: Since the data was stored encrypted, it becomes instantaneous "digital noise." Availability : Only on Self-Encrypting Drives (SEDs). Sanitize (Block Erase) Action : Physically resets the voltage in every NAND cell.
It’s faster, more secure, and better for the drive’s health. And the best part? The tool is free, open-source, and works on almost every NVMe drive made in the last 8 years.
When you delete a file on an NVMe drive, the OS simply marks that space as “okay to overwrite.” The actual data often remains until new data fills its place. A thief with a $50 data recovery tool could pull your tax returns or crypto keys off a simple formatted drive. secure erase nvme ssd
sudo nvme sanitize /dev/nvme0 --sanact=0x02
Modern BIOS/UEFI systems will put a drive into a "Frozen" state shortly after booting to prevent malware from accidentally triggering a secure erase. You cannot secure erase a frozen drive. : Since the data was stored encrypted, it
Even a (which writes zeros) might miss data stored in: How to Secure Erase and Sanitize SSD for Free? - OSCOO
If you see Sanitize Command Supported: Yes , you’re golden. (Most modern NVMe drives support this.) And the best part
For HDDs: Overwrite. For NVMe SSDs: .