Security Target
Page 14
... according to instructions from other fax devices using the G3 standard for the Engine Control Software. It stores documents, login user names and login passwords of 93 and digital signature. Transfers operation instructions from the key switches and the LCD touch screen to display...Board is shipped. - The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. The Operation Panel Control Software performs the following devices: key switches, LED indicators, an LCD touch ...
... according to instructions from other fax devices using the G3 standard for the Engine Control Software. It stores documents, login user names and login passwords of 93 and digital signature. Transfers operation instructions from the key switches and the LCD touch screen to display...Board is shipped. - The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. The Operation Panel Control Software performs the following devices: key switches, LED indicators, an LCD touch ...
Security Target
Page 20
..., Fax Function, Scanner Function, Printer Function, and Document Server Function. An administrator performs management operations, which include issuing login names to manage stored documents. This privilege allows configuration of 93 1.4.3.1. This privilege allows configuration of stored documents. All rights... and view of Users Normal user Administrator RC Gate Explanation A user who has all management privileges (Table 7). Copyright (c) 2011 RICOH COMPANY, LTD. According to its roles, the administrator can be allocated to in this ST indicates a direct user. Table 6...
..., Fax Function, Scanner Function, Printer Function, and Document Server Function. An administrator performs management operations, which include issuing login names to manage stored documents. This privilege allows configuration of 93 1.4.3.1. This privilege allows configuration of stored documents. All rights... and view of Users Normal user Administrator RC Gate Explanation A user who has all management privileges (Table 7). Copyright (c) 2011 RICOH COMPANY, LTD. According to its roles, the administrator can be allocated to in this ST indicates a direct user. Table 6...
Security Target
Page 26
... fax driver, a user will be required to authorise the operations of the Minimum Character No. (i.e. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. To use of functions based on the user role and the operation permissions for the authentication feedback area, where dummy characters ...are displayed if a login password is entered using a Web browser to register passwords that the user can be verified whether the communication request is sent from a...
... fax driver, a user will be required to authorise the operations of the Minimum Character No. (i.e. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. To use of functions based on the user role and the operation permissions for the authentication feedback area, where dummy characters ...are displayed if a login password is entered using a Web browser to register passwords that the user can be verified whether the communication request is sent from a...
Security Target
Page 28
...S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user authentication procedures. Login password, audit log, and HDD cryptographic key. 1.4.5.3. The components that are classified as "TSF protected data". Page 27 of TSF... installed in FlashROM and SD Card. This component is classified into two types: protected data and confidential data. Copyright (c) 2011 RICOH COMPANY, LTD. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that...
...S/MIME user information, destination folder, stored and received document user, document user list, available function list, and user authentication procedures. Login password, audit log, and HDD cryptographic key. 1.4.5.3. The components that are classified as "TSF protected data". Page 27 of TSF... installed in FlashROM and SD Card. This component is classified into two types: protected data and confidential data. Copyright (c) 2011 RICOH COMPANY, LTD. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that...
Security Target
Page 29
...attempted from beginning to be changed by this cannot be a combination of three or more types of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. A sequence of operations of the characters and symbols that can be a...Panel or Web Function before the predetermined auto logout time elapses. Windows Authentication supports NTLM Authentication and Kerberos Authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Auto logout time for identification and authentication of registrable password digits. A password associated with each normal user, MFP ...
...attempted from beginning to be changed by this cannot be a combination of three or more types of 93 Terms Login user name Login password Lockout Auto logout Minimum Character No. A sequence of operations of the characters and symbols that can be a...Panel or Web Function before the predetermined auto logout time elapses. Windows Authentication supports NTLM Authentication and Kerberos Authentication. Copyright (c) 2011 RICOH COMPANY, LTD. Auto logout time for identification and authentication of registrable password digits. A password associated with each normal user, MFP ...
Security Target
Page 30
...of the stored document types. Documents stored in the TOE after the reception are also included. A list of the login user names of the normal users whose access to documents is used. This includes Document Server documents, printer documents, scanner...users to folders, or downloaded on the client computer from the telephone line. This list does not include the login user names of the stored document types. Documents stored in the TOE when any one of locked print, ... function list Operation Panel Definitions One of document data. Copyright (c) 2011 RICOH COMPANY, LTD.
