Design Guide
Page 2
... 12 1-3 Data Security ...14 1-3-1 External I/F ...14 1-3-2 Protection of Program Data from Illegal Access via an External Device 14 1-4 Protection of MFP/LP Firmware 17 1-4-1 Firmware Installation/Update 17 1-4-2 Verification of Firmware/Program Validity 20 1-5 Authentication, Access Control 21 1-5-1 Authentication ...21 1-5-2 IC Card Authentication 24 1-5-3 Access Control...25 1-6 Administrator Settings 26 1-7 Data Protection ...27...
... 12 1-3 Data Security ...14 1-3-1 External I/F ...14 1-3-2 Protection of Program Data from Illegal Access via an External Device 14 1-4 Protection of MFP/LP Firmware 17 1-4-1 Firmware Installation/Update 17 1-4-2 Verification of Firmware/Program Validity 20 1-5 Authentication, Access Control 21 1-5-1 Authentication ...21 1-5-2 IC Card Authentication 24 1-5-3 Access Control...25 1-6 Administrator Settings 26 1-7 Data Protection ...27...
Design Guide
Page 7
... Configuration 1-1 Hardware Configuration 1-1-1 MFP Controller Processing and Control Unit ・CPU ・RAM RAM - Image data - Settings - Counters System Control SAF Line I /F Page 7 of 86 Firmware Encryption Processor HDD - Line External Charge Device I/F USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IEEE 1394 External Charge Device...
... Configuration 1-1 Hardware Configuration 1-1-1 MFP Controller Processing and Control Unit ・CPU ・RAM RAM - Image data - Settings - Counters System Control SAF Line I /F Page 7 of 86 Firmware Encryption Processor HDD - Line External Charge Device I/F USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IEEE 1394 External Charge Device...
Design Guide
Page 8
Page 8 of the software installed on the hardware platform, which includes checking for firmware storage media. • RAM, HDD: Image data stored in the RAM and HDD memory undergoes compression, decompression and other image processing. • HDD storage: Data ... file format of image files. • RC Gate: Intermediary device connected to the MFP/LP via an Ethernet connection for performing remote diagnostic operations including firmware updates and settings changes. • SD card I/F: Used for performing service maintenance and as an interface for any illegal alterations.
Page 8 of the software installed on the hardware platform, which includes checking for firmware storage media. • RAM, HDD: Image data stored in the RAM and HDD memory undergoes compression, decompression and other image processing. • HDD storage: Data ... file format of image files. • RC Gate: Intermediary device connected to the MFP/LP via an Ethernet connection for performing remote diagnostic operations including firmware updates and settings changes. • SD card I/F: Used for performing service maintenance and as an interface for any illegal alterations.
Design Guide
Page 9
Counters Controller Processing and Control Unit ・CPU ・RAM System Control USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IC Card Reader Pict Bridge Compatible Device RC Gate Internet SD Card I/F Page 9 of 86 Print Controller Design Guide for Information Security 1-1-2 LP RAM - data Flash ROM Operation Panel Engine Image Processing Printing TPM NVRAM - Mgmt. Firmware Encryption Processor HDD - Page memory - Settings - Image data -
Counters Controller Processing and Control Unit ・CPU ・RAM System Control USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IC Card Reader Pict Bridge Compatible Device RC Gate Internet SD Card I/F Page 9 of 86 Print Controller Design Guide for Information Security 1-1-2 LP RAM - data Flash ROM Operation Panel Engine Image Processing Printing TPM NVRAM - Mgmt. Firmware Encryption Processor HDD - Page memory - Settings - Image data -
Design Guide
Page 10
... Gate: Intermediary device connected to the LP via an Ethernet connection for performing remote diagnostic operations including firmware updates and settings changes. • SD card I/F: Used for performing service maintenance and as an interface for firmware storage media. • RAM, HDD: Image data stored in the RAM and HDD memory undergoes compression...
... Gate: Intermediary device connected to the LP via an Ethernet connection for performing remote diagnostic operations including firmware updates and settings changes. • SD card I/F: Used for performing service maintenance and as an interface for firmware storage media. • RAM, HDD: Image data stored in the RAM and HDD memory undergoes compression...
Design Guide
Page 12
...screen as well as a FAX via the connection protocols between SP settings and machine operations. Controls remote correspondence with RC Gate (e.g. Address Book, Document Server, MFP/LP functions). Also contains a printer language processing subsystem (e.g. Controls the encryption and decryption functions. 1-2-2...related processing (e.g. Secondary data, such as that converts the printer language into image data, which reads the original and then sends the data to servers and folders. diagnostics, firmware update, settings changes). Secondary data is handled from the printing...
...screen as well as a FAX via the connection protocols between SP settings and machine operations. Controls remote correspondence with RC Gate (e.g. Address Book, Document Server, MFP/LP functions). Also contains a printer language processing subsystem (e.g. Controls the encryption and decryption functions. 1-2-2...related processing (e.g. Secondary data, such as that converts the printer language into image data, which reads the original and then sends the data to servers and folders. diagnostics, firmware update, settings changes). Secondary data is handled from the printing...
