xx
TLA6400 Series Logic Analyzers
ZZZ
Declassification and Security
Instructions
www.tektronix.com
P077063101*
*
077-0631-01
Copyright © Tektronix. All rights reserved. Licensed software products are owned by Tektronix or its subsidiaries
or suppliers, and are protected by national copyright laws and international treaty provisions.
Tektronix products are covered by U.S. and foreign patents, issued and pending. Information in this publication
supersedes that in all previously published material. Specifications and price change privileges reserved.
TEKTRONIX and TEK are registered trademarks of Tektronix, Inc.
Contacting Tektronix
Tektronix, Inc.
14150 SW Karl Braun Drive
P.O. Box 500
Beaverto
USA
For product information, sales, service, and technical support:
n, OR 97077
In North America, call 1-800-833-9200.
Worl dwid e, visi t www.tektronix.com to find contacts in your area.
Table of Contents
Preface .............................................................................................................. iii
Clear and Sanitize Procedures. . ..... . ..... . .... . . .... . ..... . ..... . ..... . ..... ..... . ..... . ..... . ..... . ... . . . .... . .. 1
Memory Devices............................................................................................... 1
Media and Da
Built-In Security Features ...... ................................ ................................ ................... 9
Troubleshooting.................................................................................................... 11
Clear or Sanitize a Nonfunctional Instrument . ..... . ... . . . .... . ..... . ..... . ..... . ..... . ..... . ..... . ... . . .. 11
Recover from Clearing or Removing the Instrument Memory ...... ................................ .... 11
ta Export Devices ............................................................................. 6
TLA6400 Series Declassification and Securities Instructions i
Table of Contents
ii TLA6400 Series Declassification and Securities Instructions
Preface
This document helps customers with data security concerns to sanitize or remove
memory devices from TLA6400 Series Logic Analyzers.
These products have data storage (memory) devices and data output devices (USB
ports). These instructions tell how to do the following:
Clear or sanitize the memory devices
Clear or sanitize an instrument that is not functioning
Products
Related Documents
Terms
The following Tektronix products a re covered by this document:
TLA6401 and all options
TLA6402 and all options
TLA6403 and all options
TLA6404 and all options
Refer to the following service-related documents available on the Tektronix Web
site at www.tektronix.com/manuals or to the TLA Documentation CD that is
available with your product:
TLA6400 Series Logic Analyzer Installation Manual (Tektronix part number,
077-0632-xx)
TLA6400 Series Service Manual (Tektronix part number, 077-0638-xx)
The following terms may be used in this document:
Clear. This removes data on media/memory before reusing it in a secured
area. All reusable memory is cleared to deny access t o previously stored
information by standard means of access.
TLA6400 Series Declassification and Securities Instructions iii
Erase. This is equivalent to clear.
Instrument Declassification. A term that refers to procedures that must be
undertaken before an instrument can be removed from a secure environment.
Declassification procedures include m
removal, and sometimes both.
Media storage/data export device. Any of several devices that can be used
to store or export data from the instrument, such as a USB port.
Nonvolatile memory. Data is retained when the instrument is powered off.
Power off. The instruments have a “Standby” mode, in which power is
still supplied to the instrument. For clearing data, putting the instrument in
emory sanitization and memory
Preface
Standby mode do
es not qualify as powering off. For these products, you must
remove the power source from the instrument.
Remove. This i
saphysicalmeanstoclearthedatabyremovingthememory
device from the instrument. Instructions are available in the product Service
Manual.
Sanitize. This eradicates the data from media/memory so that the data cannot
be recovered by other means or technology. This is typically used when the
device will be moved (temporarily or permanently) from a secured area to a
non-secured area.
Scrub. This is equivalent to sanitize.
User Accessible. User is able to directly retrieve the memory device contents.
User-modifiable. The user can write to the memory device during normal
instrument operation, using the instrument interface or remote control.
Volatile memory. Data is lost when the instrument is powered off.
iv TLA6400 Series Declassification and Securities Instructions
Clear and Sanitize Procedures
Memory Device
Terminology
s
The following tables list the volatile and nonvolatile memory devices in the
standard instrument and listed options. Detailed procedures to clear or sanitize
these devic
The following terms are used in the tables in this section:
User data – Describes the type of information stored in the device. Refers to
waveforms or other measurement data representing signals connected to the
instrument by users.
User settings – Describes the type of information stored in the device. Refers
to instrument settings that can be changed by the user.
Both – Describes the type of informationstoredinthedevice. Itmeansthat
both user data and user settings are stored in the device.
None – Describes the type of information stored in the device. It means that
neither user data nor user settings are stored in the device.
Directly – Describes how data is modified. It means that the user can modify
the data.
