Security Target
Page 9
... Hardware Ic Key 01020700 Ic Ctlr 03 GWFCU3-21(WW) 03.00.00 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is a digital multi function product (hereafter "MFP"), which is an IT device that inputs, stores, and outputs documents. 1.3.2 TOE Usage The operational environment of...
... Hardware Ic Key 01020700 Ic Ctlr 03 GWFCU3-21(WW) 03.00.00 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is a digital multi function product (hereafter "MFP"), which is an IT device that inputs, stores, and outputs documents. 1.3.2 TOE Usage The operational environment of...
Security Target
Page 14
... a hard disk drive that is the identifier for the Operation Panel Control Software. The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. It also sends and receives fax data to print and eject paper documents, and Engine Control Board. The Fax Unit sends and receives control information about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or Printer Engine according to instructions from other fax devices using the G3 standard for connection to the key switches...
... a hard disk drive that is the identifier for the Operation Panel Control Software. The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. It also sends and receives fax data to print and eject paper documents, and Engine Control Board. The Fax Unit sends and receives control information about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or Printer Engine according to instructions from other fax devices using the G3 standard for connection to the key switches...
Security Target
Page 19
... - Manuals for Users D088-7759A - Page 18 of This Machine D029-7904 - Quick Reference Copy Guide D088-7527 - App2Me Start Guide D085-7906B - Operating Instructions Notes on Security Functions D088-7706 - Quick Reference Fax Guide D545-8507 1.4.3 Definition of Users This section defines the users related to the TOE. The direct users and indirect users are described as follows: Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Printer Guide D088-7805 - Notes for Administrators Aficio MP C3001/MP C3501/MP...
... - Manuals for Users D088-7759A - Page 18 of This Machine D029-7904 - Quick Reference Copy Guide D088-7527 - App2Me Start Guide D085-7906B - Operating Instructions Notes on Security Functions D088-7706 - Quick Reference Fax Guide D545-8507 1.4.3 Definition of Users This section defines the users related to the TOE. The direct users and indirect users are described as follows: Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Printer Guide D088-7805 - Notes for Administrators Aficio MP C3001/MP C3501/MP...
Security Target
Page 20
...to the MFP administrator who is allowed to multiple MFP administrators individually. This privilege allows access management of normal user settings. An administrator performs management operations, which include issuing login names to networks. This privilege allows configuration of stored documents. An IT device connected to normal users. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be allocated to use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function...
...to the MFP administrator who is allowed to multiple MFP administrators individually. This privilege allows access management of normal user settings. An administrator performs management operations, which include issuing login names to networks. This privilege allows configuration of stored documents. An IT device connected to normal users. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be allocated to use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function...
Security Target
Page 23
... printer documents. Operating from the Operation Panel The TOE can be ensured. According to the guidance document, users first install the specified printer driver on the client computer. Scanner Function The Scanner Function is complete. E-mail transmission is possible only with the mail server and e-mail addresses that the MFP administrator pre-registers in the TOE and with which secure communication can print or delete printer documents according to folders or by users from a Web...
... printer documents. Operating from the Operation Panel The TOE can be ensured. According to the guidance document, users first install the specified printer driver on the client computer. Scanner Function The Scanner Function is complete. E-mail transmission is possible only with the mail server and e-mail addresses that the MFP administrator pre-registers in the TOE and with which secure communication can print or delete printer documents according to folders or by users from a Web...
Security Target
Page 24
... delete fax documents. All rights reserved. Users select the destination server from the servers that the MFP administrator pre-registers, and send data to receive documents from external faxes via the telephone line and store the received documents in the TOE, printed, deleted from the TOE, and downloaded to the client computer. - Fax Reception Function A function to the folder. - Copyright (c) 2011 RICOH COMPANY, LTD. The documents received by fax can be sent by fax only to folders by operating the fax driver installed...
... delete fax documents. All rights reserved. Users select the destination server from the servers that the MFP administrator pre-registers, and send data to receive documents from external faxes via the telephone line and store the received documents in the TOE, printed, deleted from the TOE, and downloaded to the client computer. - Fax Reception Function A function to the folder. - Copyright (c) 2011 RICOH COMPANY, LTD. The documents received by fax can be sent by fax only to folders by operating the fax driver installed...
