User profile for user: StorageMacOS
StorageMacOS Author
User level: Level 1
10 points

How does Apple’s “Erase All Content and Settings” align with recognized data erasure standards [NIST SP 800-88/IEEE Std 2883-2022]?

Hi everyone,


I’m trying to better understand the underlying security of Apple’s “Erase All Content and Settings” feature and how it compares to industry‐recognized data sanitization standards.


From what I’ve gathered:


  • Modern Apple devices (iPhones, iPads, and Macs with Apple Silicon or T2 chips) use full-disk encryption (AES-256) with keys stored in the Secure Enclave (or via FileVault on macOS). When you select “Erase All Content and Settings,” the system destroys the encryption keys, which is commonly known as a cryptographic erase. Without the key, all the encrypted data becomes essentially unrecoverable.
  • Traditional data erasure methods (such as those outlined in DoD 5220.22‑M) rely on multiple overwrites, but these methods are not well suited for flash-based storage. Instead, cryptographic erasure is now considered sufficient and is supported by guidelines such as NIST SP 800‑88 (which discusses “Clear” and “Purge” levels of sanitization for modern media).
  • I’ve also come across references to NIST SP 800‑108, but I understand that document actually covers key derivation functions rather than data erasure by itself.


Given this background, I’d like to ask:


  1. Does Apple’s “Erase All Content and Settings” effectively implement a cryptographic erase in accordance with modern data sanitization guidelines (such as those in NIST SP 800‑88 or IEEE Std 2883-2022)?
  2. Does Apple adhere to or reference any specific third‑party data erasure standards for its devices, or is the process entirely proprietary?
  3. Is there any publicly available technical documentation that details how the erasure process (i.e., destruction of the encryption keys) is implemented on iOS/macOS devices?


I appreciate any insights or references (links to official Apple documents or white papers) that can help me understand how Apple’s erasure process measures up against industry standards.


Thanks in advance for your help!


Regards,

Winson

MacBook Pro (M1, 2020)

Posted on Feb 19, 2025 8:14 PM

Reply

Similar questions

2 replies

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

How does Apple’s “Erase All Content and Settings” align with recognized data erasure standards [NIST SP 800-88/IEEE Std 2883-2022]?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up