Security Target
Page 5
All rights reserved. Page 4 of 91 7.3 Document Access Control Function 82 7.4 Use-of-Feature Restriction Function 84 7.5 Network Protection Function 85 7.6 Residual Data Overwrite Function 85 7.7 Stored Data Protection Function 86 7.8 Security Management Function 86 7.9 Software Verification Function 91 7.10 Fax Line Separation Function 91 Copyright (c) 2011 RICOH COMPANY, LTD.
All rights reserved. Page 4 of 91 7.3 Document Access Control Function 82 7.4 Use-of-Feature Restriction Function 84 7.5 Network Protection Function 85 7.6 Residual Data Overwrite Function 85 7.7 Stored Data Protection Function 86 7.8 Security Management Function 86 7.9 Software Verification Function 91 7.10 Fax Line Separation Function 91 Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 8
... Information of MFP MFP Names TOE Versions Ricoh Aficio MP 2352, Ricoh Aficio MP 2852, Ricoh Aficio MP 3352, Savin MP 2352, Savin MP 2852, Savin MP 3352, Lanier MP 2352, Lanier MP 2852, Lanier MP 3352, nashuatec MP 2352, nashuatec MP 2852, nashuatec MP 3352, Rex-Rotary MP 2352, Rex-Rotary MP 2852, Rex-Rotary MP 3352, Gestetner MP 2352, Gestetner MP 2852, Gestetner MP 3352, infotec MP 2352, infotec MP 2852, infotec MP 3352 "Fax Option Type 3352" must be installed on the...
... Information of MFP MFP Names TOE Versions Ricoh Aficio MP 2352, Ricoh Aficio MP 2852, Ricoh Aficio MP 3352, Savin MP 2352, Savin MP 2852, Savin MP 3352, Lanier MP 2352, Lanier MP 2852, Lanier MP 3352, nashuatec MP 2352, nashuatec MP 2852, nashuatec MP 3352, Rex-Rotary MP 2352, Rex-Rotary MP 2852, Rex-Rotary MP 3352, Gestetner MP 2352, Gestetner MP 2852, Gestetner MP 3352, infotec MP 2352, infotec MP 2852, infotec MP 3352 "Fax Option Type 3352" must be installed on the...
Security Target
Page 9
....01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is an MFP... documents. 1.3.2 TOE Usage The operational environment of the TOE is illustrated below and the usage of the TOE is outlined in this section. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
....01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is an MFP... documents. 1.3.2 TOE Usage The operational environment of the TOE is illustrated below and the usage of the TOE is outlined in this section. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Security Target
Page 10
... office LAN, and users can perform the following operations from the Operation Panel of the TOE or through LAN communications. Copyright (c) 2011 RICOH COMPANY, LTD. Below, explanations are provided for the MFP, - All rights reserved. Also, the TOE receives information via telephone lines...the TOE itself, and hardware and software other than the TOE. Users can store it as a document. Copy, fax, storage, and network transmission of the stored documents. Print, fax, network transmission, and deletion of paper documents, - Page 9 of 91 Figure 1 : Example of TOE Environment ...
... office LAN, and users can perform the following operations from the Operation Panel of the TOE or through LAN communications. Copyright (c) 2011 RICOH COMPANY, LTD. Below, explanations are provided for the MFP, - All rights reserved. Also, the TOE receives information via telephone lines...the TOE itself, and hardware and software other than the TOE. Users can store it as a document. Copy, fax, storage, and network transmission of the stored documents. Print, fax, network transmission, and deletion of paper documents, - Page 9 of 91 Figure 1 : Example of TOE Environment ...
Security Target
Page 11
... information from the RC Gate via network interface is connected to prevent the office environment from network attacks via LAN. Copyright (c) 2011 RICOH COMPANY, LTD. The possible remote operations from the client computer. Firewall A device to the LAN, and users can remotely operate the...include Remote Communication Gate A, Remote Communication Gate Type BN1, and Remote Communication Gate Type BM1. Storage and printing of documents using the fax driver installed on the client computer, - Page 10 of 91 Client computer A computer that identifies and authenticates the TOE user with ...
