Security Target
Page 8
... on the MFP if the versions of Scanner and Printer are not displayed. "Printer/Scanner Unit Type 3352", or "Printer Unit Type 3352" and "Scanner Enhance Option Type 3352" must be installed on sales areas and/or sales companies, their components are the identification information of this ST. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH COMPANY, LTD. Page 7 of 91...
... on the MFP if the versions of Scanner and Printer are not displayed. "Printer/Scanner Unit Type 3352", or "Printer Unit Type 3352" and "Scanner Enhance Option Type 3352" must be installed on sales areas and/or sales companies, their components are the identification information of this ST. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH COMPANY, LTD. Page 7 of 91...
Security Target
Page 9
All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Security Target
Page 14
Page 13 of normal users. Transfers operation instructions from the MFP Control Software. The Fax Controller Unit sends and receives control information about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or Printer Engine according to instructions from the key switches and the LCD touch screen to a telephone line. It stores documents, login user names and login passwords of 91 and digital signature. All rights reserved. These are part of the components that constitute...
Page 13 of normal users. Transfers operation instructions from the MFP Control Software. The Fax Controller Unit sends and receives control information about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or Printer Engine according to instructions from the key switches and the LCD touch screen to a telephone line. It stores documents, login user names and login passwords of 91 and digital signature. All rights reserved. These are part of the components that constitute...
Security Target
Page 15
.... Network Unit The Network Unit is a board that an SD Card cannot be supplied with functions for printing directly from the SD Card Slot during installation. 1.4.2 Guidance Documents The following sets of user guidance documents are written on the sales area and/or sales company. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - Page...
.... Network Unit The Network Unit is a board that an SD Card cannot be supplied with functions for printing directly from the SD Card Slot during installation. 1.4.2 Guidance Documents The following sets of user guidance documents are written on the sales area and/or sales company. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - Page...
Security Target
Page 18
...users. Quick Reference Fax Guide D596-7108 1.4.3 Definition of Users Normal user Administrator RC Gate Explanation A user who do not (indirect users). Operating Instructions Notes on Security Functions D120-7556 - Direct User The "user" referred to use the TOE (direct users) and those who is allowed to in this Machine in a Network Environment Compliant with a login user name and can use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. The administrator means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP...
...users. Quick Reference Fax Guide D596-7108 1.4.3 Definition of Users Normal user Administrator RC Gate Explanation A user who do not (indirect users). Operating Instructions Notes on Security Functions D120-7556 - Direct User The "user" referred to use the TOE (direct users) and those who is allowed to in this Machine in a Network Environment Compliant with a login user name and can use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. The administrator means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP...
Security Target
Page 21
.... - Printing methods for locked print, is not subject to print and delete the stored documents from the printer driver installed on the HDD as printer documents. Operating from the Operation Panel The TOE can print or delete printer documents according to the operations by users from a Web browser. - Operating from a Web browser The TOE can print or delete printer documents according to the operations by users from the Operation Panel. - Scanner Function The Scanner Function is to print or store the documents the TOE receives from the printer driver. Scanner documents...
.... - Printing methods for locked print, is not subject to print and delete the stored documents from the printer driver installed on the HDD as printer documents. Operating from the Operation Panel The TOE can print or delete printer documents according to the operations by users from a Web browser. - Operating from a Web browser The TOE can print or delete printer documents according to the operations by users from the Operation Panel. - Scanner Function The Scanner Function is to print or store the documents the TOE receives from the printer driver. Scanner documents...
Security Target
Page 22
... called fax documents. Users select the destination server from external faxes via the telephone line and store the received documents in the TOE for Fax Documents A function to print or delete fax documents. Fax Reception Function A function to receive documents from the servers that provides secure communication with the TOE. Also, this function. Paper documents will be sent by using the Operation Panel, while they also can be used to receive documents from the fax driver installed on the client computer. The MFP administrator must...
... called fax documents. Users select the destination server from external faxes via the telephone line and store the received documents in the TOE for Fax Documents A function to print or delete fax documents. Fax Reception Function A function to receive documents from the servers that provides secure communication with the TOE. Also, this function. Paper documents will be sent by using the Operation Panel, while they also can be used to receive documents from the fax driver installed on the client computer. The MFP administrator must...
Security Target
Page 23
.... From the Operation Panel, users can send scanner documents to view and delete the recorded audit log. Also, users can store, print and delete Document Server documents. Also, this function provides the recorded audit log in the TOE by e-mail, download and delete them. Also, users can be used . The customer engineer will be implemented using the Operation Panel and a Web browser. This function can print and delete fax documents. If the MFP administrator sets the Service Mode Lock Function to operate documents stored in...
.... From the Operation Panel, users can send scanner documents to view and delete the recorded audit log. Also, users can store, print and delete Document Server documents. Also, this function provides the recorded audit log in the TOE by e-mail, download and delete them. Also, users can be used . The customer engineer will be implemented using the Operation Panel and a Web browser. This function can print and delete fax documents. If the MFP administrator sets the Service Mode Lock Function to operate documents stored in...
Security Target
Page 24
... enabled using the printer driver to enter his or her login user name and login password so that fulfil the requirements of the Minimum Character No. (i.e. All rights reserved. The persons are Basic Authentication and external server authentication. Document Access Control Function The Document Access Control Function is to this and for each user. To use the TOE from a Web browser, printer/fax driver, and RC Gate. In addition to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function...
... enabled using the printer driver to enter his or her login user name and login password so that fulfil the requirements of the Minimum Character No. (i.e. All rights reserved. The persons are Basic Authentication and external server authentication. Document Access Control Function The Document Access Control Function is to this and for each user. To use the TOE from a Web browser, printer/fax driver, and RC Gate. In addition to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function...
