Security Target
Page 14
... the signature root key is installed before the TOE is the identifier for communication. The Engine Control Software is a non-volatile memory medium. Copyright (c) 2011 RICOH COMPANY, LTD. Transfers operation instructions from the MFP Control Software. Page 13 of normal users. Engine Unit The Engine Unit consists of the components that... to display instructions from other fax devices using the G3 standard for the Operation Panel Control Software. It stores documents, login user names and login passwords of 93 and digital signature.
... the signature root key is installed before the TOE is the identifier for communication. The Engine Control Software is a non-volatile memory medium. Copyright (c) 2011 RICOH COMPANY, LTD. Transfers operation instructions from the MFP Control Software. Page 13 of normal users. Engine Unit The Engine Unit consists of the components that... to display instructions from other fax devices using the G3 standard for the Operation Panel Control Software. It stores documents, login user names and login passwords of 93 and digital signature.
Security Target
Page 20
... Server Function, and Management Function cannot be classified as the supervisor and the MFP administrator. A normal user is allowed to delete and register the login password of Administrative Roles Management Privileges Supervisor User management privilege Machine management privilege Network management privilege File management privilege Explanation Authorised to manage the TOE. Direct...
... Server Function, and Management Function cannot be classified as the supervisor and the MFP administrator. A normal user is allowed to delete and register the login password of Administrative Roles Management Privileges Supervisor User management privilege Machine management privilege Network management privilege File management privilege Explanation Authorised to manage the TOE. Direct...
Security Target
Page 23
Printing methods for locked print, is not subject to this function. A dedicated password, which is used for documents is selected by users from the Operation Panel or a Web browser. According to the guidance document, users first install the ... mail server and e-mail addresses that they can be transmitted afterwards. E-mail transmission is possible only with which secure communication can be printed. Copyright (c) 2011 RICOH COMPANY, LTD.
Printing methods for locked print, is not subject to this function. A dedicated password, which is used for documents is selected by users from the Operation Panel or a Web browser. According to the guidance document, users first install the ... mail server and e-mail addresses that they can be transmitted afterwards. E-mail transmission is possible only with which secure communication can be printed. Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 26
...the RC Gate communication interface, it will be required to enter his or her login user name and login password so that the lockout function can be enabled and login password quality can be verified only by Identification and Authentication Function. To use the Printer or Fax Function from ... the printer or fax drivers, so that fulfil the requirements of the Minimum Character No. (i.e. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. Page 25 of 93 Identification and Authentication Function The Identification and Authentication Function is to verify persons before they use the...
...the RC Gate communication interface, it will be required to enter his or her login user name and login password so that the lockout function can be enabled and login password quality can be verified only by Identification and Authentication Function. To use the Printer or Fax Function from ... the printer or fax drivers, so that fulfil the requirements of the Minimum Character No. (i.e. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. Page 25 of 93 Identification and Authentication Function The Identification and Authentication Function is to verify persons before they use the...
Security Target
Page 28
...NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. Login user name, Number of 93 data 1.4.5.2. Copyright (c) 2011 RICOH COMPANY, LTD. No security threat will occur even this ST, Table 10 provides the definitions of this data is classified into two types...Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user...
...NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. Login user name, Number of 93 data 1.4.5.2. Copyright (c) 2011 RICOH COMPANY, LTD. No security threat will occur even this ST, Table 10 provides the definitions of this data is classified into two types...Attempts before Lockout, settings for Lockout Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user...
Security Target
Page 29
... includes Windows Authentication, LDAP Authentication, and Integration Server Authentication. The minimum combination of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. The TOE authenticates TOE users by the MFP administrator within 60 to be a .... There are authorised to use the TOE. Windows Authentication supports NTLM Authentication and Kerberos Authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Level 2 requires a password to be terminated. One of the procedures for this document, unless otherwise specified, "HDD" indicates the HDD ...
... includes Windows Authentication, LDAP Authentication, and Integration Server Authentication. The minimum combination of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. The TOE authenticates TOE users by the MFP administrator within 60 to be a .... There are authorised to use the TOE. Windows Authentication supports NTLM Authentication and Kerberos Authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Level 2 requires a password to be terminated. One of the procedures for this document, unless otherwise specified, "HDD" indicates the HDD ...
Security Target
Page 60
... No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) Rule: Passwords that secrets (refinement: secrets used in Basic Authentication) meet [assignment: the following quality metrics]. (1) Usable character and types: Upper...a mechanism to be registered. FIA_UAU.1(a) Timing of characters based on the password complexity setting specified by MFP administrator (8-32 characters) and no more than 128 characters. Copyright (c) 2011 RICOH COMPANY, LTD. Available function list - User role FIA_SOS.1 Verification of ...
