Security Target
Page 9
...Web Support Web Uapl animation Scanner Printer PCL OptionPCLFont Data Erase Std GWFCU3-23 (WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Ctlr 02.00.00 01.00.00 1.04 1.02 1.01 1.00 01.04 1.01 1.07 1.02 1.01x 03.00.00 1.02:02 1.03 1.03 1.03 Hardware 01020700 03 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network..., Office, Fax Page 8 of 91 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is an MFP, which is an IT device that inputs, stores, and outputs documents. 1.3.2 ...
...Web Support Web Uapl animation Scanner Printer PCL OptionPCLFont Data Erase Std GWFCU3-23 (WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Ctlr 02.00.00 01.00.00 1.04 1.02 1.01 1.00 01.04 1.01 1.07 1.02 1.01x 03.00.00 1.02:02 1.03 1.03 1.03 Hardware 01020700 03 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network..., Office, Fax Page 8 of 91 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is an MFP, which is an IT device that inputs, stores, and outputs documents. 1.3.2 ...
Security Target
Page 11
... TOE user with Windows authentication (Kerberos authentication method). FTP Server A server used when External Authentication is connected to prevent the office environment from the client computer. Various settings for the TOE to other external interface for @Remote. Telephone line A public line for the MFP using a Web browser installed on the client computer. Storage and faxing of documents using the printer driver installed on the client computer, - A transfer path...
... TOE user with Windows authentication (Kerberos authentication method). FTP Server A server used when External Authentication is connected to prevent the office environment from the client computer. Various settings for the TOE to other external interface for @Remote. Telephone line A public line for the MFP using a Web browser installed on the client computer. Storage and faxing of documents using the printer driver installed on the client computer, - A transfer path...
Security Target
Page 14
... connection to display instructions from the MFP Control Software. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is the identifier for the FCU Control Software. HDD The HDD is a hard disk drive that constitute the TOE, is an output device to the Controller Board. 2. Copyright (c) 2012 RICOH COMPANY, LTD. The Operation Panel Control Software is installed on the Operation Panel Control Board. FCU Control Software is installed on the FCU. It stores documents, login user names and login passwords...
... connection to display instructions from the MFP Control Software. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is the identifier for the FCU Control Software. HDD The HDD is a hard disk drive that constitute the TOE, is an output device to the Controller Board. 2. Copyright (c) 2012 RICOH COMPANY, LTD. The Operation Panel Control Software is installed on the Operation Panel Control Board. FCU Control Software is installed on the FCU. It stores documents, login user names and login passwords...
Security Target
Page 15
... installs the TOE. Selection of the guidance document sets depends on the SD Card Slot during the TOE operation so that implements data encryption and decryption functions. Note for Product - Quick Reference Printer Guide M026-7429 - USB Port The USB Port is used by users to the TOE for printing directly from the slot. The SD Card Slot for customer engineer is an external interface to connect...
... installs the TOE. Selection of the guidance document sets depends on the SD Card Slot during the TOE operation so that implements data encryption and decryption functions. Note for Product - Quick Reference Printer Guide M026-7429 - USB Port The USB Port is used by users to the TOE for printing directly from the slot. The SD Card Slot for customer engineer is an external interface to connect...
Security Target
Page 18
... section defines the users related to in a Network Environment Compliant with IEEE Std. 2600.1TM-2009 M026-7442 - Page 17 of these direct users. Quick Reference Copy Guide M026-7413 - Quick Reference Printer Guide M026-7429 - MP C300/C300SR/C400/C400SR MP C300/C300SR/C400/C400SR Aficio MP C300/C300SR/C400/C400SR Operating Instructions Troubleshooting M026-7417 - About the Software on Electrical...
... section defines the users related to in a Network Environment Compliant with IEEE Std. 2600.1TM-2009 M026-7442 - Page 17 of these direct users. Quick Reference Copy Guide M026-7413 - Quick Reference Printer Guide M026-7429 - MP C300/C300SR/C400/C400SR MP C300/C300SR/C400/C400SR Aficio MP C300/C300SR/C400/C400SR Operating Instructions Troubleshooting M026-7417 - About the Software on Electrical...
Security Target
Page 19
... interface. Indirect User Responsible manager of the audit log. This privilege allows configuration of device settings and view of MFP Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. An administrator performs management operations, which include issuing login names to manage normal users. An IT device connected to specify MFP device behaviour (network behaviours excluded). This privilege allows configuration of network settings. This privilege allows configuration of normal user settings. A user...
... interface. Indirect User Responsible manager of the audit log. This privilege allows configuration of device settings and view of MFP Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. An administrator performs management operations, which include issuing login names to manage normal users. An IT device connected to specify MFP device behaviour (network behaviours excluded). This privilege allows configuration of network settings. This privilege allows configuration of normal user settings. A user...