...of the stored document types. Documents stored in the TOE after the reception are also included. A list of the login user names of the normal users whose access to documents is used. This includes Document Server documents, printer documents, scanner...users to folders, or downloaded on the client computer from the telephone line. This list does not include the login user names of the stored document types. Documents stored in the TOE when any one of locked print, ... function list Operation Panel Definitions One of document data. Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 37
... confidential data TSF Confidential Data under the TOE management may be altered by persons without a login user name, or by persons with a login user name but without an access permission to the TSF Protected Data. Copyright (c) 2011 RICOH COMPANY, LTD. T.DOC.DIS Document disclosure Documents under the TOE management may be altered by...
... confidential data TSF Confidential Data under the TOE management may be altered by persons without a login user name, or by persons with a login user name but without an access permission to the TSF Protected Data. Copyright (c) 2011 RICOH COMPANY, LTD. T.DOC.DIS Document disclosure Documents under the TOE management may be altered by...
Security Target
Page 40
....NO_ALT Protection of document disclosure The TOE shall protect documents from unauthorised alteration by persons without a login user name, or by persons with a login user name but without an access permission to the document. Copyright (c) 2011 RICOH COMPANY, LTD. Page 39 of 93 4 Security Objectives This section describes Security Objectives for TOE, Security...
....NO_ALT Protection of document disclosure The TOE shall protect documents from unauthorised alteration by persons without a login user name, or by persons with a login user name but without an access permission to the document. Copyright (c) 2011 RICOH COMPANY, LTD. Page 39 of 93 4 Security Objectives This section describes Security Objectives for TOE, Security...
Security Target
Page 44
...USER.AUTHORIZED and OE.USER.AUTHORIZED. By O.PROT.NO_ALT, the TOE protects the TSF protected Copyright (c) 2011 RICOH COMPANY, LTD. T.PROT.ALT T.PROT.ALT is countered by persons with a login user name but without an access permission to the user job. All rights reserved. By OE.USER.AUTHORIZED...OE.USER.AUTHORIZED. By O.FUNC.NO_ALT, the TOE protects the user jobs from unauthorised alteration by persons without a login user name, or by persons with a login user name but without an access permission to users who follow the security policies and procedures of MFP gives the ...
...USER.AUTHORIZED and OE.USER.AUTHORIZED. By O.PROT.NO_ALT, the TOE protects the TSF protected Copyright (c) 2011 RICOH COMPANY, LTD. T.PROT.ALT T.PROT.ALT is countered by persons with a login user name but without an access permission to the user job. All rights reserved. By OE.USER.AUTHORIZED...OE.USER.AUTHORIZED. By O.FUNC.NO_ALT, the TOE protects the user jobs from unauthorised alteration by persons without a login user name, or by persons with a login user name but without an access permission to users who follow the security policies and procedures of MFP gives the ...
Security Target
Page 45
...of their organisation. By O.USER.AUTHORIZED, the TOE requires identification and authentication of users, and users are authorised in accordance with a login user name but without an access permission to use the TOE. SOFTWARE.VERIFICATION P.SOFTWARE.VERIFICATION is countered by O.SOFTWARE.VERIFIED. T.PROT....OE.USER.AUTHORIZED, the responsible manager of MFP gives the authority to use the TOE to use the TOE. P. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. By O.USER.AUTHORIZED, the TOE requires identification and authentication of users, and users are authorised in ...
...of their organisation. By O.USER.AUTHORIZED, the TOE requires identification and authentication of users, and users are authorised in accordance with a login user name but without an access permission to use the TOE. SOFTWARE.VERIFICATION P.SOFTWARE.VERIFICATION is countered by O.SOFTWARE.VERIFIED. T.PROT....OE.USER.AUTHORIZED, the responsible manager of MFP gives the authority to use the TOE to use the TOE. P. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. By O.USER.AUTHORIZED, the TOE requires identification and authentication of users, and users are authorised in ...
Security Target
Page 50
...TOE security functional requirements for fulfilling the security objectives defined in the PP/ST, [assignment: types of job for FDP_ACF.1(a), all login user names that are not defined in CC Part2 are quoted from the extended security functional requirements defined in the PP (IEEE Standard... communication with [bold face and brackets]. Dependencies: FPT_STM.1 Reliable time stamps FAU_GEN.1.1 The TSF shall be able to Original: Copyright (c) 2011 RICOH COMPANY, LTD. Table 12 shows the action (CC rules) recommended by the CC as auditable for the [selection: not specified] level of...
