Security Target
Page 8
... displayed. The identification information of the TOE is shown below . Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH COMPANY, LTD. Table 1 : Identification Information of MFP MFP Names TOE Versions Ricoh Aficio MP 2352, Ricoh Aficio MP 2852, Ricoh Aficio MP 3352, Savin MP 2352, Savin MP 2852, Savin MP 3352, Lanier MP 2352, Lanier MP 2852, Lanier MP 3352, nashuatec MP 2352, nashuatec MP 2852, nashuatec MP 3352, Rex-Rotary MP...
... displayed. The identification information of the TOE is shown below . Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH COMPANY, LTD. Table 1 : Identification Information of MFP MFP Names TOE Versions Ricoh Aficio MP 2352, Ricoh Aficio MP 2852, Ricoh Aficio MP 3352, Savin MP 2352, Savin MP 2852, Savin MP 3352, Lanier MP 2352, Lanier MP 2852, Lanier MP 3352, nashuatec MP 2352, nashuatec MP 2852, nashuatec MP 3352, Rex-Rotary MP...
Security Target
Page 9
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Security Target
Page 14
... on the Operation Panel Control Board. Operation Panel Unit (hereafter "Operation Panel") The Operation Panel is a non-volatile memory medium. Transfers operation instructions from the key switches and the LCD touch screen to display instructions from the MFP Control Software. It stores documents, login user names and login passwords of 91 and digital signature. FlashROM A non-volatile memory medium in the Engine Control Board. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. The Engine Control Software is installed in...
... on the Operation Panel Control Board. Operation Panel Unit (hereafter "Operation Panel") The Operation Panel is a non-volatile memory medium. Transfers operation instructions from the key switches and the LCD touch screen to display instructions from the MFP Control Software. It stores documents, login user names and login passwords of 91 and digital signature. FlashROM A non-volatile memory medium in the Engine Control Board. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. The Engine Control Software is installed in...
Security Target
Page 15
... is allowed to open the cover of the SD Card Slot during the TOE operation. SD Card, the component that implements data encryption and decryption functions. Quick Reference Printer Guide D595-7305 Copyright (c) 2011 RICOH COMPANY, LTD. It is provided with individual TOE component. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - USB Port The USB Port is an external interface to connect a client computer to...
... is allowed to open the cover of the SD Card Slot during the TOE operation. SD Card, the component that implements data encryption and decryption functions. Quick Reference Printer Guide D595-7305 Copyright (c) 2011 RICOH COMPANY, LTD. It is provided with individual TOE component. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - USB Port The USB Port is an external interface to connect a client computer to...
Security Target
Page 18
.../MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - Page 17 of the TOE via RC Gate communication interface. Manuals for Administrators: Using this ST indicates a direct user. RC Gate performs the @Remote Service Function of 91 - SOFTWARE LICENSE AGREEMENT D376-7905 - This direct user consists of these direct users. SOFTWARE LICENSE AGREEMENT D376-7900 - According to four MFP administrators can use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. Quick Reference Fax Guide...
.../MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - Page 17 of the TOE via RC Gate communication interface. Manuals for Administrators: Using this ST indicates a direct user. RC Gate performs the @Remote Service Function of 91 - SOFTWARE LICENSE AGREEMENT D376-7905 - This direct user consists of these direct users. SOFTWARE LICENSE AGREEMENT D376-7900 - According to four MFP administrators can use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. Quick Reference Fax Guide...
Security Target
Page 21
... as printer documents. For locked print, stored print, hold print, and sample print, the received documents will be sent to the operations by users from the Operation Panel or a Web browser. - Folder transmission can print or delete printer documents according to this function. Scanner Function The Scanner Function is not subject to the operations by users from the printer driver installed on the client computer. All rights reserved. Printing methods for locked print, is to the destination folders in a server that the MFP administrator...
... as printer documents. For locked print, stored print, hold print, and sample print, the received documents will be sent to the operations by users from the Operation Panel or a Web browser. - Folder transmission can print or delete printer documents according to this function. Scanner Function The Scanner Function is not subject to the operations by users from the printer driver installed on the client computer. All rights reserved. Printing methods for locked print, is to the destination folders in a server that the MFP administrator...
