From 97154aaf51efe787dd1678c8e1baeeb65ce46fe1 Mon Sep 17 00:00:00 2001
From: Mounir IDRASSI <mounir.idrassi@idrix.fr>
Date: Sat, 26 Jul 2014 17:46:17 +0200
Subject: Lower number of times we overwrite volume header during the
 encryption of a partition if the user choose to wipe the driver. Latest
 studies show that even one pass is enough to make data irretrievable. A value
 of 3 is a conservative approach that enhance performance without scarifying
 security.
 http://www.infosecisland.com/blogview/16130-The-Urban-Legend-of-Multipass-Hard-Disk-Overwrite.html
 http://digital-forensics.sans.org/blog/2009/01/15/overwriting-hard-drive-data/

---
 src/Common/Crypto.h | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'src/Common/Crypto.h')

diff --git a/src/Common/Crypto.h b/src/Common/Crypto.h
index e66ac18c..ac925094 100644
--- a/src/Common/Crypto.h
+++ b/src/Common/Crypto.h
@@ -159,6 +159,9 @@ typedef struct
 #	define PRAND_DISK_WIPE_PASSES	256
 #endif
 
+/* specific value for volume header wipe used only when drive is fully wiped. */
+#define PRAND_HEADER_WIPE_PASSES	3
+
 #if !defined (TC_WINDOWS_BOOT) || defined (TC_WINDOWS_BOOT_AES)
 #	include "Aes.h"
 #else
-- 
cgit v1.2.3