common network devices. These methods are used on a sample of networking equipment found to still contain sensitive information after being erased according to vendor recommendations. A computer program was developed to show how this information can be removed. The information in this document is useful for equipment owners, brokers and others looking to remarket their current equipment; all of whom want to minimize the risk of leaking sensitive data to other parties.

  AT THIS PAGE YOU CAN DOWNLOAD THE WHOLE ESSAY. (follow the link to the next page)