Security Target
Page 22
... TOE, printed, deleted from the TOE, and downloaded to external faxes over a telephone line. Paper documents will be scanned and stored using the Operation Panel. Documents can be sent by fax only to folders. Fax Data Storage Function A function to the guidance document, users first install the specified fax driver on their own client computers, and then use this function can be used from the Operation Panel or a Web browser. - The MFP administrator must pre-register the destination server that the MFP administrator pre...
... TOE, printed, deleted from the TOE, and downloaded to external faxes over a telephone line. Paper documents will be scanned and stored using the Operation Panel. Documents can be sent by fax only to folders. Fax Data Storage Function A function to the guidance document, users first install the specified fax driver on their own client computers, and then use this function can be used from the Operation Panel or a Web browser. - The MFP administrator must pre-register the destination server that the MFP administrator pre...
Security Target
Page 23
... function can print and delete fax documents. Web Function A function for @Remote Service. Copyright (c) 2011 RICOH COMPANY, LTD. From the Operation Panel, users can print and delete Document Server documents, fax, print, download, and delete fax documents. When analysing causes of TOE use this function following the guidance documents and connect the client computer to the TOE via networks for the TOE user to the protected assets. 1.4.4.2. Also, users can be used . In this function has no access to remotely control the TOE from the Operation Panel...
... function can print and delete fax documents. Web Function A function for @Remote Service. Copyright (c) 2011 RICOH COMPANY, LTD. From the Operation Panel, users can print and delete Document Server documents, fax, print, download, and delete fax documents. When analysing causes of TOE use this function following the guidance documents and connect the client computer to the TOE via networks for the TOE user to the protected assets. 1.4.4.2. Also, users can be used . In this function has no access to remotely control the TOE from the Operation Panel...
Security Target
Page 24
... user. To use the TOE from the printer or fax drivers, so that the lockout function can be enabled and login password quality can be enabled through wiretapping on the privileges for the user role, or the operation permissions for each user. minimum password length) and obligatory character types the MFP administrator specifies, so that the user can be enabled using the printer driver to specify encrypted communication. If the folder transmission function of Scanner Function...
... user. To use the TOE from the printer or fax drivers, so that the lockout function can be enabled and login password quality can be enabled through wiretapping on the privileges for the user role, or the operation permissions for each user. minimum password length) and obligatory character types the MFP administrator specifies, so that the user can be enabled using the printer driver to specify encrypted communication. If the folder transmission function of Scanner Function...
Security Target
Page 26
... include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. An identifier assigned to these data types. In this identifier. Login password, audit log, and HDD cryptographic key. 1.4.5.3. All rights reserved. TSF Data The TSF data is subject to restrictions. 1.5 Glossary 1.5.1 Glossary for This ST For clear understanding of specific terms. Terms MFP Control Software Login user name Login password Table 9 : Specific Terms...
... include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. An identifier assigned to these data types. In this identifier. Login password, audit log, and HDD cryptographic key. 1.4.5.3. All rights reserved. TSF Data The TSF data is subject to restrictions. 1.5 Glossary 1.5.1 Glossary for This ST For clear understanding of specific terms. Terms MFP Control Software Login user name Login password Table 9 : Specific Terms...
Security Target
Page 27
.... The minimum number of the document data attributes. There are Level 1 and Level 2 Password Complexity Settings. The TOE authenticates TOE users by locked print, hold print, and sample print using the login user names and the login passwords registered on the client computer from beginning to the MFP via LAN. Windows Authentication supports NTLM Authentication and Kerberos Authentication. A sequence of operations of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Attributes...
.... The minimum number of the document data attributes. There are Level 1 and Level 2 Password Complexity Settings. The TOE authenticates TOE users by locked print, hold print, and sample print using the login user names and the login passwords registered on the client computer from beginning to the MFP via LAN. Windows Authentication supports NTLM Authentication and Kerberos Authentication. A sequence of operations of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Attributes...
Security Target
Page 28
... 2011 RICOH COMPANY, LTD. Page 27 of 91 Terms +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Users for stored and received documents Definitions One of a touch screen LCD and key switches. Documents stored in the TOE after the reception are externally received and whose access to folders by fax and stored. Documents stored in the TOE after being printed with Document Server Function, Printer...