Security Target
Page 21
... Panel. - Scanner documents can be printed. Printing methods for locked print, is not subject to the operations by using the Operation Panel. The printing methods include direct print, Document Server storage, locked print, stored print, hold print, and sample print, the received documents will be stored in the TOE and with which secure communication can be sent to scan paper documents by users from the printer driver installed...
... Panel. - Scanner documents can be printed. Printing methods for locked print, is not subject to the operations by using the Operation Panel. The printing methods include direct print, Document Server storage, locked print, stored print, hold print, and sample print, the received documents will be stored in the TOE and with which secure communication can be sent to scan paper documents by users from the printer driver installed...
Security Target
Page 22
... scanned and stored using the Operation Panel. The MFP administrator must pre-register the destination server that provides secure communication with the G3 standard, which uses a telephone line, is to send paper documents and documents received from a Web browser. All rights reserved. Page 21 of 91 Fax Function The Fax Function is the target of Fax Data A function to send...
... scanned and stored using the Operation Panel. The MFP administrator must pre-register the destination server that provides secure communication with the G3 standard, which uses a telephone line, is to send paper documents and documents received from a Web browser. All rights reserved. Page 21 of 91 Fax Function The Fax Function is the target of Fax Data A function to send...
Security Target
Page 23
Also, users can print and delete Document Server documents, fax, print, download, and delete fax documents. The customer engineer will be used . The scope of evaluation covers the operation with RC Gate via networks for the TOE to communicate with a restriction of access to remotely control the TOE from the Operation Panel. From a Web browser, users can print and delete fax documents. In this function from...
Also, users can print and delete Document Server documents, fax, print, download, and delete fax documents. The customer engineer will be used . The scope of evaluation covers the operation with RC Gate via networks for the TOE to communicate with a restriction of access to remotely control the TOE from the Operation Panel. From a Web browser, users can print and delete fax documents. In this function from...
Security Target
Page 24
... be enabled and login password quality can be verified as a normal user, MFP administrator, or supervisor. This function includes protection functions for the authentication feedback area, where dummy characters are displayed if a login password is to authorise the operations for documents and user jobs by the authorised TOE users who are authenticated by Identification and Authentication Function. Document Access Control Function The Document Access Control...
... be enabled and login password quality can be verified as a normal user, MFP administrator, or supervisor. This function includes protection functions for the authentication feedback area, where dummy characters are displayed if a login password is to authorise the operations for documents and user jobs by the authorised TOE users who are authenticated by Identification and Authentication Function. Document Access Control Function The Document Access Control...
Security Target
Page 26
... Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, Stored Reception File User, document user list, available function list, and user authentication procedures. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0...
... Release Timer, lockout time, date settings (year/month/day), time settings, Minimum Character No., Password Complexity Setting, S/MIME user information, destination folder, Stored Reception File User, document user list, available function list, and user authentication procedures. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0...
Security Target
Page 27
... . A user job may be changed by locked print, hold print, and sample print using the login user names and the login passwords registered on the external authentication server connected to be a combination of three or more types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the client computer, or documents stored in the TOE by users). This auto logout time is...
... . A user job may be changed by locked print, hold print, and sample print using the login user names and the login passwords registered on the external authentication server connected to be a combination of three or more types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the client computer, or documents stored in the TOE by users). This auto logout time is...
Security Target
Page 28
.... Page 27 of 91 Terms +SCN +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Definitions One of the normal users whose access to documents is authorised, and it can be used with Document Server printing or stored print from the telephone line.
.... Page 27 of 91 Terms +SCN +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Definitions One of the normal users whose access to documents is authorised, and it can be used with Document Server printing or stored print from the telephone line.
Security Target
Page 29
... using the fax driver on the Operation Panel if paper jams frequently occur, or if the door or cover of the TOE is left open for user access. One of @Remote is located. Destination information for the TOE. The destination folder is registered and managed by e-mail from the TOE. The facility where the centre server of Fax Functions. The TOE displays the Repair...
... using the fax driver on the Operation Panel if paper jams frequently occur, or if the door or cover of the TOE is left open for user access. One of @Remote is located. Destination information for the TOE. The destination folder is registered and managed by e-mail from the TOE. The facility where the centre server of Fax Functions. The TOE displays the Repair...
Security Target
Page 31
... is the type of 91 2.4 Conformance Claim Rationale 2.4.1 Consistency Claim with communications between the TOE and RC Gate. The MFP has the devices the HCDs have the interface to connect telephone line. Therefore, ...print device, and have , and equips the functions that its description deviates from the RC Gate. The HCDs combine these communications do not affect any security problems and security objectives defined in the PP and security objectives of the TOE. Also, the description is also available when installing the non-volatile memory medium, such as hard disk drive...
