Page 1
R&S®FSU
Spectrum Analyzer
Instrument Security Procedures
(;ÕÇCÂ)
1171.5719.52 ─ 03
Instrument Security Procedures
Page 2
R&S®FSU
Contents
Contents
1 Overview................................................................................................. 2
2 Instrument Models Covered..................................................................2
3 Security Terms and Definitions............................................................ 3
4 Types of Memory and Information Storage in the R&S FSU..............3
5 Instrument Declassification.................................................................. 5
6 Special Considerations for USB Ports.................................................7
1 Overview
In many cases, it is imperative that the R&S FSU Spectrum Analyzers are used in a
secured environment. Generally these highly secured environments do not allow any
test equipment to leave the area unless it can be proven that no user information
leaves with the test equipment. Security concerns can arise when devices need to
leave a secured area e.g. to be calibrated or serviced.
This document describes the types of memory and their usage in the R&S FSU. It provides a statement regarding the volatility of all memory types and specifies the steps
required to declassify an instrument through memory clearing or sanitization procedures. These sanitization procedures are designed for customers who need to meet
the requirements specified by the US Defense Security Service (DSS).
2 Instrument Models Covered
Table 2-1: Spectrum Analyzer models
Product name Order number
R&S FSU3 1313.9000.03
R&S FSU8 1313.9000.08
R&S FSU26 1313.9000.26
R&S FSU43 1313.9000.43
R&S FSU46 1313.9000.46
2Instrument Security Procedures 1171.5719.52 ─ 03
Page 3
R&S®FSU
Security Terms and Definitions
Product name Order number
R&S FSU50 1313.9000.50
1313.9000.49
R&S FSU67 1313.9000.67
1313.9000.66
3 Security Terms and Definitions
Clearing:
As defined in Section 8-301a of DoD 5220.22-M, "National Industrial Security Program
Operating Manual (NISPOM)", clearing is the process of eradicating the data on media
so that the data can no longer be retrieved using the standard interfaces on the instrument. Hence, clearing is typically used when the instrument is to remain in an environment with an acceptable level of protection.
Sanitization:
As defined in Section 8-301b of DoD 5220.22-M, "National Industrial Security Program
Operating Manual (NISPOM)", sanitization is the process of removing or eradicating
stored data so that the data cannot be recovered using any known technology. Instrument sanitization is typically required when an instrument is moved from a secure to a
non-secure environment, such as when it is returned for service of calibration.
The memory sanitization procedures described in this document are designed for customers who need to meet the requirements specified by the US Defense Security Service (DSS). These requirements are specified in the "Clearing and Sanitization Matrix"
in Section 14.1.16 of the ISFO Process Manual for the Certification and Accreditation
of Classified Systems under the NISPOM.
Instrument declassification:
A term that refers to procedures that must be undertaken before an instrument can be
removed from a secure environment, such as is the case when the instrument is
returned for calibration. Declassification procedures include memory sanitization or
memory removal, or both. The declassification procedures described in this document
are designed to meet the requirements specified in DoD 5220.22-M, "National Industrial Security Program Operating Manual (NISPOM)", Chapter 8.
4 Types of Memory and Information Storage
in the R&S FSU
The Spectrum Analyzer contains various memory components.
3Instrument Security Procedures 1171.5719.52 ─ 03
Page 4
R&S®FSU
Types of Memory and Information Storage in the R&S FSU
Volatile Memory
The following table provides an overview of the memory components that are part of
your instrument. For a detailed description regarding type, size, usage and location,
refer to the subsequent sections.
Memory type Size Content Volatility User
SDRAM (CPU
board)
EEPROM (board
assembly)
Flash (CPU
board)
Compact flash
(removable)
4.1 Volatile Memory
256 Mbyte Temporary information stor-
256 bytes up
to 32 kbyte
512 kbyte BIOS Non-volatile No None required
4 Gbyte
age for operating system
and instrument firmware
Hardware information:
●
Serial number
●
Product options
●
Calibration correction
data
●
Operating system
●
Instrument firmware
●
Instrument states and
setups
●
Limit lines and transducer tables
●
Trace data
●
Measurement results
and screen images
Sanitization
data
procedure
Volatile Yes Turn off instru-
ment power
Non-volatile No None required
(no user data)
(no user data)
Non-volatile Yes Remove com-
pact flash memory from instrument
The volatile memory in the instrument does not have battery backup. It loses its contents as soon as power is removed from the instrument. The volatile memory is not a
security concern.
Removing power from this memory meets the memory sanitization requirements specified in the "Clearing and Sanitization Matrix" in section 5.2.5.5.5 of the ISFO Process
Manual for the Certification and Accreditation of Classified Systems under the NISPOM.
SDRAM
The SDRAM on the CPU board has a size of 256 Mbyte and contains temporary information storage for operating system and instrument firmware. The SDRAM loses its
memory as soon as power is removed.
Sanitization procedure: Turn off instrument power
4Instrument Security Procedures 1171.5719.52 ─ 03
Page 5
R&S®FSU
Instrument Declassification
4.2 Non-Volatile Memory
The R&S FSU contains various non-volatile memories. Out of these, only the compact
flash memory contains user data. The compact flash memory can be physically
removed from the R&S FSU and left in the secure area.