... information from the RC Gate via network interface is connected to prevent the office environment from network attacks via LAN. Copyright (c) 2011 RICOH COMPANY, LTD. The possible remote operations from the client computer. Firewall A device to the LAN, and users can remotely operate the...include Remote Communication Gate A, Remote Communication Gate Type BN1, and Remote Communication Gate Type BM1. Storage and printing of documents using the fax driver installed on the client computer, - Page 10 of 91 Client computer A computer that identifies and authenticates the TOE user with ...
Security Target
Page 12
..., Controller Board, HDD, Ic Hdd, Network Unit, USB Port, SD Card Slot, and SD Card. Software Verification Function - Copyright (c) 2011 RICOH COMPANY, LTD. Identification and Authentication Function - Security Management Function - Fax Line Separation Function 1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE...
..., Controller Board, HDD, Ic Hdd, Network Unit, USB Port, SD Card Slot, and SD Card. Software Verification Function - Copyright (c) 2011 RICOH COMPANY, LTD. Identification and Authentication Function - Security Management Function - Fax Line Separation Function 1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE...
Security Target
Page 14
... to the key switches, LED indicators, and LCD touch screen. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that constitute the TOE, is installed in the MFP Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. Controls the LEDs and displays information on the Operation... Panel Control Board. The Engine Control Software is the identifier of the components that has a modem function for the Engine Control Software. The Fax Controller Unit sends and receives...
... to the key switches, LED indicators, and LCD touch screen. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that constitute the TOE, is installed in the MFP Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. Controls the LEDs and displays information on the Operation... Panel Control Board. The Engine Control Software is the identifier of the components that has a modem function for the Engine Control Software. The Fax Controller Unit sends and receives...
Security Target
Page 16
...-7549 - Help 83NHCCENZ1.00 v122 FCU - Manuals for Administrators MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 D595-7795 - Manuals for Users MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Printer Guide D595-7304 - All rights reserved. Quick Reference Fax Guide D596-7107 [English version-2] Page 15 of 91...
...-7549 - Help 83NHCCENZ1.00 v122 FCU - Manuals for Administrators MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 D595-7795 - Manuals for Users MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Printer Guide D595-7304 - All rights reserved. Quick Reference Fax Guide D596-7107 [English version-2] Page 15 of 91...
Security Target
Page 18
...for Users MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7810 - Up to perform user management, machine management, network Copyright (c) 2011 RICOH COMPANY, LTD. SOFTWARE LICENSE AGREEMENT D376-7905 - Quick Reference Fax Guide D596-...7556 - The following table (Table 5) shows the definitions of 91 - Notes for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - All rights reserved. Manuals for Administrators: Using this ST indicates a ...
...for Users MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7810 - Up to perform user management, machine management, network Copyright (c) 2011 RICOH COMPANY, LTD. SOFTWARE LICENSE AGREEMENT D376-7905 - Quick Reference Fax Guide D596-...7556 - The following table (Table 5) shows the definitions of 91 - Notes for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - All rights reserved. Manuals for Administrators: Using this ST indicates a ...
Security Target
Page 22
... that provides secure communication with the TOE. Operation Function for fax transmission are sent by fax using the Operation Panel. All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. Fax Reception Function A function to print or delete fax documents. The documents in the TOE for Received Fax Documents A function to the client computer. - The documents received by...
... that provides secure communication with the TOE. Operation Function for fax transmission are sent by fax using the Operation Panel. All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. Fax Reception Function A function to print or delete fax documents. The documents in the TOE for Received Fax Documents A function to the client computer. - The documents received by...
