Security Target
Page 14
... a telephone line. HDD The HDD is a hard disk drive that is the identifier for the Operation Panel Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. Transfers operation instructions from the MFP Control Software. Engine Unit The Engine Unit consists of the components that constitute the TOE,...the LCD touch screen to the key switches, LED indicators, and LCD touch screen. It stores documents, login user names and login passwords of 91 and digital signature. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. Fax...
... a telephone line. HDD The HDD is a hard disk drive that is the identifier for the Operation Panel Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. Transfers operation instructions from the MFP Control Software. Engine Unit The Engine Unit consists of the components that constitute the TOE,...the LCD touch screen to the key switches, LED indicators, and LCD touch screen. It stores documents, login user names and login passwords of 91 and digital signature. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. Fax...
Security Target
Page 19
.... Definition of Administrator Supervisor MFP administrator Table 6 : List of the MFP administrator. Authorised to modify the login password of Administrative Roles Management Privileges Supervisor User management privilege Machine management privilege Network management privilege File management privilege Explanation Authorised to...of the management privilege can be allocated to the MFP administrator who belongs to manage stored documents. Copyright (c) 2011 RICOH COMPANY, LTD. Therefore, the different roles of the TOE administrators in the organisation where the TOE is in this...
.... Definition of Administrator Supervisor MFP administrator Table 6 : List of the MFP administrator. Authorised to modify the login password of Administrative Roles Management Privileges Supervisor User management privilege Machine management privilege Network management privilege File management privilege Explanation Authorised to...of the management privilege can be allocated to the MFP administrator who belongs to manage stored documents. Copyright (c) 2011 RICOH COMPANY, LTD. Therefore, the different roles of the TOE administrators in the organisation where the TOE is in this...
Security Target
Page 21
It also allows users to print and delete the stored documents from the Operation Panel. - A dedicated password, which secure communication can be ensured. Operating from the Operation Panel The TOE can print or delete printer documents according to the operations..., users first install the specified printer driver on printing methods. The documents stored in the TOE, so that they can be ensured. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. For locked print, stored print, hold print, and sample print, the received documents will be transmitted afterwards. According ...
It also allows users to print and delete the stored documents from the Operation Panel. - A dedicated password, which secure communication can be ensured. Operating from the Operation Panel The TOE can print or delete printer documents according to the operations..., users first install the specified printer driver on printing methods. The documents stored in the TOE, so that they can be ensured. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. For locked print, stored print, hold print, and sample print, the received documents will be transmitted afterwards. According ...
Security Target
Page 24
...Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are displayed if a login password is to authorise the operations for each user. All rights reserved. This function includes protection functions for each user. In addition ...encrypted communication. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. The users will be required to enter his or her login user name and login password so that the lockout function can be enabled and login password quality can be protected. The persons are Basic ...
...Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are displayed if a login password is to authorise the operations for each user. All rights reserved. This function includes protection functions for each user. In addition ...encrypted communication. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. The users will be required to enter his or her login user name and login password so that the lockout function can be enabled and login password quality can be protected. The persons are Basic ...
Security Target
Page 26
... public. Type Protected data Confidential data Table 8 : Definition of 91 1.4.5.2. The components that are classified as "TSF protected data". A password associated with each normal user, MFP administrator, and supervisor. All rights reserved. In this ST, "confidential data", listed below , is referred... the document data of specific terms. Terms MFP Control Software Login user name Login password Table 9 : Specific Terms Related to each login user name. Copyright (c) 2011 RICOH COMPANY, LTD. This data must be protected from changes by this identifier. An ...
... public. Type Protected data Confidential data Table 8 : Definition of 91 1.4.5.2. The components that are classified as "TSF protected data". A password associated with each normal user, MFP administrator, and supervisor. All rights reserved. In this ST, "confidential data", listed below , is referred... the document data of specific terms. Terms MFP Control Software Login user name Login password Table 9 : Specific Terms Related to each login user name. Copyright (c) 2011 RICOH COMPANY, LTD. This data must be protected from changes by this identifier. An ...
