My understanding was that the multipass method of secure erasing was almost irrelevant now anyway.
I think all the secure erase does over dban is removes sector remapping data from the drive flash and tries to overwrite blocks marked as bad (which due to sector remapping dban or dd will skip)
Also there was a study conducted a few years ago that I am currently failing to find online that suggested that recovery of data after a layer of overwrites of even non random data was "improbable" now that storage densities are that much higher and things like perpendicular recording are commonplace.
In fact the same article linked to a challenge posted to data recovery specialists (that I believe has not been met) to recover data from a modern drive that had been subjected to just one pass of zeroing. Not withstanding that even when it was known to be possible the actual cost of the forensic work to do a recovery from something that had been overwritten multiple times was very very very time consuming and expensive.
So I would say that unless we are talking data under the official secrets act (in which case furnace destruction of the drive would be the obvious way to be 100% sure) then maybe even a single pass of /dev/urandom would be enough.
Something often undocumented about ATA Secure Erase is that as well as storage controller firmware sometimes blocking it, a lot of drive firmware will silently abort the command unless an ATA user password has been set on the drive first. So if you are having trouble getting it to work then try that first. Last time I played with it, it took me a while to discover this.
Another thing worth mentioning that rarely comes up.
If you really are *that* paranoid how do you know that a "secure erase" command built into the drive firmware is really doing its job and not just hiding the data from you after it is run ? I mean if you can't inspect the code or physically verify what is actually on the platters after then it could be just setting a flag on the drive to say "return nonsense from now on" and you'd be none the wiser. In that respect I feel it offers less assurance than using tools like dban.