Indirectly – Describes how data is modified. It means that the instrument
system resources modify the data and that the user cannot modify the data.
es, if any, are shown following eac h table.
le 1: Volatile memory devices
Tab
eand
Typ
min. size Function
DIMM
4GByte
DRAM
4MByte
DRAM
4MByte
Microprocess
system
memory
Firmware
execution
code
(68360)
Acquisition
data
transfer
(VXI
FPGA)
e
Typ
of user
o
inf
stored
User
data,
user
settings
User
settings
User
data
Backed-up
by
battery
No Directly Written
No Indirectly Written
No Indirectly Written
Method
of
modification
Data
ut
Inp
method Location
by
processor
system
by
processor
system
by
processor
system
r
Use
accessible To clear
Motherboard Yes Remove power
Interface
Board
Interface
Board
No Remove power
No Remove power
from the
instrument for at
least 20 seconds.
from the
instrument for at
least 20 seconds.
from the
instrument for at
least 20 seconds.
cess to
Pro
sanitize
Remove power
from the
instrument
for at least
20 seconds.
Remove power
from the
instrument
for at least
20 seconds.
Remove power
from the
instrument
for at least
20 seconds.
TLA6400 Series Declassification and Securities Instructions 1
Clear and Sanitize Procedures
Table 1: Volatile memory devices (cont.)
Type
Type and
min. size Function
DDR2
128 MByte
DDR2
1GByte
DDR2
2GByte
DDR2
3GByte
DDR2
4GByte
16 Kb
ASIC
Firmware
execution
code
(IXP430)
Holds
active
acquisition
data
Holds
active
acquisition
data
Holds
active
ition
acquis
data
Holds
active
acquisition
data
Firmware
cution
exe
code
(ADG402)
of user
info
stored
User
settings
User
data
User
data
User
data
User
data
User
tings
set
Backed-up
by
battery
No Indirectly Written
No Indirectl
No Indirectly Firmware
No Indirectly Firmware
No Indir
No Indirectly Written
Method
of
modification
y
ectly
Data
Input
method Location
are
ons
Interface
Board
Acquisiti
board
TLA6401
Acquisition
board
TLA6402
Acquisition
board
TLA640
sition
Acqui
board
TLA6404
rface
Inte
Board
by
processor
system
Firmware
operations
operati
operations
Firmw
operations
by
processor
system
User
accessible To clear
No Remove power
on
No Remove pow
No Remove power
No Remove power
3
No Remov
No Remove power
from the
instrument
least 20 seconds.
from the
instrument for at
least 20 s
from the
instrument for at
least 20 seconds.
from the
instru
least 20 seconds.
from the
instrument for at
leas
fro
instrument for at
least 20 seconds.
for at
econds.
ment for at
e power
t 20 seconds.
mthe
Process to
sanitize
Remove power
from the
instrument
for at least
20 seconds.
er
Remove pow
from the
instrument
for at lea
20 seconds.
Remove power
from the
instrument
for at least
20 secon
Remove power
from the
instru
for at least
20 seconds.
Remov
from the
instrument
for a
20 seconds.
Remove power
mthe
fro
instrument
for at least
20 s
er
st
ds.
ment
e power
tleast
econds.
2 TLA6400 Series Declassification and Securities Instructions
Clear and Sanitize Procedures
Table 2: Nonvol
atile memory devices
Type an d
min. size Function
Removable
hard disk
drive
Flash
8MByte
CMOS
64 Mbit
Flash
16 MByte
Flash
8MByte
Holds
instrument
operating
system and
application
software.
Holds all
user-storable
data such as
waveforms,
measurement
results, and
instrument
settings.
Stores BIOS
Configurable
BIOS
parameters
Stores
instrument
firmware
(68360)
Stores
instrument
firmware
(IXP430)
Typ e
of user
info
stored
User
data,
user
settings
None Indirect Firmware
None Indirect Firmware
None Indirect Firmware
None Indirect Firmware
Method
modification
Indirect Firmware
Data
Input
method Location
operations,
user
input
operations
operations
operations
operations
User
accessible To clear To sanitize
Side panel
Motherboard No
Motherboard No Remove Battery Not applicable,
Interface
board
Interface
board
Yes
No
No
Acquire a full
memory length
acquisition of noise
(no signal attached
to the input). Erase
the hard drive with
commercial erasure
software. Reinstall
Microsoft Windows
using the OS
Restore procedure
in the TLA6400
Series Installation
Manual (Tektronix
part number
077-0632-xx).
Reinstall the
instrument software
using the supplied
recovery disk. (See
page 5, Clear the
Hard Disk Drives.)
Load new BIOS from
vendor website.
Load new firmware.
See installation
manual.
Load new firmware.
See installation
manual.
Remove the hard
dsik drive. Store
the removed
hard disk drive in
a secure area.
Not applicable,
does not contain
user data
or settings.
Sanitizing
would disable
instrument
functionality.
does not contain
user data
or settings.
