Browse Definitions :
Definition

file shredder

Contributor(s): Matthew Haughn

A file shredder, also known as a virtual or digital shredder, is a program designed to render computer-based files unreadable, just as a conventional shredder makes physical documents unreadable.

In most operating systems, when a user deletes a file, it still exists on the hard drive but is made inaccessible through normal means. What’s actually deleted is the operating system’s pointer to the file, so it’s invisible to the user but still exists in storage. The storage space for the file is considered available and that may cause the data to be overwritten, although it is not possible to know that it has been.

It may be possible to recover the original data unless overwriting has taken place hundreds of times. Deleted files can be recovered through readily available freeware programs such as Recuva and Puran File Recovery as well as professional software such as EnCase that data recovery and law enforcement officials use.

File shredders are similar to hard drive overwriters except that they work with individual files, rather than effectively obliterating the entire drive. The programs overwrite the content in a file multiple times with zeroes, ones and random bits to ensure that the data is unrecoverable other than through extraordinary efforts.

If it’s crucial that data is obliterated, the only way to be sure it can’t be accessed is to physically destroy the device. The most effective way to ensure complete data destruction is to pulverize the assembly, in much the same way as a wood chipper disposes of tree limbs and brush. At a minimum, hard drive shredding involves severing every track on every platter in a drive. Hard drive shredding products and services exist for this purpose.

In the enterprise, ensuring that the sensitive information in deleted files cannot be recovered is essential to information security, compliance and data governance.  

This was last updated in September 2015

Continue Reading About file shredder

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • identity provider

    An identity provider is a system component that is able to provide an end user or internet-connected device with a single set of ...

  • firewall

    A firewall is software or firmware that enforces a set of rules about what data packets will be allowed to enter or leave a ...

  • encryption

    Encryption is the method by which information is converted into secret code that hides the information's true meaning. The ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

Close