NIST 800-88 Certificate of Destruction

Required documentation for NIST compliance

nist 800-88 certificate of destruction

The National Institute of Standards and Technology (NIST) has developed Guidelines for Media Sanitization – NIST 800-88.  This document assists organizations in implementing a media sanitization program consistent with the security level of the information or data to be destroyed.

NIST 800-88 “Guidelines for Media Sanitization” Certificate of Destruction requires additional details such as make/model and serial number. NIST 800-88 compliance requires, among other things, the make and model of the hard drive as well as the source computer.  Basically, there needs to be a documented link from the hard drive being destroyed to the computer and/or user.

The following document is only a portion of the guidelines set forth by the National Institute of Standards and Technology.  We have worked with the Jet Propulsion Laboratory to destroy digital media for NASA in accordance with NIST 800-88.  See our process for digital media destruction.

NIST 800-88 data destruction
hard Drive destruction projects for the City of Los Angeles
Hard drive destruction projects NASA in Pasadena
Hard drive destruction project for the Office of the Inspector General Health and Human Services

request a quote from our experts in certified data destruction

NIST 800-88 Required Documentation

NIST 800-88 compliance goes beyond the method of destruction the company has decided on.  Compliance requires proper reporting and documentation.  The often-overlooked reporting requirement is the linking of the hard drive to the parent computer.  This link is called the parent-child relationship.

Chapter 4.8 of the NIST 800-88 Guidelines for Media Sanitization details the documentation requirements.  The Certificate of Sanitization, shown below, is a good example of how the report may look.

NIST 800-88 reporting requirement for digital media destruction