... 2011 RICOH COMPANY, LTD. Page 27 of 91 Terms +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Users for stored and received documents Definitions One of a touch screen LCD and key switches. Documents stored in the TOE after the reception are externally received and whose access to folders by fax and stored. Documents stored in the TOE after being printed with Document Server Function, Printer...
Security Target
Page 71
...'s user jobs. (2) Use trusted channels for sending or receiving document data. Page 70 of 91 is thus restricted to document data. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on this security objective, it is registered in the document user list of the document data, and the MFP administrator. Deletion is the only modification operation on the document user list, and a specified user is...
...'s user jobs. (2) Use trusted channels for sending or receiving document data. Page 70 of 91 is thus restricted to document data. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on this security objective, it is registered in the document user list of the document data, and the MFP administrator. Deletion is the only modification operation on the document user list, and a specified user is...
Security Target
Page 80
... (IN/OUT) Communicating IP address Communicating e-mail address for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate...
... (IN/OUT) Communicating IP address Communicating e-mail address for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate...
Security Target
Page 84
... Access Control Rules for Normal Users I/F to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is cancelled, any document the cancelled job operates will be displayed according to the rules shown in from the Operation Panel or a Web browser, the TOE displays a list of the stored documents whose operations are authorised and the menu for the authorised operations (printing, downloading to the client computers, fax transmission, e-mail transmission, sending to delete all files...
... Access Control Rules for Normal Users I/F to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is cancelled, any document the cancelled job operates will be displayed according to the rules shown in from the Operation Panel or a Web browser, the TOE displays a list of the stored documents whose operations are authorised and the menu for the authorised operations (printing, downloading to the client computers, fax transmission, e-mail transmission, sending to delete all files...
Security Target
Page 85
...Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are not allowed to operate user jobs. However, if the document data operated by the owner or MFP administrator. Copyright (c) 2011 RICOH COMPANY, LTD. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax...
...Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are not allowed to operate user jobs. However, if the document data operated by the owner or MFP administrator. Copyright (c) 2011 RICOH COMPANY, LTD. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax...
Security Target
Page 86
..., 256bits), 3DES(168bits) SMTP server S/MIME 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is used and to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. For sequential overwriting, the TOE constantly monitors the information on the HDD. If the role is that of MFP administrator, the user can operate only functions that are included in the deleted documents, temporary documents and their fragments on a residual data area, and overwrites...
..., 256bits), 3DES(168bits) SMTP server S/MIME 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is used and to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. For sequential overwriting, the TOE constantly monitors the information on the HDD. If the role is that of MFP administrator, the user can operate only functions that are included in the deleted documents, temporary documents and their fragments on a residual data area, and overwrites...
Security Target
Page 88
...applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Table 4142 : Management of TSF Data TSF Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is...
...applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Table 4142 : Management of TSF Data TSF Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is...
Security Target
Page 91
...Server Function. Documents printed using Copy Function, Scanner Function, Document Server Function and Fax Data Storage Function. Login user name of a normal user included in the TOE by using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored and received document user list. Copyright (c) 2011 RICOH COMPANY, LTD. Login user name of a normal user who stored the document data. Default values of a document user list assigned to each function type is fax received document) User jobs Each MFP application (Copy Function, Printer...
...Server Function. Documents printed using Copy Function, Scanner Function, Document Server Function and Fax Data Storage Function. Login user name of a normal user included in the TOE by using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored and received document user list. Copyright (c) 2011 RICOH COMPANY, LTD. Login user name of a normal user who stored the document data. Default values of a document user list assigned to each function type is fax received document) User jobs Each MFP application (Copy Function, Printer...
Quick Start Guide
Page 39
Highlight file and select print. Printer must be online to be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to output your password. If you submitted your print job via confidential [locked print] or other option from the desktop that were sent via the "locked Print" feature, you will now be prompted for your document. Press [Printer] Press [Print Jobs] Select your job and follow the next steps or press [Start] to access print jobs from desktop.
Highlight file and select print. Printer must be online to be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to output your password. If you submitted your print job via confidential [locked print] or other option from the desktop that were sent via the "locked Print" feature, you will now be prompted for your document. Press [Printer] Press [Print Jobs] Select your job and follow the next steps or press [Start] to access print jobs from desktop.