Sanitizing
would disable
instrument
functionality.
Not applicable,
does not contain
user data
or settings.
Sanitizing
would disable
instrument
functionality.
Not applicable,
does not contain
user data
or settings.
Sanitizing
would disable
instrument
functionality.
TLA6400 Series Declassification and Securities Instructions 3
Clear and Sanitize Procedures
Table 2: Nonvolatile memory devices (cont.)
Type
of user
Type an d
min. size Function
Flash
2MByte
(512 X 8)
NVRAM
128 KByte
EPROM
8 KByte
PROM
it
16 Mb
PROM
4Mbit
Flash
32 KByte
Stores model
number and
instrument
serial number
Stores
instrument
serial nu
and calibration
constants.
Stores
front panel
keyboard code
Contains
images
FPGA
for instrument
control
Contains
FPGA image
r instrument
fo
control
Stores power
controller code
mber
info
stored
None Indirect Firmware
None Indirect Firmware
None None Factory
None None Factory
ne
No
None None Factory
Method
modification
ne
No
Data
Input
method Location
ration
Interface
board
Acquisit
board
ace
Interf
board
Interface
d
boar
Interface
board
Front panel
board
operations
operations
configu
configuration
ctory
Fa
configuration
configuration
User
accessible To clear To sanitize
No
ion
No Not appli
No Not applicable, does
No Not applicable, does
No No
No Not applicable, does
Load new firmware.
See install
manual.
not contain user
data or settings.
Clearin
disable instrument
functionality.
not con
data or settings.
Clearing would
disab
functionality.
not contain user
data
Clearing would
disable instrument
fun
not contain user
data or settings.
Cl
disable instrument
functionality.
not contain user
data or settings.
Clearing would
disable instrument
functionality.
ation
cable, does
gwould
tain user
le instrument
or settings.
ctionality.
t applicable, does
earing would
Not applicable,
does not contain
user data
or settings.
Sanitizing
would disa
instrument
functionality.
Not appli
does not contain
user data
or setti
Sanitizing
would disable
instrum
functionality.
Not applicable,
does no
user data
or settings.
Sanit
would disable
instrument
func
Not applicable,
does not contain
user
or settings.
Sanitizing
wou
instrument
functionality.
No
does not contain
user data
or
Sanitizing
would disable
nstrument
i
functionality.
Not applicable,
does not contain
user data
or settings.
Sanitizing
would disable
instrument
functionality.
ble
cable,
ngs.
ent
t c ontain
izing
tionality.
data
ld disable
t applicable,
settings.
4 TLA6400 Series Declassification and Securities Instructions
Clear and Sanitize Procedures
Clear the Hard Disk Drives
If your organiz
ation's security protocols allow the use of software to purge or
sanitize hard drives, use commercial software to erase free space on the hard drive
before sending the instrument out for upgrades or repair. Follow the instructions
that come with the software to ensure that the erasure of sensitive data from the
hard drive complies with your organization's security protocols.
TLA6400 Series Declassification and Securities Instructions 5
Clear and Sanitize Procedures
Media and Data Export Devices
The following table lists the data export devices in the standard instrument and
listed options. Detailed p rocedures to disable these devices, if any, are shown
following the table.
Table 3: Media and data export devices
Type and min.
Function
size
DVD drives
USB host
port (supports
removable USB
flash drive)
LAN Ethernet
connector
RS-232 ports
Teklink Remote control
Analog outputs Provides an analog
Store and transport
data
User storage
of reference
waveforms, screen
images, and
instrument setups
Transfer data
of instrumentation
systems
copy of signals
from the device
under test
Disable the USB Capability
Method of
Data Input method Location Process to disable
modification
Directly User writeable
Directly User writeable
Directly
Directly Rear panel
Indirectly
Directly From device under
N/A
N/A
test
Side panel Drive can be disabled. (See page 7,
Front and rear of
instrument
Rear panel
Rear panel
Side panel N/A. Outputs cannot be disabled.
Disable the CD-RW Capability.)
Files can be deleted or overwritten on
the instrument or a PC. The USB ports
can be disabled. (See page 6, Disable
the USB Capability.)
Ethernet port can be disabled. (See
page 7, Disable the LAN Ethernet
Connectors.)
The RS-232 ports can be disabled.
(See page 7, Disable the RS-232
Ports.)
TekLink can be disabled. (See page 8,
Disable the TekLink Port.)
Complete the following steps to disable the USB capability of the instrument:
1. Connect a PS2 mouse and a PS2 keyboard to the instrument before powering
on (because USB will be disabled).
