WipeCert
Back to blog

Compliance  ·  7 min read

NIST 800-88 Data Sanitization: A Plain-English Guide

NIST Special Publication 800-88 — Guidelines for Media Sanitization — is the definitive US government standard for securely destroying data on storage media. Here is what you need to know to stay compliant.

What Is NIST 800-88?

Published by the National Institute of Standards and Technology (NIST), SP 800-88 provides a framework for making data unrecoverable. It is widely adopted not just by the federal government, but by private enterprises, healthcare organizations (for HIPAA compliance), and financial institutions.

The standard defines three distinct levels of sanitization: Clear, Purge, and Destroy.

1. Clear

Software-based overwrite. Protects against simple, non-invasive data recovery techniques.

2. Purge

Firmware-level erasure. Protects against advanced, laboratory-level recovery techniques.

3. Destroy

Physical destruction. The media cannot be reused. Used for highly classified data.

Level 1: Clear

Clear applies logical techniques to sanitize data in all user-addressable storage locations. This is typically achieved by overwriting the drive with a single pass of zeros or random data.

When to use it: For older magnetic hard drives (HDDs) where the data is not highly sensitive. Note that "Clear" is generally not sufficient for modern Solid State Drives (SSDs) due to wear-leveling.

Level 2: Purge

Purge applies physical or logical techniques that render target data recovery infeasible using state-of-the-art laboratory techniques. For modern SSDs and NVMe drives, this means issuing firmware-level commands (like ATA Secure Erase or NVMe Sanitize) that instruct the drive's controller to wipe all memory blocks, including over-provisioned areas that software cannot reach.

When to use it: For all modern flash storage (SSDs, NVMe, mobile devices) and for any media containing sensitive PII, PHI, or corporate IP. The media can be safely reused or resold after a Purge.

Level 3: Destroy

Destroy renders target data recovery infeasible and results in the subsequent inability to use the media for storage of data. This involves shredding, incinerating, or pulverizing the drive.

When to use it: When media has failed and cannot be logically purged, or when dealing with highly classified government data.

Verification and Certification

NIST 800-88 explicitly states that sanitization is not complete without verification and documentation.

  • Verification: The software must read back a sample of the drive to confirm the data was actually overwritten or purged.
  • Documentation: You must generate a certificate of destruction that includes the drive serial number, the method used, the operator, and the timestamp.

How WipeCert Helps

WipeCert automates NIST 800-88 compliance. It automatically detects the drive type and applies the correct sanitization method (Clear for HDDs, Purge for SSDs). It then performs the required verification pass and generates a cryptographically signed PDF certificate that satisfies auditors.

Need NIST 800-88 compliance?

Generate your first compliant, signed certificate in minutes.

Start free trial