... No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) Rule: Passwords that secrets (refinement: secrets used in Basic Authentication) meet [assignment: the following quality metrics]. (1) Usable character and types: Upper...a mechanism to be registered. FIA_UAU.1(a) Timing of characters based on the password complexity setting specified by MFP administrator (8-32 characters) and no more than 128 characters. Copyright (c) 2011 RICOH COMPANY, LTD. Available function list - User role FIA_SOS.1 Verification of ...
Security Target
Page 66
... List of TSF Data TSF Data Login password of normal user for Basic Authentication Login password of supervisor Login password of MFP administrator Number of Attempts before ..., day), time setting (hour, minute) Minimum character number for Basic Authentication Password complexity setting for Basic Authentication Audit logs HDD cryptographic key S/MIME user information Destination... MFP administrator Normal user who owns the login password Supervisor Supervisor MFP administrator MFP administrator who owns the login password MFP administrator MFP administrator MFP administrator MFP administrator...
... List of TSF Data TSF Data Login password of normal user for Basic Authentication Login password of supervisor Login password of MFP administrator Number of Attempts before ..., day), time setting (hour, minute) Minimum character number for Basic Authentication Password complexity setting for Basic Authentication Audit logs HDD cryptographic key S/MIME user information Destination... MFP administrator Normal user who owns the login password Supervisor Supervisor MFP administrator MFP administrator who owns the login password MFP administrator MFP administrator MFP administrator MFP administrator...
Security Target
Page 67
... MFP administrator Query of minimum character number by MFP administrator when the Basic Authentication is used Query of Password Complexity by MFP administrator when the Basic Authentication is used Query of Number of Attempts before Lockout by MFP administrator when ... normal user who stored the document Query and modification of available function list by normal user when the Basic Authentication is used Copyright (c) 2011 RICOH COMPANY, LTD. FMT_SMF.1.1 The TSF shall be capable of own available function list by MFP administrator Query of performing the following management functions:...
... MFP administrator Query of minimum character number by MFP administrator when the Basic Authentication is used Query of Password Complexity by MFP administrator when the Basic Authentication is used Query of Number of Attempts before Lockout by MFP administrator when ... normal user who stored the document Query and modification of available function list by normal user when the Basic Authentication is used Copyright (c) 2011 RICOH COMPANY, LTD. FMT_SMF.1.1 The TSF shall be capable of own available function list by MFP administrator Query of performing the following management functions:...
Security Target
Page 74
...the MFP administrator and applicable normal user to implement the following countermeasures. (1) Management of administrator. A supervisor is required to operate the login password of the TSF protected data. Page 73 of 93 (3) Management of the Management Function. By satisfying FDP_ACC.1(a), FDP_ACF.1(a), FTP_ITC.1, FMT_MSA.1(a) and ... of the security attributes. O.CONF.NO_DIS Protection of TSF confidential data disclosure O.CONF.NO_DIS is fulfilled. Copyright (c) 2011 RICOH COMPANY, LTD. FMT_SMR.1 maintains the users who can maintain the security to operate the login...
...the MFP administrator and applicable normal user to implement the following countermeasures. (1) Management of administrator. A supervisor is required to operate the login password of the TSF protected data. Page 73 of 93 (3) Management of the Management Function. By satisfying FDP_ACC.1(a), FDP_ACF.1(a), FTP_ITC.1, FMT_MSA.1(a) and ... of the security attributes. O.CONF.NO_DIS Protection of TSF confidential data disclosure O.CONF.NO_DIS is fulfilled. Copyright (c) 2011 RICOH COMPANY, LTD. FMT_SMR.1 maintains the users who can maintain the security to operate the login...
Security Target
Page 75
...Basic Authentication if the person who attempts to use the TOE from the interface for the identification and authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Page 74 of 93 O.CONF.NO_ALT Protection of TSF confidential data alteration O.CONF.NO_ALT is the security objective ... Management Functions for sending or receiving TSF confidential data. By satisfying FMT_MTD.1, FMT_SMF.1, FMT_SMR.1 and FTP_ITC.1, which are printed by using passwords when the TOE is accessed from the Operation Panel or a Web browser of client computer, documents are the security functional requirements for ...