Security Target
Page 23
...Mode Lock Function is set to perform maintenance service for users to remotely control the TOE from the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. In this function provides the recorded audit log in the TOE by the MFP administrator to customer engineers only. The... Gate via networks for the target of evaluation. From the Operation Panel, users can print and delete Document Server documents, fax, print, download, and delete fax documents. Also, users can be implemented using the Operation Panel and a Web browser. Management Function The Management Function is ...
...Mode Lock Function is set to perform maintenance service for users to remotely control the TOE from the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. In this function provides the recorded audit log in the TOE by the MFP administrator to customer engineers only. The... Gate via networks for the target of evaluation. From the Operation Panel, users can print and delete Document Server documents, fax, print, download, and delete fax documents. Also, users can be implemented using the Operation Panel and a Web browser. Management Function The Management Function is ...
Security Target
Page 24
...through wiretapping on the LAN and detect data tampering. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Users can use the TOE from a Web browser, printer/fax driver, and RC Gate. minimum password length) and obligatory character types the MFP administrator ...-of-Feature Restriction Function is to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are authenticated by Identification and Authentication Function. The protection function can be enabled using ...
...through wiretapping on the LAN and detect data tampering. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Users can use the TOE from a Web browser, printer/fax driver, and RC Gate. minimum password length) and obligatory character types the MFP administrator ...-of-Feature Restriction Function is to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are authenticated by Identification and Authentication Function. The protection function can be enabled using ...
Security Target
Page 25
..., a "user job" is classified into two types: document data and function data. User Data The user data is referred to as the "fax line") can be enabled using the fax driver to specify encrypted communication. Table 7 defines user data according to these data types. In this function can be used to prohibit... documents, temporary documents and their fragments, which are user data, TSF data, and functions. 1.4.5.1. Security Management Function The Security Management Function is used. Copyright (c) 2011 RICOH COMPANY, LTD. Jobs specified by users.
..., a "user job" is classified into two types: document data and function data. User Data The user data is referred to as the "fax line") can be enabled using the fax driver to specify encrypted communication. Table 7 defines user data according to these data types. In this function can be used to prohibit... documents, temporary documents and their fragments, which are user data, TSF data, and functions. 1.4.5.1. Security Management Function The Security Management Function is used. Copyright (c) 2011 RICOH COMPANY, LTD. Jobs specified by users.
Security Target
Page 26
... by users without viewing permissions. The components that are for management of the document data of this identifier. Copyright (c) 2011 RICOH COMPANY, LTD. An identifier assigned to This ST Definitions A software component installed in FlashROM and SD Card. Type Protected data.... Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and...
... by users without viewing permissions. The components that are for management of the document data of this identifier. Copyright (c) 2011 RICOH COMPANY, LTD. An identifier assigned to This ST Definitions A software component installed in FlashROM and SD Card. Type Protected data.... Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and...
Security Target
Page 27
... of the procedures for this cannot be used . Page 26 of hard disk drive. The TOE authenticates TOE users by users during operation. Copyright (c) 2011 RICOH COMPANY, LTD. An abbreviation of 91 Terms Lockout Auto logout Minimum Character No. If a user job is used as +PRT, +SCN, +CPY, +FAXOUT, +FAXIN, and...
... of the procedures for this cannot be used . Page 26 of hard disk drive. The TOE authenticates TOE users by users during operation. Copyright (c) 2011 RICOH COMPANY, LTD. An abbreviation of 91 Terms Lockout Auto logout Minimum Character No. If a user job is used as +PRT, +SCN, +CPY, +FAXOUT, +FAXIN, and...
Security Target
Page 28
..., and Printer Function. Documents stored in the TOE after being printed with Document Server Function, Printer Function, Scanner Function, and Fax Function. This list is selected as the printing method for Printer Function. Documents received from the client computer, One of the ... stored using Fax Function, and those stored using Printer Function. One of each normal user. These documents are also included. A list of stored documents according to access. The Operation Panel is selected as an attribute of the stored document types. Copyright (c) 2011 RICOH COMPANY, LTD...