2. Press Delete on the keyboard
3. Go to Chipset > South Bridge.
4. Go to USB Configuration.
5. Set USB Ports 1 through 10 and USB Ports 12 through 14 to Disable (leave
6. Press Esc twice to return to the main menu.
7. Go to Advance > USB Configuration.
8. Set Legacy USB Support to Disable.
9. Set USB 3.0 Support to Disable.
10. Press F4 and then select Ye s to save and exit.
6 TLA6400 Series Declassification and Securities Instructions
during Boot Up to go to the BIOS configuration
menu.
USB Port 11 at Enable).
Clear and Sanitize Procedures
Disable the CD-RW
Capability
Disable the LAN Ethernet
Connectors
Tektronix reco
Administrator password under the Security tab in the BIOS configuration.
Complete the following steps to disable the CD-RW capability of the instrument:
1. Log on to the instrument as an administrator.
2. From the Windows Start menu, go to the Control Panel.
3. Select Hardware and Sound.
4. Click Device Manager to open the Device Manger window.
5. Expand the DVD/CD-ROM drives selection in the Device Manager window.
6. Right-click the drive and select Disable.
7. Restart the instrument to make the changes effective.
Tektronix recommends that you password-protect the Device Manger settings
by setting an Administrator password under the Security tab in the BIOS
configuration.
Complete the following steps to disable the LAN Ethernet connectors on the
instrument:
mmends that you password-protect the BIOS by setting an
Disable the RS-232 Ports
1. Log on to the instrument as an administrator.
2. From the Windows Start menu, go to the Control Panel.
3. Select Hardware and Sound.
4. Click Device Manager to open the Device Manger window.
5. Expand the Network adapters selection in the Device Manager window.
6. For both Gigabit Network connections, right-click and select Disable.
7. Restart the instrument to make the changes effective.
Complete the following steps to disable the RS-232 ports on the instrument:
1. Press Delete on the keyboard during Boot Up to go to the BIOS configuration
menu.
2. Go to Advanced > NCT6776F Super IO Configuration.
3. Go to the Serial Port 1 Configuration.
4. SetSerialPorttoDisable.
5. Press Esc to go back a menu.
6. Go to the Serial Port 2Configuration.
TLA6400 Series Declassification and Securities Instructions 7
Clear and Sanitize Procedures
Disable the Te
kLink Port
Remove the Hard Disk
Drive
7. SetSerialPort
8. Press F4 and then select Ye s to save and exit.
Complete the following steps to disable the TekLink port on the instrument:
1. Log on to the instrument as an administrator.
2. From the Windows Start menu, go to the Control Panel.
3. Select Har
4. Click Device Manager to open the Device Manger window.
5. Expand the device category Network Adapters.
6. Double-click the Network Connection.
7. Click the General tab, and select Device Usage drop-down list.
To remo
Analyzer Installation Manual.
All us
a manner that meets local and any other security requirements that you have.
ve the hard disk drive assembly, refer to the TLA6400 Series Logic
er-storable data is stored on the hard disk drive. Scrub the hard disk drive in
to Disable.
dware and Sound.
NOTE. Before scrubbing the hard disk drive, make certain that you created OS
Restore CD-ROMs. For more information, see Creating Operating System
Restore CD-ROMs in the TLA6400 Series Logic Analyzer Installation Manual.
After the hard disk drive has been scrubbed, reinstall the operating system and
TLA application software.
Scrubbing the hard disk drive will not affect calibration of the instrument. You
can completely erase or remove any secure data without affecting the calibration
of the instrument.
8 TLA6400 Series Declassification and Securities Instructions
Built-In Security Features
To secure the instrument setups or data, remove the hard disk drive and store
it in a safe place.
If the hard disk drive has been removed and a new hard disk drive is installed,
reinstall the operating system and the TLA application software. Refer to the
TLA6400 Ser
the Microsoft Windows 7 Operating System and the TLA application software.
ies Logic Analyzer Installation Manual for instructions for restoring
TLA6400 Series Declassification and Securities Instructions 9
Built-In Security Features
10 TLA6400 Series Declassification and Securities Instructions
Troubleshooting
Clear or Sanitize a Nonfunctional Instrument
If your instrument is not functioning, perform the following actions and return the
instrument for Tektronix for repair. Describe the initial problem with the product.
Tektronix will install repla cement parts and then repair and return the instrument.
Hard Disk Drive
CD-RW/DVD ROM Drive
External Memory Devices
Remove the hard disk drive before returning the instrument to Tektronix for repair.
Remove al
need to remove the disk drive. Refer to your instrument service manual for
instructions.
Remove a
before returning the instrument to Tektronix for repair.
Refer t
external memory devices.
l CDs and DVDs. If it is not possible to remove the disk, you might
ny attached USB flash drive or external hard drives from the instrument
o your company’s internal policies regarding handling or disposal of the
Recover from Clearing or Removing the Instrument Memory
If the hard disk drive has been removed and a new hard disk drive is installed,
reinstall the operating system and the TLA application software.
TLA6400 Series Declassification and Securities Instructions 11
Loading...