A post by ASPE National Training Advisor, Becki Strader.

Is your head still reeling from SharePoint Saturday Philly? Feel like you were drinking from the fire hose, and now you’re trying to make sense of all the amazing information you received? Well, let me help a bit. I’m breaking down the themes, trends, questions and answers from the weekend, and linking you to a selection of the most relevant presentations.

Free Knowledge:

There is a wealth of great free knowledge that comes out of every SharePoint Saturday. Whether you are able to attend or not, you can usually find links to the presentation slides. Below I have pulled some of the top themes I took away from the SharePoint Saturday Philadelphia event, and linked to some of the presentations I recommend. Click to continue »

It is clear that ultra-portable computing devices are here to stay. The only questions left unanswered are: Which OS will come out on top? How will your business capitalize on the opportunities? The cyber war has and will create opportunities and solutions for nearly every business. Many opportunities are already emerging.

The first and most obvious way to capitalize on the new technology is to implement tablets and smart phones in your business management strategy. Of course there is a cost to adding these devices to your technology inventory. I have written numerous times about the pros and cons to going Android. I have shared my opinions on the iPad and other smart devices. At the end of the day each business must take a serious look at available devices, pros, cons, costs, and end-user preferences. Choosing the right devices for your needs and group of users will greatly improve your return on investment. Click to continue »

According to a recent ruling by the New Jersey Supreme Court, a former employee’s past company should not have read e-mails that she sent from a private, password-protected, web account.

The employee was using company resources (computer, internet access, and indeed company time), but the Court ruled that she had a reasonable expectation of privacy for the account, being that the company’s policy regarding computer use was that “occasional personal use is permitted.” Click to continue »

Business management is complex, time consuming and necessary. Unfortunately the management of business too often takes and back seat to prospecting, customer relations and customer service. This is due in part to the fact that the time needed to manage data and learn data management seems daunting. Again, Google comes to the rescue. There are apps designed for users addressing every aspect of business management and administration.

As we discussed in our last post, the community of apps can be a challenge to navigate. So here I want to identify some of the most common business administration challenges and apps that may help. Remember, most apps offer at least a free trial. So, go ahead and take a drive and kick the tires. The time spent may save your business hours and thousands of dollars. Click to continue »

Hopefully by now, you’ve heard about ASPE-IT’s Pimp My Office contest. We are giving one lucky winner gadgets and gizmos galore!  You know - all those office and tech items you covet, but can’t get your company to shell out for.  Some of these inclulde:

• iPad 2
• Bose® Speakers
• 15″ Dell Laptop
• 22″Samsung LCD Monitor

But the Ultimate Office would not be complete without a Yoda Desk Protector to keep all of your top-of-the-line gadgets safe. Register for the Pimp My Office giveaway by March 31st and you’ll be automatically entered for an additional chance to win the same Yoda USB Desk Protector that is included in the Ultimate Office giveaway.

PIMP MY OFFICE!

As a technology professional, I’ve spent my career dealing with data.  In my days in the trenches of IT, I worried about the systems housing it being online and available.  When I moved into application development, I worried about how to get it to the users faster.  When I found myself with the burden of security, I worried about how to keep it only in the hands of my users.  When I eventually wound up in forensics and eDiscovery, I worried about how to locate the data I needed and then producing it to stakeholders.  Now that I’ve taken a role managing the IT operations for, a company specializing in computer forensics, I find all of the concerns from my past are back for an extended visit.  So my interest was definitely peeked when a couple research papers crossed my desk over the last couple weeks.

A colleague in the forensics practice side of my company sent me a link from the Journal of Digital Forensics and Law for a paper by Graeme B. Bell and Richard Boddington entitled “Solid State Drives:  The Beginning of the End for Current Practice in Digital Forensic Recovery?”.  The paper poses this worrisome title as a result of observing the behavior of an SSD formatted with an NTFS file system after modifications were made to the file system. They watched it clean the unallocated space and deleted areas without operating system intervention, both when it was connected directly to the computer and when it was connected through a write blocker device.  For reasons not fully known, the device appeared to be smart enough to independently identify areas not in use and actively empty the contents.  In the world of traditional data forensics, this behavior is considered bad. This is because much of the most valuable forensic data is found within these target areas of media.  As would be expected, this paper has made fast rounds of the forensic discussion lists and forums and has caused quite a stir.

But then, on the exact same day, I received a reference to another paper published out of the University of California at San Diego by Michael Wei, et al., with the rather subdued title, “Reliably Erasing Data From Flash-Based Solid State Drives”.  This paper essentially said just the opposite of the first paper although it used different methodology.  These researchers put forth that even though data was supposedly wiped from a hard drive using a variety of methods, if the physical drive was disassembled and the flash chips were examined, due to various mechanisms within the SSD controller, often several copies of the data existed and a significant amount was able to be recovered in a full or partial state.  The paper in general is focused on the methods used to sterilize a device needs reevaluation, but the implications extend far beyond just the stated goals.

Obviously, this is not the first time we have seen experts in their respective fields take diametrically opposed positions on something.  But what does it mean for those of us who have to make purchase decisions, evaluate cost-benefit, and put our names on the line to keep data secure yet available?  I see the answer from two distinct, yet compatible points of view.  First, it would seem our data stored on SSD is unavailable using ordinary means (take the physical drive and plug it into a reader to see what’s there).  This makes for a good basic security barrier to eliminate the casual threat, but also makes forensic recovery and eDiscovery significantly harder.  Second, the highly dedicated and skilled attacker will find a way to recover what’s left on the drive through extraordinary means.  It also means that forensic recovery, while possible, just got a lot more expensive.

Ultimately, the sky is not falling and most of us can still sleep at night (if we ever really did with all that worrying about data we do).  SSDs give us speed, power savings, and all the other benefits we’ve come to expect; but they also give threats a new barrier to entry on getting at our data.  They also give forensic shops a barrier to entry in dealing with them.  Companies using forensic recovery services will have to make sure their vendors know how to deal with the technology, how it behaves, what to expect, and why it’s happening.  Simply buying a screwdriver and a software dongle are no longer enough, and I don’t believe that’s a bad thing when my data’s involved.

By: Bradley J. Bartram is the Vice President of Information Technology and CTO for DIGITS LLC, one of the premier providers of forensic services in New York and the surrounding states.  Brad has been employed in various capacities in Information Technology since 1996 and currently holds certifications as a Certified Electronic Evidence Collection Specialist (CEECS) and Certified Forensic Computer Examiner (CFCE). He blogs concerning information security, digital forensics, and eDiscovery matters.

Thanks for sitting down with us Tom!