Solved How to type sensitive data so that it doesn't go into Windows history?

[teckneeculler]

I've created an A4 Word page that shows the details of several accounts. The typed and printed page only shows the various headings, like 'Account number', 'Name', 'Card Number' etc. I hand write the actual data.

Is there a secure way to type and print the handwritten data, so that it's not logged into the computer or print history and can't be retrieved by anyone else but me? (EDIT:Or keylogged)

Typing the info on a typewriter is one way, but I got rid of my last machine so long ago I've forgotten when.

Suggestions appreciated.

 

[Alejandro85]

What do you mean by "Windows history"? Or "print history"?

 

[teckneeculler]

What do you mean by "Windows history"? Or "print history"?

OK. Let's say I'm running Revo or IOBIT or a similar uninstaller app. (I don't use either, but this will suffice as an example)
At say, 10:00am I create a Word document that I print but don't save.
Then immediately, before I do anything else, I run Revo or IOBIT to find out what changes have been made to my computer by the operations I've just completed.

Would any changes have been made to any files? Even in the most obscure way? Changes to the Registry? File history? Anything at all?

Taking the analogy a step further, let's imagine the FBI (or KGB) suspect me of carrying out some nefarious activity and break down my door at 10:02 am and confiscate my computer. Could they find any traces on my computer of the document I've just printed?

Obviously I would have either eaten the document, or burnt it, or flushed it down the toilet as soon as I heard them approaching, so there's no paper evidence. But would there be any other traces in the computer?

 

[Alejandro85]

At say, 10:00am I create a Word document that I print but don't save.
(...)
Would any changes have been made to any files? Even in the most obscure way? Changes to the Registry? File history? Anything at all?

There would be a couple of changes. As an example, Word has an autosave feature, that records your work to temp files every 5 minutes by default, which could drop that file there. An additional save could happen to the pagefile, that can dump the memory contents of any program at any time, so it might be possible to find it there. The registry may hold some references to it, but most likely not the contents themselves.
I don't think File History would contain it, as it never was saved in the first place.
Of course, the RAM would for sure contain copies of it.

For most people, I would find difficult to recover under these conditions, the autosave probably being the biggest problem. As always in security, how safe you are greatly depends on who you think your attacker is and what can they do.

Taking the analogy a step further, let's imagine the FBI (or KGB) suspect me of carrying out some nefarious activity and break down my door at 10:02 am and confiscate my computer. Could they find any traces on my computer of the document I've just printed?

Honstly, if those guys think you're a menace to them, forget the computer and run! You've got much serious trouble than a file.
Since we're now talking about state-level actors (of two particularly warlike countries who greatly disregard human rights), we should reconsider.
They certainly have the resources to search within your pagefile for remains of the document, they could as well execute a cold boot attack to retrieve your RAM contents and the document from there.
Be also aware of the printer, as the document may be in the printer's memory besides the computer itself (I don't know how long do they remain after printing ends).
It's not an easy task, but if they are really motivated, they could probably find a copy if they arrive on time. Maybe not the full thing, but some parts could be understandable.

There is a quite effective countermeasure: Full disk encryption.
Windows bundles Bitlocker, and there is the great Veracrypt, along with a few others.
The idea is to encrypt everything on disk, so plaintext is never physically recorded. With a strong password is a proven method of detering those attacks, as long as you can reasonably hide the key or deny the existence of the encrypted disk.
This way, you no longer bother on what gets saved to disk, no matter what, they won't be able to recover it.

 

[wa791st]

To my knowledge, encrypting your disk would be the way to go as mentioned above. I've listened to the stories of multiple hackers via podcasts before and if they end up going into further detail for more nefarious deeds they have done, they tend to have everything as tightly locked in physical assets as they can, so if said nation-state agencies come knocking, they have to jump through more complicated hoops to access information on drives or have to find the physical drives themselves.

Though, now I'm thinking and curiosity is brewing.
I know some people who are very keen about security, but..
Maybe heavily encrypted hard drives with integrated kill switches set to wipe everything if proper clearance isn't secured by set information from setup, and extensive boot time with multiple passwords, network changes made to obscure precise location tracking by nation-state actors, & having done previous extensive programming to just boot up a system is more common than I know.
So I will leave without further questions.

 

[teckneeculler]

Thanks for the comments, guys, you've pretty much answered my question.
As I said in my original post, I've created an A4 Word page that shows some simple details of several sensitive accounts, eg banks and other stuff. This typed and printed page only shows the various headings, like 'Account number', 'Name', 'Card Number' etc.

For security I hand write the actual data.

If I thought that what I typed was secure, I'd type in the various details instead of handwriting, mainly to create a more legible document. But after reading your opinions, I think I'll carry on as before and hand write the sensitive data. Seems to me that there's almost nothing that's really secure these days. Not even thoughts. Although avoiding booze helps with that

 

[sluggerb]

If I thought that what I typed was secure, I'd type in the various details instead of handwriting, mainly to create a more legible document.

If you want perfect security on your end, you memorize everything and never record it anywhere. If you are printing it out and writing on the paper, you are just shifting the vulnerability point to that paper vs your computer. Anyone with access to that paper has all your information.

However, it is really a pointless exercise because you are not likely to be the target for your information. The institution will be. To use your FBI example, if they wanted your bank account information, they are't going to raid your house and take your PC. They are going to get a warrant, call your bank, and get all the info they need directly from the bank without you ever knowing they are doing it. Same for your credit card, insurance, phone records, you name it.

 

[ColourOz]

Have you considered typing the information on a regular typewriter? If you want a copy you can use carbon-paper. I am sure you have a secret hiding place for this information.