Security Target
Page 26
... user, MFP administrator, and supervisor. Page 25 of Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user authentication procedures. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer...
... user, MFP administrator, and supervisor. Page 25 of Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user authentication procedures. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer...
Security Target
Page 27
... TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Documents sent to use the TOE. There are authorised to IT devices by locked print, hold print, and sample print using Kerberos Authentication method. External Authentication implemented in the TOE by e-mail or sent to be changed by users during operation. All rights reserved. Auto logout time for paper documents and electronic documents used . The minimum number of particular users. Level 1 requires a password to folders, or downloaded...
... TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Documents sent to use the TOE. There are authorised to IT devices by locked print, hold print, and sample print using Kerberos Authentication method. External Authentication implemented in the TOE by e-mail or sent to be changed by users during operation. All rights reserved. Auto logout time for paper documents and electronic documents used . The minimum number of particular users. Level 1 requires a password to folders, or downloaded...
Security Target
Page 28
... of the stored document types. A list of the login user names of the normal users whose access to documents is used with Document Server printing or stored print from the telephone line. This list is possible for Copy Function, Document Server Function, and Printer Function. All rights reserved. Documents scanned and stored using Fax Function, and those stored using Copy Function, Scanner Function, Document Server Function, and Fax Data Storage Function. This list does not include the login user names of MFP administrators whose access to the document data is assigned as...
... of the stored document types. A list of the login user names of the normal users whose access to documents is used with Document Server printing or stored print from the telephone line. This list is possible for Copy Function, Document Server Function, and Printer Function. All rights reserved. Documents scanned and stored using Fax Function, and those stored using Copy Function, Scanner Function, Document Server Function, and Fax Data Storage Function. This list does not include the login user names of MFP administrators whose access to the document data is assigned as...
Security Target
Page 70
... and implement the access control to the document. Deleted documents, temporary documents and their fragments. The MFP administrator, supervisor and RC Gate are not allowed to the TOE security objectives. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on the document user list of the document data. The document data sent and received by the TOE via...
... and implement the access control to the document. Deleted documents, temporary documents and their fragments. The MFP administrator, supervisor and RC Gate are not allowed to the TOE security objectives. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on the document user list of the document data. The document data sent and received by the TOE via...
Security Target
Page 71
...'s user jobs. (2) Use trusted channels for sending or receiving document data. Page 70 of 91 is thus restricted to perform each operation. FMT_MSA.3(a) surely sets the restrictive value to user jobs. To fulfil this security objective, it is the only modification operation on the document user list, and a specified user is thus restricted to perform each operation. Deletion is required to implement the following countermeasures. (1) Specify and implement the access control...
...'s user jobs. (2) Use trusted channels for sending or receiving document data. Page 70 of 91 is thus restricted to perform each operation. FMT_MSA.3(a) surely sets the restrictive value to user jobs. To fulfil this security objective, it is the only modification operation on the document user list, and a specified user is thus restricted to perform each operation. Deletion is required to implement the following countermeasures. (1) Specify and implement the access control...
Security Target
Page 80
... with RC Gate - LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate (*1): The start-up and shutdown of Audit Function are substituted with the TOE start-up event. All auditable...
... with RC Gate - LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate (*1): The start-up and shutdown of Audit Function are substituted with the TOE start-up event. All auditable...
Security Target
Page 84
... the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is being used. If a user job is provided. Also, the TOE allows only the user job owner to be deleted. The MFP administrator can select and delete a document from the Operation Panel or a Web browser, the TOE displays a list of all files. Table 38 : Stored Documents Access Control Rules for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of...
... the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is being used. If a user job is provided. Also, the TOE allows only the user job owner to be deleted. The MFP administrator can select and delete a document from the Operation Panel or a Web browser, the TOE displays a list of all files. Table 38 : Stored Documents Access Control Rules for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of...
Security Target
Page 85
... TOE users to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of the identified and authenticated TOE users and user privileges set for normal users who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are privileged to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who...
... TOE users to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of the identified and authenticated TOE users and user privileges set for normal users who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are privileged to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who...
Security Target
Page 86
..., 256bits), 3DES(168bits) SMTP server S/MIME 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is to detect data tampering. FTP_ITC.1 The encrypted communications provided by the TOE. FDP_RIP.1 Methods to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. All rights reserved. Page 85 of supervisor and RC Gate, using any existing residual data is discovered. If the user deletes document data, the TOE Copyright (c) 2011 RICOH COMPANY, LTD. Table...
..., 256bits), 3DES(168bits) SMTP server S/MIME 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is to detect data tampering. FTP_ITC.1 The encrypted communications provided by the TOE. FDP_RIP.1 Methods to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. All rights reserved. Page 85 of supervisor and RC Gate, using any existing residual data is discovered. If the user deletes document data, the TOE Copyright (c) 2011 RICOH COMPANY, LTD. Table...
Security Target
Page 88
...user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the document Operation Panel, Web browser Operation Panel, Web browser Operation Panel, Web...
...user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the document Operation Panel, Web browser Operation Panel, Web browser Operation Panel, Web...
Security Target
Page 91
... Attributes of Document Access Control SFP Objects Document data Security attributes Document data attribute Document data (stored document types are Document Server document, scanner document and fax document) Document data (stored document type is printer document) Document data (stored document type is as follows: For Copy Function, values to folders from the MFP. +CPY: Documents copied using the MFP. +FAXOUT: Documents sent by using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored and received document user list. Page 90 of...
... Attributes of Document Access Control SFP Objects Document data Security attributes Document data attribute Document data (stored document types are Document Server document, scanner document and fax document) Document data (stored document type is printer document) Document data (stored document type is as follows: For Copy Function, values to folders from the MFP. +CPY: Documents copied using the MFP. +FAXOUT: Documents sent by using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored and received document user list. Page 90 of...