Design Guide
Page 17
...SD cards themselves are generic items that are sent SD 64 MB SD card Progra m Digital signature Ricoh License Server 1. Files are widely available for Information Security 1-4 Protection of all firmware introduced into the MFP/LP via this value, which the MFP/LP then uses to generate MD2... introduced in the field. 1. System, Printer, FAX, LCD). It then verifies that the model name is the same as the firmware's digital signature. 2. The following process is overwritten with new files Firmware Update Using an SD Card Page 17 of firmware into the MFP/LP via the SD ...
...SD cards themselves are generic items that are sent SD 64 MB SD card Progra m Digital signature Ricoh License Server 1. Files are widely available for Information Security 1-4 Protection of all firmware introduced into the MFP/LP via this value, which the MFP/LP then uses to generate MD2... introduced in the field. 1. System, Printer, FAX, LCD). It then verifies that the model name is the same as the firmware's digital signature. 2. The following process is overwritten with new files Firmware Update Using an SD Card Page 17 of firmware into the MFP/LP via the SD ...
Design Guide
Page 18
...firmware update is performed, the process for the SD card-based update described above, with the following differences: Remote headers are attached to the digital signature before reaching their destination, it is possible to retry the update by an individual with new files If MD1 = MD2 Digital signature Ricoh..., it is necessary to confirm that for which is virtually the same as well. Verification of model and target machine functions (Copier, Printer, etc.) 3. In each scenario, all of 86 The process for remote updates as that a remote update is performed using SHA-1 ...
...firmware update is performed, the process for the SD card-based update described above, with the following differences: Remote headers are attached to the digital signature before reaching their destination, it is possible to retry the update by an individual with new files If MD1 = MD2 Digital signature Ricoh..., it is necessary to confirm that for which is virtually the same as well. Verification of model and target machine functions (Copier, Printer, etc.) 3. In each scenario, all of 86 The process for remote updates as that a remote update is performed using SHA-1 ...
Design Guide
Page 19
... Installation via RC-Gate Download RC-Gate Installation directly from @Remote Center @Remote Center Digital signature Program + digital signature Ricoh Licenese Server Remote Firmware Installation using @Remote Remote installation Download Ridoc IO OperationServer Ricoh distribution server Update performed using Web Smart Device Monitor V2 (device management utility) Update commands issued Digital signature Program...
... Installation via RC-Gate Download RC-Gate Installation directly from @Remote Center @Remote Center Digital signature Program + digital signature Ricoh Licenese Server Remote Firmware Installation using @Remote Remote installation Download Ridoc IO OperationServer Ricoh distribution server Update performed using Web Smart Device Monitor V2 (device management utility) Update commands issued Digital signature Program...
Design Guide
Page 20
... to judge its validity. The public key used for this method is capable of detecting any way, providing additional protection of the programs/firmware. Using the TPM, this verification is stored in an overwrite-protected, non-volatile region of the TPM, which include the MFP/LP operating... as those that only valid programs are newly installed as updates through the process explained in section 1.4.1 is used to validate the application firmware Trusted Boot is booted up. Page 20 of software from boot programs to end-point functions and applications, the Trusted Boot validation process ...
... to judge its validity. The public key used for this method is capable of detecting any way, providing additional protection of the programs/firmware. Using the TPM, this verification is stored in an overwrite-protected, non-volatile region of the TPM, which include the MFP/LP operating... as those that only valid programs are newly installed as updates through the process explained in section 1.4.1 is used to validate the application firmware Trusted Boot is booted up. Page 20 of software from boot programs to end-point functions and applications, the Trusted Boot validation process ...
Design Guide
Page 37
... Not logged Authentication lock-out (actual Not logged lock-out occurs or settings are changed) Firmware update performed Not logged Change in firmware configuration Not logged detected Firmware configuration Not logged Encryption key operation performed Not logged Invalid firmware detected Not logged Change made to Time/Date settings Not logged Authentication password changed Not...
... Not logged Authentication lock-out (actual Not logged lock-out occurs or settings are changed) Firmware update performed Not logged Change in firmware configuration Not logged detected Firmware configuration Not logged Encryption key operation performed Not logged Invalid firmware detected Not logged Change made to Time/Date settings Not logged Authentication password changed Not...
Design Guide
Page 53
... Information Security • The language processing system is only capable of the MFP/LP's internal modules. Therefore, even in the case that illegal fonts or firmware were downloaded to the MFP/LP on-board memory, such data could not be accessed. The main use of the file cannot be executed as...
... Information Security • The language processing system is only capable of the MFP/LP's internal modules. Therefore, even in the case that illegal fonts or firmware were downloaded to the MFP/LP on-board memory, such data could not be accessed. The main use of the file cannot be executed as...