...TOE security functional requirements for fulfilling the security objectives defined in the PP/ST, [assignment: types of job for FDP_ACF.1(a), all login user names that are not defined in CC Part2 are quoted from the extended security functional requirements defined in the PP (IEEE Standard... communication with [bold face and brackets]. Dependencies: FPT_STM.1 Reliable time stamps FAU_GEN.1.1 The TSF shall be able to Original: Copyright (c) 2011 RICOH COMPANY, LTD. Table 12 shows the action (CC rules) recommended by the CC as auditable for the [selection: not specified] level of...
Security Target
Page 51
...: The specific security attributes used in making an access check. b) Basic: Success and failure of login operation b) Basic: Success and failure of login operation b) Basic: Success and failure of printing document data. - Start and end operation of Copyright (c) 2011 RICOH COMPANY, LTD. c) Detailed: The specific security attributes used in making an access check.
...: The specific security attributes used in making an access check. b) Basic: Success and failure of login operation b) Basic: Success and failure of login operation b) Basic: Success and failure of printing document data. - Start and end operation of Copyright (c) 2011 RICOH COMPANY, LTD. c) Detailed: The specific security attributes used in making an access check.
Security Target
Page 52
...Also includes the user identification that is required by auto logout. Copyright (c) 2011 RICOH COMPANY, LTD. b) Detailed: providing a timestamp. b) Basic: Success and failure of login operation a) Minimal: Record of the user identification mechanism, including the user identity provided... a) Minimal: Use of all trusted channel functions. d) Basic: Identification of the initiator and target of the management functions. login operation b) Basic: Success and failure of 93 authentication mechanism; a) Minimal: modifications to : No other components. FIA_UID.1(a) FIA_UID...
...Also includes the user identification that is required by auto logout. Copyright (c) 2011 RICOH COMPANY, LTD. b) Detailed: providing a timestamp. b) Basic: Success and failure of login operation a) Minimal: Record of the user identification mechanism, including the user identity provided... a) Minimal: Use of all trusted channel functions. d) Basic: Identification of the initiator and target of the management functions. login operation b) Basic: Success and failure of 93 authentication mechanism; a) Minimal: modifications to : No other components. FIA_UID.1(a) FIA_UID...
Security Target
Page 55
... FDP_ACF.1.1(a) The TSF shall enforce the [assignment: document access control SFP] to : No other components. User role - User role Copyright (c) 2011 RICOH COMPANY, LTD. Supervisor process - User jobs - Delete FDP_ACC.1(b) Subset access control Hierarchical to objects based on [assignment: list of normal user - Normal...Security attribute based access control Hierarchical to: No other components. Normal user process - MFP administrator process - RC Gate process - Login user name of subjects, objects, and operations among subjects and objects in Table 17].
... FDP_ACF.1.1(a) The TSF shall enforce the [assignment: document access control SFP] to : No other components. User role - User role Copyright (c) 2011 RICOH COMPANY, LTD. Supervisor process - User jobs - Delete FDP_ACC.1(b) Subset access control Hierarchical to objects based on [assignment: list of normal user - Normal...Security attribute based access control Hierarchical to: No other components. Normal user process - MFP administrator process - RC Gate process - Login user name of subjects, objects, and operations among subjects and objects in Table 17].
Security Target
Page 56
... user list for normal user process that created the document data. Not allowed. However, it is allowed for normal user process with login user name of normal user FDP_ACF.1.2(a) The TSF shall enforce the following rules to determine if an operation among controlled subjects and controlled...of normal user registered on document user list for document data. However, it is allowed for normal user process with login user name of 93 - Not allowed. Copyright (c) 2011 RICOH COMPANY, LTD. However, it is allowed for document data. Not allowed. However, it is allowed for normal ...
... user list for normal user process that created the document data. Not allowed. However, it is allowed for normal user process with login user name of normal user FDP_ACF.1.2(a) The TSF shall enforce the following rules to determine if an operation among controlled subjects and controlled...of normal user registered on document user list for document data. However, it is allowed for normal user process with login user name of 93 - Not allowed. Copyright (c) 2011 RICOH COMPANY, LTD. However, it is allowed for document data. Not allowed. However, it is allowed for normal ...