All non-volatile memories of the R&S FSU are not a security concern.
EEPROM
Each board assembly in the R&S FSU Spectrum Analyzer has one serial EEPROM
device with a size of 256 bytes up to 32 kbyte. The EEPROM contains information related to the installed hardware, such as board serial number, product options and calibration correction data. The EEPROM does not hold user data nor can the user access
the EEPROM storage.
Sanitization procedure: None required (no user data)
Flash
The CPU board of the R&S FSU Spectrum Analyzer has one 512 kbyte flash memory
device. It contains the BIOS. The flash memory does not hold user data nor can the
user access the flash memory.
Sanitization procedure: None required (no user data)
Compact flash memory / hard disk
The R&S FSU Spectrum Analyzer can be equipped with either a non-removable hard
disk or a removable compact flash memory. The hard disk and compact flash memory
hold user data and are non-volatile. Hence, user data is not erased when power is
removed from the instrument.
The compact flash memory (R&S FSU-B18) can be removed from the Spectrum Analyzer to make sure that no user data is stored within the Spectrum Analyzer.
The R&S FSU Spectrum Analyzer, equipped with the removable compact flash memory (R&S FSU-B18), addresses the needs of customers working in secured areas.
Sanitization procedure: Remove compact flash memory from instrument
5 Instrument Declassification
Before you can remove the Spectrum Analyzer from a secured area (for example to
perform service or calibration), all classified user data needs to be removed. You can
declassify the Spectrum Analyzer as follows:
1. Turn off the Spectrum Analyzer. This will sanitize the volatile memory.
2. Remove the classified compact flash memory (containing user data).
5Instrument Security Procedures 1171.5719.52 ─ 03
Page 6
R&S®FSU
Instrument Declassification
Following these steps removes all user data from the Spectrum Analyzer. The Spectrum Analyzer can now leave the secured area.
These declassification procedures meet the needs of customers working in secured
areas.
Once the Spectrum Analyzer is outside the secured area, installing a second non-classified removable compact flash memory (without any user data) allows the Spectrum
Analyzer to function properly for service or other needs.
Prior to re-entering the secured area, the non-classified removable compact flash
memory (without the user data) is removed. When the Spectrum Analyzer is back
within the secured area, the original classified removable compact flash memory can
be reinstalled.
●
To hold classified user data in secure areas, use the removable compact flash
memory (R&S FSU-B18) which comes with the instrument.
●
To hold non-classified user data in non-secure areas, use a second compact flash
memory (R&S FSU-B19).
Validity of instrument calibration after declassification
The calibration makes sure that measurements comply to government standards.
Rohde & Schwarz recommends that you follow the calibration cycle suggested for your
instrument.
The EEPROM is the only memory type used to hold permanent adjustment values
required to maintain the validity of the R&S FSU's calibration. Therefore, replacing one
removable compact flash memory with another, does not affect the validity of the
instrument’s calibration.
After an exchange of the removable compact flash memory, the board assembly
EEPROMs need to be registered once:
1. Turn off the instrument.
2. Turn the instrument back on while holding down the decimal point key [.] on the
number keypad on the front panel.
3. Continue to hold this key for 10 seconds after pressing the "On" button.
The instrument recognizes the changes and then powers up.
It is only necessary to perform these steps the first time the Spectrum Analyzer returns
from the service.
After exchanging the removable compact flash memory, perform a self-alignment once:
Note that the instrument has sufficient warm-up time before you perform the self-alignment.
1. Select the CAL key.
2. Select the "CAL-TOTAL" softkey.
6Instrument Security Procedures 1171.5719.52 ─ 03
Page 7
R&S®FSU
Special Considerations for USB Ports
This function uses the high-stability internal reference generator to produce the temporary adjustment values. Using the permanent and temporary values, the necessary
adjustment information is then stored on the compact flash memory. Rohde & Schwarz
recommends that you perform the self-alignment function once a week.
6 Special Considerations for USB Ports
USB ports can pose a security risk in high-security locations. Generally, this risk comes
from small USB pen drives, also known as memory sticks or key drives. They can be
easily concealed and can quickly read/write several Gbyte of data.
Disabling USB ports for writing user data
You can disable the write capability on the USB ports of the R&S FSU via a utility software. This utility software is available on the R&S FSU website http://www.rohde-
schwarz.com/product/fsu.html.
To disable the write capability, copy the utility software to the R&S FSU and run it
once. After a reboot of the instrument, the write capability on any USB memory device
is disabled.
© 2016 Rohde & Schwarz GmbH & Co. KG
Mühldorfstr. 15, 81671 München, Germany
Phone: +49 89 41 29 - 0
Fax: +49 89 41 29 12 164
Email: info@rohde-schwarz.com
Internet: www.rohde-schwarz.com
Subject to change – Data without tolerance limits is not binding.
R&S® is a registered trademark of Rohde & Schwarz GmbH & Co. KG.
Trade names are trademarks of their owners.
Throughout this manual, products from Rohde & Schwarz are indicated without the ® symbol , e.g. R&S®FSU
is indicated as R&S FSU.
7Instrument Security Procedures 1171.5719.52 ─ 03
Loading...