Security Target
Page 27
... documents and electronic documents used . A user job may be a combination of three or more types of TOE users who are Level 1 and Level 2 Password Complexity Settings. Copyright (c) 2011 RICOH COMPANY, LTD. The minimum number of characters and symbols specified above . General term for identification and authentication of characters and symbols specified above...
... documents and electronic documents used . A user job may be a combination of three or more types of TOE users who are Level 1 and Level 2 Password Complexity Settings. Copyright (c) 2011 RICOH COMPANY, LTD. The minimum number of characters and symbols specified above . General term for identification and authentication of characters and symbols specified above...
Security Target
Page 58
...[A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) Numbers: [0-9] (ten digits) Symbols: SP (spaces 33 symbols) (2) Registrable password length: For normal users: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) ... to verify that are composed of a combination of characters based on the password complexity setting specified by MFP administrator (8-32 characters) and no more than 128 characters. Copyright (c) 2011 RICOH COMPANY, LTD. Page 57 of 91 FIA_ATD.1 User attribute definition Hierarchical to...
...[A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) Numbers: [0-9] (ten digits) Symbols: SP (spaces 33 symbols) (2) Registrable password length: For normal users: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) ... to verify that are composed of a combination of characters based on the password complexity setting specified by MFP administrator (8-32 characters) and no more than 128 characters. Copyright (c) 2011 RICOH COMPANY, LTD. Page 57 of 91 FIA_ATD.1 User attribute definition Hierarchical to...
Security Target
Page 64
... Authentication Date setting (year, month, day), time setting (hour, minute) Minimum character number for Basic Authentication Password complexity setting for Basic Authentication Audit logs HDD cryptographic key S/MIME user information Destination information for folder transmission Query Query... who owns the login password MFP administrator MFP administrator MFP administrator MFP administrator Supervisor, normal user MFP administrator MFP administrator MFP administrator MFP administrator MFP administrator Normal user MFP administrator Normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page ...
... Authentication Date setting (year, month, day), time setting (hour, minute) Minimum character number for Basic Authentication Password complexity setting for Basic Authentication Audit logs HDD cryptographic key S/MIME user information Destination information for folder transmission Query Query... who owns the login password MFP administrator MFP administrator MFP administrator MFP administrator Supervisor, normal user MFP administrator MFP administrator MFP administrator MFP administrator MFP administrator Normal user MFP administrator Normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page ...
Security Target
Page 65
... MFP administrator Query of minimum character number by MFP administrator when the Basic Authentication is used Query of Password Complexity by MFP administrator when the Basic Authentication is used Query of Number of Attempts before Lockout by MFP administrator ... user who stored the document Query and modification of available function list by normal user when the Basic Authentication is used Copyright (c) 2011 RICOH COMPANY, LTD. Dependencies: No dependencies. FMT_SMF.1.1 The TSF shall be capable of performing the following management functions: [assignment: management functions shown ...
... MFP administrator Query of minimum character number by MFP administrator when the Basic Authentication is used Query of Password Complexity by MFP administrator when the Basic Authentication is used Query of Number of Attempts before Lockout by MFP administrator ... user who stored the document Query and modification of available function list by normal user when the Basic Authentication is used Copyright (c) 2011 RICOH COMPANY, LTD. Dependencies: No dependencies. FMT_SMF.1.1 The TSF shall be capable of performing the following management functions: [assignment: management functions shown ...
Security Target
Page 72
...are the security functional requirements for these countermeasures, O.CONF.NO_DIS is fulfilled. A supervisor is only allowed to operate the login password of the Management Function. The MFP administrator is allowed to operate the audit log and HDD cryptographic key. (2) Specification of ...folder and users for sending or receiving TSF confidential data. By FMT_MTD.1, only the MFP administrator is fulfilled. Copyright (c) 2011 RICOH COMPANY, LTD. O.CONF.NO_DIS Protection of the Management Function. The TSF confidential data sent and received by FTP_ITC.1. FMT_MSA.1(a) ...
