Security Target
Page 64
...for Basic Authentication Login user name of normal user for operations by the TOE. Dependencies: FMT_MSA.1 Management of security attributes FMT_SMR.1 Security roles FMT_MSA.3.1(a) The TSF shall enforce the [assignment: document access control SFP] to provide [selection: restrictive] default values for security... [assignment: security attributes in Table 27]. FMT_MSA.3(a)Static attribute initialisation Hierarchical to: No other components. Copyright (c) 2011 RICOH COMPANY, LTD. Page 63 of 93 FMT_MSA.1(b)Management of security attributes Hierarchical to: No other components.
...for Basic Authentication Login user name of normal user for operations by the TOE. Dependencies: FMT_MSA.1 Management of security attributes FMT_SMR.1 Security roles FMT_MSA.3.1(a) The TSF shall enforce the [assignment: document access control SFP] to provide [selection: restrictive] default values for security... [assignment: security attributes in Table 27]. FMT_MSA.3(a)Static attribute initialisation Hierarchical to: No other components. Copyright (c) 2011 RICOH COMPANY, LTD. Page 63 of 93 FMT_MSA.1(b)Management of security attributes Hierarchical to: No other components.
Security Target
Page 65
... attribute is created. All rights reserved. FMT_MTD.1 Management of Management Functions Copyright (c) 2011 RICOH COMPANY, LTD. Normal user who stored the applicable document data - Dependencies: FMT_MSA.1 Management... permissive to the available function list, restrictive to the function type, restrictive to the user role]] default values for the user role] to specify alternative initial values to : No other components. MFP administrator... data attribute Document user list Document user list Login user name of normal user Authorised Identified Roles - No authorised identified roles -
... attribute is created. All rights reserved. FMT_MTD.1 Management of Management Functions Copyright (c) 2011 RICOH COMPANY, LTD. Normal user who stored the applicable document data - Dependencies: FMT_MSA.1 Management... permissive to the available function list, restrictive to the function type, restrictive to the user role]] default values for the user role] to specify alternative initial values to : No other components. MFP administrator... data attribute Document user list Document user list Login user name of normal user Authorised Identified Roles - No authorised identified roles -
Security Target
Page 76
...to use the TOE from disclosure. FMT_MSA.3(b) sets the permissive default value to the available function list, and sets the restrictive default value to ensure that the TOE manages the operation of login password. FTA_SSL.3 terminates the session after no operation is performed ....7 displays dummy letters as authentication feedback on the network, and FIA_UAU.1(a) and FIA_UAU.1(b) authenticate the identified users. Copyright (c) 2011 RICOH COMPANY, LTD. Therefore, the access control for certain period and the auto logout time elapses. FIA_SOS.1 accepts only passwords that ...
...to use the TOE from disclosure. FMT_MSA.3(b) sets the permissive default value to the available function list, and sets the restrictive default value to ensure that the TOE manages the operation of login password. FTA_SSL.3 terminates the session after no operation is performed ....7 displays dummy letters as authentication feedback on the network, and FIA_UAU.1(a) and FIA_UAU.1(b) authenticate the identified users. Copyright (c) 2011 RICOH COMPANY, LTD. Therefore, the access control for certain period and the auto logout time elapses. FIA_SOS.1 accepts only passwords that ...
Security Target
Page 84
...login passwords entered by the user is allowed as that consecutively result in...login user name of attempts before lockout. The TOE locks out the login user name if the number of consecutive login... failures exceeds the number of a normal user, MFP administrator, or supervisor. Table 36 : Unlocking Administrators for each user role releases the lockout. The automatic logout function the TOE provides is activated if the fixed auto logout time (30 minutes by default...login user name of an MFP administrator or supervisor. Page 83 of 93 When the sent login user name and login...at login will ...
...login passwords entered by the user is allowed as that consecutively result in...login user name of attempts before lockout. The TOE locks out the login user name if the number of consecutive login... failures exceeds the number of a normal user, MFP administrator, or supervisor. Table 36 : Unlocking Administrators for each user role releases the lockout. The automatic logout function the TOE provides is activated if the fixed auto logout time (30 minutes by default...login user name of an MFP administrator or supervisor. Page 83 of 93 When the sent login user name and login...at login will ...
Security Target
Page 89
... data on the HDD and protect the data so that data leakage can be verified afterwards. If a login user is the MFP administrator, the screen to generate an HDD cryptographic key is to all of which ...user roles assigned to normal users, MFP administrator, or supervisor to operate the Security Management Function, and 3) set appropriate default values to be prevented. If the MFP administrator gives instructions to normal users, MFP administrator, or supervisor. All rights ...is complete, the TOE applies the method specified by random numbers. Copyright (c) 2011 RICOH COMPANY, LTD.
... data on the HDD and protect the data so that data leakage can be verified afterwards. If a login user is the MFP administrator, the screen to generate an HDD cryptographic key is to all of which ...user roles assigned to normal users, MFP administrator, or supervisor to operate the Security Management Function, and 3) set appropriate default values to be prevented. If the MFP administrator gives instructions to normal users, MFP administrator, or supervisor. All rights ...is complete, the TOE applies the method specified by random numbers. Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 90
...Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login ..., applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page 89 of 93 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and ...MFP administrator Query, modify Query, modify Query (Query is fax received document(*2) Default values of MFP administrator Document data attributes Document user list Stored document types are ...
...Data Login user names of normal users when Basic Authentication is applied Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login ..., applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page 89 of 93 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and ...MFP administrator Query, modify Query, modify Query (Query is fax received document(*2) Default values of MFP administrator Document data attributes Document user list Stored document types are ...
Security Target
Page 92
....3(b) The TOE sets default values for External Authentication) Newly create, modify, query, delete Query Query, modify Normal user MFP administrator Normal user MFP administrator Query MFP administrator -: No user roles whose operations are generated. All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. Page...is registered on an external authentication server is not changed even though the MFP administrator newly creates, modifies, and deletes the login user name of the normal user. (*2): If the MFP administrator modifies stored and received document users, and if the stored...
....3(b) The TOE sets default values for External Authentication) Newly create, modify, query, delete Query Query, modify Normal user MFP administrator Normal user MFP administrator Query MFP administrator -: No user roles whose operations are generated. All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. Page...is registered on an external authentication server is not changed even though the MFP administrator newly creates, modifies, and deletes the login user name of the normal user. (*2): If the MFP administrator modifies stored and received document users, and if the stored...
Security Target
Page 93
... by fax from the MFP or client computer. +FAXIN: Documents received from the client computer. All rights reserved. Default values of a document user list assigned to indicate whether or not Copy Function, Printer Function, Scanner Function, Document ... included in the TOE by the MFP administrator. Document user list Login user name of the functions is available. Login user name of normal user Available function lists Login user name of a normal user who stored the document data.... Documents stored in the stored and received document user list. Copyright (c) 2011 RICOH COMPANY, LTD.
... by fax from the MFP or client computer. +FAXIN: Documents received from the client computer. All rights reserved. Default values of a document user list assigned to indicate whether or not Copy Function, Printer Function, Scanner Function, Document ... included in the TOE by the MFP administrator. Document user list Login user name of the functions is available. Login user name of normal user Available function lists Login user name of a normal user who stored the document data.... Documents stored in the stored and received document user list. Copyright (c) 2011 RICOH COMPANY, LTD.