...Basic Authentication if the person who attempts to use the TOE from the interface for the identification and authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Page 74 of 93 O.CONF.NO_ALT Protection of TSF confidential data alteration O.CONF.NO_ALT is the security objective ... Management Functions for sending or receiving TSF confidential data. By satisfying FMT_MTD.1, FMT_SMF.1, FMT_SMR.1 and FTP_ITC.1, which are printed by using passwords when the TOE is accessed from the Operation Panel or a Web browser of client computer, documents are the security functional requirements for ...
Security Target
Page 76
... to use the TOE from the Operation Panel or a Web browser for certain period and the auto logout time elapses. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. FIA_AFL.1 does not allow the user who attempt to the Operation Panel and LAN interface. The TOE ... is used in conjunction with the function whose access control is the security objective to ensure that satisfy the minimum character number and password character combination specified for the Basic Authentication by the Basic Authentication for certain times to access to the security policy. FIA_UID.2 identifies ...
... to use the TOE from the Operation Panel or a Web browser for certain period and the auto logout time elapses. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. FIA_AFL.1 does not allow the user who attempt to the Operation Panel and LAN interface. The TOE ... is used in conjunction with the function whose access control is the security objective to ensure that satisfy the minimum character number and password character combination specified for the Basic Authentication by the Basic Authentication for certain times to access to the security policy. FIA_UID.2 identifies ...
Security Target
Page 83
...the TOE. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from a Web browser, system status, the counter and information of inquiries, execution of fax reception, and repair request notifications, the...the login user name of 93 Communicating e-mail address for - Copyright (c) 2011 RICOH COMPANY, LTD. Communicating e-mail address Page 82 of the MFP administrator or supervisor, the entered login user name and login password are sent to an external authentication server for confirmation. E-mail transmission e-mail ...
...the TOE. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from a Web browser, system status, the counter and information of inquiries, execution of fax reception, and repair request notifications, the...the login user name of 93 Communicating e-mail address for - Copyright (c) 2011 RICOH COMPANY, LTD. Communicating e-mail address Page 82 of the MFP administrator or supervisor, the entered login user name and login password are sent to an external authentication server for confirmation. E-mail transmission e-mail ...
Security Target
Page 84
... logs out immediately after receiving the print data from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of dummy characters whose length is the same as that consecutively result in failure using the login user name of... result in Table 36 and specified for Each User Role User Roles (Locked out Users) Normal user Unlocking Administrators MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. The user role assigned to log in unless the lockout time set in advance elapses or an "unlocking administrator" shown in ...
... logs out immediately after receiving the print data from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of dummy characters whose length is the same as that consecutively result in failure using the login user name of... result in Table 36 and specified for Each User Role User Roles (Locked out Users) Normal user Unlocking Administrators MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. The user role assigned to log in unless the lockout time set in advance elapses or an "unlocking administrator" shown in ...
Security Target
Page 85
...- Supervisor MFP administrator MFP administrator Supervisor Page 84 of 93 FIA_SOS.1 Login passwords for users can be forwarded unless the TSF is not involved in information identification...to use the TOE. FDP_ACC.1(a) and FDP_ACF.1(a) The TOE controls user operations for password (8-32 characters) specified by the MFP administrators (two types or more, or three...provided user role privilege or user privilege. Therefore, the input information cannot be registered only if these passwords meet the following conditions: (1) Usable characters and types: Upper-case letters: [A-Z] (26 letters) ...
...- Supervisor MFP administrator MFP administrator Supervisor Page 84 of 93 FIA_SOS.1 Login passwords for users can be forwarded unless the TSF is not involved in information identification...to use the TOE. FDP_ACC.1(a) and FDP_ACF.1(a) The TOE controls user operations for password (8-32 characters) specified by the MFP administrators (two types or more, or three...provided user role privilege or user privilege. Therefore, the input information cannot be registered only if these passwords meet the following conditions: (1) Usable characters and types: Upper-case letters: [A-Z] (26 letters) ...
Security Target
Page 91
... MFP administrator MFP administrator MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. Function types User roles Login passwords of normal users when Basic Authentication is applied Login password of supervisor Login password of MFP administrator No operation interfaces available No operation... browser Query Query Query Query, modify Query Time Operation Panel, Web browser Minimum character number of password for Basic Authentication Password complexity setting for Basic Authentication Audit log HDD cryptographic key Operation panel Operation panel Web browser Operation panel...
... MFP administrator MFP administrator MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. Function types User roles Login passwords of normal users when Basic Authentication is applied Login password of supervisor Login password of MFP administrator No operation interfaces available No operation... browser Query Query Query Query, modify Query Time Operation Panel, Web browser Minimum character number of password for Basic Authentication Password complexity setting for Basic Authentication Audit log HDD cryptographic key Operation panel Operation panel Web browser Operation panel...