...are the security functional requirements for these countermeasures, O.CONF.NO_DIS is fulfilled. A supervisor is only allowed to operate the login password of the Management Function. The MFP administrator is allowed to operate the audit log and HDD cryptographic key. (2) Specification of ...folder and users for sending or receiving TSF confidential data. By FMT_MTD.1, only the MFP administrator is fulfilled. Copyright (c) 2011 RICOH COMPANY, LTD. O.CONF.NO_DIS Protection of the Management Function. The TSF confidential data sent and received by FTP_ITC.1. FMT_MSA.1(a) ...
Security Target
Page 73
... are printed by LAN fax from the Operation Panel or a Web browser of client computer, documents are allowed to operate the login password of administrator. O.USER.AUTHORIZED User identification and authentication O.USER.AUTHORIZED is the security objective to restrict users in advance, and associate the...use the MFP application according to the operation permission granted to the successfully identified and authenticated normal user. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_ATD.1 and FIA_USB.1 manage the access procedures to operate the login password of the users who can use .
... are printed by LAN fax from the Operation Panel or a Web browser of client computer, documents are allowed to operate the login password of administrator. O.USER.AUTHORIZED User identification and authentication O.USER.AUTHORIZED is the security objective to restrict users in advance, and associate the...use the MFP application according to the operation permission granted to the successfully identified and authenticated normal user. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_ATD.1 and FIA_USB.1 manage the access procedures to operate the login password of the users who can use .
Security Target
Page 74
....MANAGED is enforced by the Basic Authentication for certain times to access to ensure that satisfy the minimum character number and password character combination specified for the External Authentication. By satisfying FDP_ACC.1(b), FDP_ACF.1(b), FIA_UID.1(a), FIA_UID.1(b), FIA_UID.2, FIA_UAU.1(a), FIA_UAU.1(b), FIA_UAU.2,..., and users are the security functional requirements for the External Authentication. (4) Terminate login automatically. Copyright (c) 2011 RICOH COMPANY, LTD. The TOE terminates the session with the access control by the MFP administrator, and makes it ...
....MANAGED is enforced by the Basic Authentication for certain times to access to ensure that satisfy the minimum character number and password character combination specified for the External Authentication. By satisfying FDP_ACC.1(b), FDP_ACF.1(b), FIA_UID.1(a), FIA_UID.1(b), FIA_UID.2, FIA_UAU.1(a), FIA_UAU.1(b), FIA_UAU.2,..., and users are the security functional requirements for the External Authentication. (4) Terminate login automatically. Copyright (c) 2011 RICOH COMPANY, LTD. The TOE terminates the session with the access control by the MFP administrator, and makes it ...
Security Target
Page 81
...supervisor in the TOE. When the entered login user name is the login user name of the login user name and login password is complete. All rights reserved. Page 80 of 91 7.2 Identification and Authentication Function The Identification and Authentication Function is to...TOE is complete. When the entered login user name is installed. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(b) and FIA_UID.1(b): Application of MFP administrator or supervisor, the TOE checks if the entered login password matches with the one pre-registered by Basic Authentication and External Authentication.
...supervisor in the TOE. When the entered login user name is the login user name of the login user name and login password is complete. All rights reserved. Page 80 of 91 7.2 Identification and Authentication Function The Identification and Authentication Function is to...TOE is complete. When the entered login user name is installed. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(b) and FIA_UID.1(b): Application of MFP administrator or supervisor, the TOE checks if the entered login password matches with the one pre-registered by Basic Authentication and External Authentication.
Security Target
Page 82
... who logs on to the TOE from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of attempts before lockout. The TOE logs out immediately after the communication with that of the entered...Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.7 Regarding login passwords entered by the user is allowed as that user name is not allowed to the user at login will be maintained until...