..., and Printer Function. Documents stored in the TOE after being printed with Document Server Function, Printer Function, Scanner Function, and Fax Function. This list is selected as the printing method for Printer Function. Documents received from the client computer, One of the ... stored using Fax Function, and those stored using Printer Function. One of each normal user. These documents are also included. A list of stored documents according to access. The Operation Panel is selected as an attribute of the stored document types. Copyright (c) 2011 RICOH COMPANY, LTD...
Security Target
Page 29
..., this function. Uniquely provided for the "folder transmission" function. The facility where the centre server of Fax Functions. IPSec protects the communication for realising this information consists of e-mail address, user certificate, and encryption... Notification screen on client computer. Terms Folder transmission Destination folder E-mail transmission S/MIME user information LAN Fax @Remote Maintenance centre Repair Request Notification Page 28 of 91 Definitions A function that sends documents from...and managed by the MFP administrator. Copyright (c) 2011 RICOH COMPANY, LTD.
..., this function. Uniquely provided for the "folder transmission" function. The facility where the centre server of Fax Functions. IPSec protects the communication for realising this information consists of e-mail address, user certificate, and encryption... Notification screen on client computer. Terms Folder transmission Destination folder E-mail transmission S/MIME user information LAN Fax @Remote Maintenance centre Repair Request Notification Page 28 of 91 Definitions A function that sends documents from...and managed by the MFP administrator. Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 30
... which this ST and TOE is "IEEE Standard for which this ST and TOE are : 2600.1-PRT conformant 2600.1-SCN conformant 2600.1-CPY conformant 2600.1-FAX conformant 2600.1-DSR conformant Copyright (c) 2011 RICOH COMPANY, LTD.
... which this ST and TOE is "IEEE Standard for which this ST and TOE are : 2600.1-PRT conformant 2600.1-SCN conformant 2600.1-CPY conformant 2600.1-FAX conformant 2600.1-DSR conformant Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 31
...security problem definitions in the communication between the TOE and RC Gate. Neither transmission nor reception of Copy Function, Scanner Function, Printer Function or Fax Function. The HCDs combine these communications do not affect any security problems and security objectives defined in PP The targeted product type by the PP... the PP. Although the PP is the Hardcopy devices (hereafter, HCDs). Also, the protected assets are translated from the RC Gate. Copyright (c) 2011 RICOH COMPANY, LTD. The MFP has the devices the HCDs have the interface to the PP.
...security problem definitions in the communication between the TOE and RC Gate. Neither transmission nor reception of Copy Function, Scanner Function, Printer Function or Fax Function. The HCDs combine these communications do not affect any security problems and security objectives defined in PP The targeted product type by the PP... the PP. Although the PP is the Hardcopy devices (hereafter, HCDs). Also, the protected assets are translated from the RC Gate. Copyright (c) 2011 RICOH COMPANY, LTD. The MFP has the devices the HCDs have the interface to the PP.
Security Target
Page 32
... to PP APPLICATION NOTE 35, the authentications of users are selected from the SFR Package specified by the PP. Copyright (c) 2011 RICOH COMPANY, LTD. According to change the security requirements specified by the PP. For this reason, both Basic Authentication and External Authentication ...identification and authentication methods for this TOE consist of the Common Security Functional Requirements, 2600.1-PRT, 2600.1-SCN, 2600.1-CPY, 2600.1-FAX, 2600.1-DSR, and 2600.1-SMI. Described below are the parts augmented and instantiated with the reasons for their consistency with Security...
... to PP APPLICATION NOTE 35, the authentications of users are selected from the SFR Package specified by the PP. Copyright (c) 2011 RICOH COMPANY, LTD. According to change the security requirements specified by the PP. For this reason, both Basic Authentication and External Authentication ...identification and authentication methods for this TOE consist of the Common Security Functional Requirements, 2600.1-PRT, 2600.1-SCN, 2600.1-CPY, 2600.1-FAX, 2600.1-DSR, and 2600.1-SMI. Described below are the parts augmented and instantiated with the reasons for their consistency with Security...