Security Target
Page 25
If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use and security-relevant events (hereafter, "audit events"). Web Function A function for the TOE user to remotely control the TOE from the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. From a Web browser, users can store, print and delete Document Server documents. To control the TOE remotely, the TOE user needs to install the designated Web browser on the client computer following...
If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use and security-relevant events (hereafter, "audit events"). Web Function A function for the TOE user to remotely control the TOE from the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. From a Web browser, users can store, print and delete Document Server documents. To control the TOE remotely, the TOE user needs to install the designated Web browser on the client computer following...
Security Target
Page 26
... Function is to authorise the operations for documents and user jobs by the authorised TOE users who are Basic Authentication and external server authentication. The persons are displayed if a login password is entered using a Web browser to use of functions based on the LAN and detect data tampering. If the Printer Function is to verify persons before they use the TOE from a Web browser, printer/fax driver, and RC Gate. To use the @Remote Service Function...
... Function is to authorise the operations for documents and user jobs by the authorised TOE users who are Basic Authentication and external server authentication. The persons are displayed if a login password is entered using a Web browser to use of functions based on the LAN and detect data tampering. If the Printer Function is to verify persons before they use the TOE from a Web browser, printer/fax driver, and RC Gate. To use the @Remote Service Function...
Security Target
Page 28
... data", listed below , is referred to as protected assets, whose use is classified into two types: protected data and confidential data. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. Page 27 of Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time...
... data", listed below , is referred to as protected assets, whose use is classified into two types: protected data and confidential data. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. Page 27 of Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time...
Security Target
Page 29
... particular users. Copyright (c) 2011 RICOH COMPANY, LTD. Page 28 of registrable password digits. The minimum number of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. The TOE authenticates TOE users by using Kerberos Authentication method. As for the Operation Panel: Time specified by users). In this identifier. A user job may be changed by the MFP administrator within 60 to use the TOE. A password associated with each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function...
... particular users. Copyright (c) 2011 RICOH COMPANY, LTD. Page 28 of registrable password digits. The minimum number of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. The TOE authenticates TOE users by using Kerberos Authentication method. As for the Operation Panel: Time specified by users). In this identifier. A user job may be changed by the MFP administrator within 60 to use the TOE. A password associated with each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function...
Security Target
Page 30
... Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. The Operation Panel is assigned as an attribute of the document data attributes. Documents sent to IT devices by users to folders, or downloaded on the client computer from the telephone line. Documents stored in the TOE when any one of MFP administrators whose access to documents is possible for each document data. One of the stored document types. Documents received by using Scanner Function. One of the document data attributes. One of the document data attributes. Page...
... Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. The Operation Panel is assigned as an attribute of the document data attributes. Documents sent to IT devices by users to folders, or downloaded on the client computer from the telephone line. Documents stored in the TOE when any one of MFP administrators whose access to documents is possible for each document data. One of the stored document types. Documents received by using Scanner Function. One of the document data attributes. One of the document data attributes. Page...
Security Target
Page 72
... the document user list, and a specified user Copyright (c) 2011 RICOH COMPANY, LTD. Deleted documents, temporary documents and their fragments. FDP_ACC.1(a) and FDP_ACF.1(a) only allow the following persons to view document data according to the document data attributes: the normal user who generated the document data or the normal user who is required to implement the following countermeasures. (1) Specify and implement the access control to the document data. The document data sent and received...
... the document user list, and a specified user Copyright (c) 2011 RICOH COMPANY, LTD. Deleted documents, temporary documents and their fragments. FDP_ACC.1(a) and FDP_ACF.1(a) only allow the following persons to view document data according to the document data attributes: the normal user who generated the document data or the normal user who is required to implement the following countermeasures. (1) Specify and implement the access control to the document data. The document data sent and received...
Security Target
Page 73
....NO_ALT is registered in the document user list of document data (object) when document data are generated. All rights reserved. FDP_ACC.1(a) and FDP_ACF.1(a) allow the MFP administrator to delete user jobs, and the normal user with a login user name but without an access permission to the security attributes of the document data, and the MFP administrator. To fulfil this TOE's user jobs. (2) Use trusted channels for sending or receiving document data. FMT_MSA.3(a) surely sets the restrictive value to...