Security Target
Page 57
... user registered on the document data and user jobs in Table 19]. However, it is allowed for normal user process with login user name of supervisor process or RC Gate process]. Not allowed. Not allowed. FDP_ACF.1.3(a) The TSF shall explicitly authorise access...Normal user process Not allowed. Allows. Allows. Not allowed. Dependencies: FDP_ACC.1 Subset access control FMT_MSA.3 Static attribute initialisation Copyright (c) 2011 RICOH COMPANY, LTD. Document data +CPY Document data +DSR Read Delete Document data +DSR Read User jobs No setting of document data ...
... user registered on the document data and user jobs in Table 19]. However, it is allowed for normal user process with login user name of supervisor process or RC Gate process]. Not allowed. Not allowed. FDP_ACF.1.3(a) The TSF shall explicitly authorise access...Normal user process Not allowed. Allows. Allows. Not allowed. Dependencies: FDP_ACC.1 Subset access control FMT_MSA.3 Static attribute initialisation Copyright (c) 2011 RICOH COMPANY, LTD. Document data +CPY Document data +DSR Read Delete Document data +DSR Read User jobs No setting of document data ...
Security Target
Page 58
... on the following additional rules: [assignment: rules that any previous information content of a resource is surely permitted]. Copyright (c) 2011 RICOH COMPANY, LTD. FDP_ACF.1.3(b) The TSF shall explicitly authorise access of normal user - Login user name of subjects to objects based on MFP Applications (b) Object Operation Subject Rule to : No other components. User...
... on the following additional rules: [assignment: rules that any previous information content of a resource is surely permitted]. Copyright (c) 2011 RICOH COMPANY, LTD. FDP_ACF.1.3(b) The TSF shall explicitly authorise access of normal user - Login user name of subjects to objects based on MFP Applications (b) Object Operation Subject Rule to : No other components. User...
Security Target
Page 60
...minimum character number specified by MFP administrator (8-32 characters) and no more than 128 characters. All rights reserved. Login user name of normal user - FIA_UAU.1(a) Timing of authentication Hierarchical to : No other components. Login user name of MFP administrator - Dependencies: No dependencies. User role FIA_SOS.1 Verification of secrets Hierarchical to : ... minimum character number specified by the MFP administrator can be performed before the user is authenticated (refinement: authentication with Basic Authentication). Copyright (c) 2011 RICOH COMPANY, LTD.
...minimum character number specified by MFP administrator (8-32 characters) and no more than 128 characters. All rights reserved. Login user name of normal user - FIA_UAU.1(a) Timing of authentication Hierarchical to : No other components. Login user name of MFP administrator - Dependencies: No dependencies. User role FIA_SOS.1 Verification of secrets Hierarchical to : ... minimum character number specified by the MFP administrator can be performed before the user is authenticated (refinement: authentication with Basic Authentication). Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 62
...user. FIA_USB.1 User-subject binding Hierarchical to: No other components. Login user name of MFP administrator - User role - Available function list Supervisor Supervisor process - Login user name of normal user - Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Table 25 : Rules for...that user. FIA_UID.2 User identification before allowing other TSF-mediated actions on behalf of that user: [assignment: login user name of normal user, login user name of a person who intends to use the TOE from RC Gate communication interface) before action ...
...user. FIA_USB.1 User-subject binding Hierarchical to: No other components. Login user name of MFP administrator - User role - Available function list Supervisor Supervisor process - Login user name of normal user - Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Table 25 : Rules for...that user. FIA_UID.2 User identification before allowing other TSF-mediated actions on behalf of that user: [assignment: login user name of normal user, login user name of a person who intends to use the TOE from RC Gate communication interface) before action ...
Security Target
Page 63
All rights reserved. No operation permitted - Table 26 : User Roles for Security Attributes (a) Security Attributes Login user name of normal user for Basic Authentication Login user name of normal user for operations by the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Query, modify Query, modify MFP administrator, applicable normal user who stored the document data...
All rights reserved. No operation permitted - Table 26 : User Roles for Security Attributes (a) Security Attributes Login user name of normal user for Basic Authentication Login user name of normal user for operations by the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Query, modify Query, modify MFP administrator, applicable normal user who stored the document data...