December 2022
Intermediate to advanced
192 pages
4h 44m
English
Content preview from Net Zeros and Ones
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
CHAPTER 11Sanitizing Files
- 11.1 Avoid Confusion with CDR
- 11.2 Erasing Files
- 11.3 When to Sanitize Files
- 11.4 Sanitizing Files
- 11.5 Summary
11.1 Avoid Confusion with CDR
There is a bit of confusion about terms when it comes to file sanitization. After widespread attacks that spread via shared files that contained malware, the security industry responded with solutions that included tools that would strip the content out of a file and then reconstruct it into a new clean file. This is often called file sanitization. A Word doc or an Excel spreadsheet may be weaponized (the attack against RSA Security in 2010 was executed with such a spreadsheet). A file sanitization solution can be deployed at corporate gateways that look into a Word doc or a spreadsheet and extract the words, cells, and formatting; then it builds a new clean file with the correct extension. There are at least nine startups that have solutions for this, including SASA Software, Votiro, and YazamTech. Some of the earliest solutions were deployed in appliances that were located in the lobbies of corporate offices. An employee or visitor would insert a thumb drive into a USB port, and the file would be extracted, scrubbed, and put on an internal file server. Then the user could retrieve a safe file when they connected to the corporate network. To avoid confusion with file erasure, another term being floated is content disarm and reconstruction as a service (CDRaaS). This chapter is about erasing data in files. ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.