....NO_ALT is registered in the document user list of document data (object) when document data are generated. All rights reserved. FDP_ACC.1(a) and FDP_ACF.1(a) allow the MFP administrator to delete user jobs, and the normal user with a login user name but without an access permission to the security attributes of the document data, and the MFP administrator. To fulfil this TOE's user jobs. (2) Use trusted channels for sending or receiving document data. FMT_MSA.3(a) surely sets the restrictive value to...
Security Target
Page 82
... Items Copyright (c) 2011 RICOH COMPANY, LTD. All auditable events shown in Table 34 - All rights reserved. Page 81 of 93 Termination of session by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure...
... Items Copyright (c) 2011 RICOH COMPANY, LTD. All auditable events shown in Table 34 - All rights reserved. Page 81 of 93 Termination of session by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure...
Security Target
Page 86
... Operation Panel or a Web browser, the TOE displays a list of the stored documents that allow users to edit the document user list are authorised and the menu for deletion and deletion of all files). They will be printed, downloaded to the client computers, sent by fax, sent by e-mail, sent to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is provided. Also, the TOE allows only the user job owner to folders...
... Operation Panel or a Web browser, the TOE displays a list of the stored documents that allow users to edit the document user list are authorised and the menu for deletion and deletion of all files). They will be printed, downloaded to the client computers, sent by fax, sent by e-mail, sent to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is provided. Also, the TOE allows only the user job owner to folders...
Security Target
Page 87
...to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to operate user jobs. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax Function Page 86 of 93 Document Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (Operations above are authorised only if normal users are privileged to use Scanner...
...to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to operate user jobs. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax Function Page 86 of 93 Document Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (Operations above are authorised only if normal users are privileged to use Scanner...
Security Target
Page 88
... discovered. If the role is that of MFP administrator, the user can operate only functions that are included in the available function list set for an authorised TOE user who attempts to overwrite specific patterns on the HDD and disable the reusing of the residual data included in the deleted documents, temporary documents and their fragments on communicating devices. Table 38 : Encrypted Communications Provided by the...
... discovered. If the role is that of MFP administrator, the user can operate only functions that are included in the available function list set for an authorised TOE user who attempts to overwrite specific patterns on the HDD and disable the reusing of the residual data included in the deleted documents, temporary documents and their fragments on communicating devices. Table 38 : Encrypted Communications Provided by the...
Security Target
Page 90
... Users MFP administrator Applicable normal user MFP administrator Supervisor MFP administrator Applicable MFP administrator Supervisor - Table 40 : Management of TSF Data TSF Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document...
... Users MFP administrator Applicable normal user MFP administrator Supervisor MFP administrator Applicable MFP administrator Supervisor - Table 40 : Management of TSF Data TSF Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document...
Security Target
Page 93
... whether or not Copy Function, Printer Function, Scanner Function, Document Server Function, or Fax Function is available. Login user name of normal user Available function lists Login user name of a normal user who stored the document data. Page 92 of 93 Table 41 : List of Static Initialisation for Security Attributes of Document Access Control SFP Objects/Subjects Document data Document data (stored document types are specified by the MFP administrator. Documents printed using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored...
... whether or not Copy Function, Printer Function, Scanner Function, Document Server Function, or Fax Function is available. Login user name of normal user Available function lists Login user name of a normal user who stored the document data. Page 92 of 93 Table 41 : List of Static Initialisation for Security Attributes of Document Access Control SFP Objects/Subjects Document data Document data (stored document types are specified by the MFP administrator. Documents printed using Document Server printing or stored print from a telephone line. +DSR: Documents stored in the stored...
Security Target
Page 94
... as follows: For Copy Function, values to receive only faxes as input information from telephone lines so that these codes can be verified. Each MFP application (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) Function type Page 93 of 93 The values specified for integrity verification so that the integrity of the FCU Control Software can be forwarded. The TOE verifies the integrity of the audit log data files. If the...
... as follows: For Copy Function, values to receive only faxes as input information from telephone lines so that these codes can be verified. Each MFP application (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) Function type Page 93 of 93 The values specified for integrity verification so that the integrity of the FCU Control Software can be forwarded. The TOE verifies the integrity of the audit log data files. If the...