If you are using any Cloud storage for hosting your data, then you will come to a situation where you need to securely remove the data from the cloud storage provider due to various reasons.
Most of the cloud storage provider uses a multi-tenant service, which means multiple customer data stored on the same physical hardware and segregate each customer’s data from the data of others.
Segregation provides the scale and economic benefits of multi-tenant services while rigorously preventing customers from accessing one another’s data.
In this article, we will discuss wiping a virtual drive from Microsoft Azure storage.
For Azure is its very simple, in a situation where I had to delete a 2TB virtual disk that had confidential data attached to a virtual machine. I was worried not to let any trace of my data.
If you check the above image by default, data in the storage account is encrypted using Microsoft Managed Keys. The encryption keys are associated with your account and you can only access the data. If you need to know more about azure encryption please refer to this article Azure Data Encryption-at-Rest.
According to Azure, When customers delete data or leave Azure, Microsoft follows strict standards for overwriting storage resources before their reuse, as well as the physical destruction of decommissioned hardware. Microsoft executes a complete deletion of data on customer requests and on contract termination.
So, as we have seen, it’s not necessary to perform a secure wipe of data when clearing it from Azure when you are planning to delete data or terminating your subscription. It’s a Microsoft responsibility to keep your data safe and secure.
Microsoft is contractually required to perform this level of data destruction and if there is data compromised because of a failure to do this, Microsoft is responsible for paying you for damages incurred.
Azure does the data destruction automatically and there is no control in the azure UI to do it, however, you can contact Microsoft support to ask for a secure wipe of that data.