... who logs on to the TOE from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of attempts before lockout. The TOE logs out immediately after the communication with that of the entered...Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.7 Regarding login passwords entered by the user is allowed as that user name is not allowed to the user at login will be maintained until...
Security Target
Page 83
... information of 91 FIA_SOS.1 Login passwords for document data and user jobs in accordance with (1) access control rule on document data and (2) access control rule on user jobs. (1) Access control rule on document data Copyright (c) 2011 RICOH COMPANY, LTD. FDP_ACC.1(a) and ... receives a certificate from the IT device matches the one installed in the TOE. Therefore, the input information cannot be registered only if these passwords meet the following conditions: (1) Usable characters and types: Upper-case letters: [A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) ...
... information of 91 FIA_SOS.1 Login passwords for document data and user jobs in accordance with (1) access control rule on document data and (2) access control rule on user jobs. (1) Access control rule on document data Copyright (c) 2011 RICOH COMPANY, LTD. FDP_ACC.1(a) and ... receives a certificate from the IT device matches the one installed in the TOE. Therefore, the input information cannot be registered only if these passwords meet the following conditions: (1) Usable characters and types: Upper-case letters: [A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) ...
Security Target
Page 89
...year/month/day) Operation Panel, Web browser Query Query Query Query, modify Query Time Operation Panel, Web browser Minimum character number of password for Basic Authentication Password complexity setting for Basic Authentication Audit log HDD cryptographic key Operation panel Operation panel Web browser Operation panel S/MIME user information Operation Panel, ... MFP administrator Supervisor, normal user MFP administrator Supervisor, normal user MFP administrator MFP administrator MFP administrator MFP administrator MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD.
...year/month/day) Operation Panel, Web browser Query Query Query Query, modify Query Time Operation Panel, Web browser Minimum character number of password for Basic Authentication Password complexity setting for Basic Authentication Audit log HDD cryptographic key Operation panel Operation panel Web browser Operation panel S/MIME user information Operation Panel, ... MFP administrator Supervisor, normal user MFP administrator Supervisor, normal user MFP administrator MFP administrator MFP administrator MFP administrator MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD.
Quick Start Guide
Page 27
System will prompt you to re-enter password, then press OK Place your document name If a password is required, enter a numerical value. Storing an Original Keyboard appears, type your document > Select any additional options > press [Start]
System will prompt you to re-enter password, then press OK Place your document name If a password is required, enter a numerical value. Storing an Original Keyboard appears, type your document > Select any additional options > press [Start]
Quick Start Guide
Page 37
... the memory until selected. Hold Print: Temporarily holds multiple print files in functionality to print files immediately while simultaneously storing data. 4-8 digit password is entered at a later date. Sample Print: Outputs the first set of a multiple-set print job so that output settings can be...for storage and printing at the control panel. Document Server: Sends files directly to the document server for accuracy prior to enter a password. Does not require the user to printing the entire job. Store and Print enables users to Hold Print, except files are automatically...
... the memory until selected. Hold Print: Temporarily holds multiple print files in functionality to print files immediately while simultaneously storing data. 4-8 digit password is entered at a later date. Sample Print: Outputs the first set of a multiple-set print job so that output settings can be...for storage and printing at the control panel. Document Server: Sends files directly to the document server for accuracy prior to enter a password. Does not require the user to printing the entire job. Store and Print enables users to Hold Print, except files are automatically...
Quick Start Guide
Page 39
Printer must be online to be prompted for your password. If you submitted your print job via the "locked Print" feature, you will now be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to output your job and follow the next steps or press [Start] to access print jobs from the desktop that were sent via confidential [locked print] or other option from desktop. Press [Printer] Press [Print Jobs] Select your document. Highlight file and select print.
Printer must be online to be prompted for your password. If you submitted your print job via the "locked Print" feature, you will now be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to output your job and follow the next steps or press [Start] to access print jobs from the desktop that were sent via confidential [locked print] or other option from desktop. Press [Printer] Press [Print Jobs] Select your document. Highlight file and select print.