... is the type of 91 2.4 Conformance Claim Rationale 2.4.1 Consistency Claim with communications between the TOE and RC Gate. The MFP has the devices the HCDs have the interface to connect telephone line. Therefore, ...print device, and have , and equips the functions that its description deviates from the RC Gate. The HCDs combine these communications do not affect any security problems and security objectives defined in the PP and security objectives of the TOE. Also, the description is also available when installing the non-volatile memory medium, such as hard disk drive...
Security Target
Page 68
... O.INTERFACE.MANAGED O.SOFTWARE.VERIFIED O.AUDIT.LOGGED O.STORAGE.ENCRYPTED O.RCGATE.COMM.PROTECT FAU_GEN.1 FAU_GEN.2 FAU_STG.1 FAU_STG.4 FAU_SAR.1 FAU_SAR.2 FCS_CKM.1 FCS_COP.1 FDP_ACC.1(a) FDP_ACC.1(b) FDP_ACF.1(a) FDP_ACF.1(b) X X X X X X X X X X X X X X X X Copyright (c) 2012 RICOH COMPANY, LTD. Table 31 : Relationship between the TOE security functional requirements and TOE security objectives. sample Vulnerability analysis Page 67 of 91 6.3 Security Requirements Rationale This section describes...
... O.INTERFACE.MANAGED O.SOFTWARE.VERIFIED O.AUDIT.LOGGED O.STORAGE.ENCRYPTED O.RCGATE.COMM.PROTECT FAU_GEN.1 FAU_GEN.2 FAU_STG.1 FAU_STG.4 FAU_SAR.1 FAU_SAR.2 FCS_CKM.1 FCS_COP.1 FDP_ACC.1(a) FDP_ACC.1(b) FDP_ACF.1(a) FDP_ACF.1(b) X X X X X X X X X X X X X X X X Copyright (c) 2012 RICOH COMPANY, LTD. Table 31 : Relationship between the TOE security functional requirements and TOE security objectives. sample Vulnerability analysis Page 67 of 91 6.3 Security Requirements Rationale This section describes...
Security Target
Page 73
... times to access to use the TOE. FIA_UID.1(a) and FIA_UAU.1(a) identify and authenticate the persons who attempts to use the TOE from the client PC over a network, the security policies of the authentication failure handling and verification of secrets need to use the TOE from disclosure. FIA_UAU.7 displays dummy letters as authentication feedback and prevents the login password from the interface...
... times to access to use the TOE. FIA_UID.1(a) and FIA_UAU.1(a) identify and authenticate the persons who attempts to use the TOE from the client PC over a network, the security policies of the authentication failure handling and verification of secrets need to use the TOE from disclosure. FIA_UAU.7 displays dummy letters as authentication feedback and prevents the login password from the interface...
Security Target
Page 81
... identifies and authenticates a user by checking the login user name and login password entered by the user. When the entered login user name is complete. However, regarding the viewing of user job lists, Web Image Monitor Help from a Web browser, system status, counter and information of inquiries, execution of fax reception, and repair request notifications, the TOE identification and authentication is used from the Operation Panel or a Web browser, the screen...
... identifies and authenticates a user by checking the login user name and login password entered by the user. When the entered login user name is complete. However, regarding the viewing of user job lists, Web Image Monitor Help from a Web browser, system status, counter and information of inquiries, execution of fax reception, and repair request notifications, the TOE identification and authentication is used from the Operation Panel or a Web browser, the screen...
Security Target
Page 82
... the fixed auto logout time (30 minutes by default) elapses after the final operation from a Web browser by a person who logs on to the TOE from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of dummy characters whose length is the same as that user name is allowed as a result of checking...
... the fixed auto logout time (30 minutes by default) elapses after the final operation from a Web browser by a person who logs on to the TOE from the Operation Panel or a Web browser, the TOE does not display the entered login password but it displays a sequence of dummy characters whose length is the same as that user name is allowed as a result of checking...
Security Target
Page 84
... user job owner to folders, and deleted. Table 36 : Stored Documents Access Control Rules for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of all the stored documents. When the MFP administrator logs in from the Operation Panel or a Web browser, the TOE displays a list of all documents. While no interface to change job owners is provided, an interface...
... user job owner to folders, and deleted. Table 36 : Stored Documents Access Control Rules for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of all the stored documents. When the MFP administrator logs in from the Operation Panel or a Web browser, the TOE displays a list of all documents. While no interface to change job owners is provided, an interface...