Returned Material Data Security Statement
Overview
This document covers the customer data security procedures employed by F5 Networks, Inc. when
equipment is returned to F5 for reprocessing or repair. This document introduces a survey of memory
technologies, equipment reprocessing procedures and optional customer-end procedures.
Memory technologies used in F5 equipment
F5 Networks equipment contains both volatile and non-volatile memory. Volatile memory loses all
traces of data on power down. Customer data stored in volatile memory is therefore secure when
power is removed from the system.
The remainder of this document focuses on non-volatile memory. A survey of the forms of non-
volatile memory utilized in F5 platforms is presented below.
Description Data Ability to store Data secure method
customer data?
Hard Drive [HDD] F5 product software, Yes Removal or
customer configuration Standard Reprocessing
and log files
Removable Compact F5 product software, Yes Removal or
Flash [CF] customer configuration Standard Reprocessing
Switch Card Boot ROM Switch card boot code Yes1 None needed2
[soldered down flash or
chip] Standard Reprocessing
Motherboard Battery- BIOS CMOS settings No None needed
backed RAM
Switch Card SEEPROM Platform ID: serial No None needed
number, part number, etc.
PHY EEPROMs PHY MAC address No None needed
Figure 1 - Non-volatile memory survey
Equipment reprocessing procedures
Platforms that are returned to F5 for reprocessing are subjected to procedures that ensure the erasure
of all customer data. All returned HDD and CF drives have their master boot records erased, are re-
partitioned and re-written with a new product software image prior to the system re-qualification test.
The standard return process is depicted on the left side of the following material process flow chart
[see Figure 2].
1
Deliberate customer actions are required to write to this memory. There are no F5 guiding
documents, manuals or technical bulletins that describe a situation where customers should write to
this area, nor are there instructions available. However, a sufficiently skilled individual may have
such ability. There are no situations where product software writes customer data to this area.
2
If, in the unlikely event, a customer stored data in this area, the data would be completely erased
during the standard reprocessing procedure.
F5 Networks, Inc. 401 Elliott Ave West Seattle, WA 98119 tel: 206.272.5555 fax: 206.272.5556 www.f5.com
November 1, 2006
Customer removed media
F5 Networks provides a customer-purchased service option whereby HDD and CF devices are pulled
by the customer prior to returning the unit. These options are found on the standard price list and are
available for customers who must positively control the location of data stores. The Customer
Removed Media process is depicted on the right side of the following material process flow chart.
Figure 2 - Material process flow chart
Risk assessment
The standard returned material process makes recovery of data on HDD and CF devices extremely
difficult. However, if absolute assurance is mandated then the customer must remove the hard drive
and compact flash device before returning the system to F5. Customer data contained in the
remaining non-volatile memory is guaranteed to be erased as described in Figure 2.
Acronyms
HDD Hard Disk Drive
CF Removable Compact Flash Disk
SSH Secure Shell
End of document
F5 Networks, Inc. 401 Elliott Ave West Seattle, WA 98119 tel: 206.272.5555 fax: 206.272.5556 www.f5.com