Security Target
Page 8
... MP 2352, Gestetner MP 2852, Gestetner MP 3352, infotec MP 2352, infotec MP 2852, infotec MP 3352 "Fax Option Type 3352" must be installed on the MFP. Although the MFP product names vary depending on the MFP if the versions of Scanner and Printer are identical. Table 1 : Identification Information of this ST. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH...
... MP 2352, Gestetner MP 2852, Gestetner MP 3352, infotec MP 2352, infotec MP 2852, infotec MP 3352 "Fax Option Type 3352" must be installed on the MFP. Although the MFP product names vary depending on the MFP if the versions of Scanner and Printer are identical. Table 1 : Identification Information of this ST. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01.00.00 Copyright (c) 2011 RICOH...
Security Target
Page 9
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Security Target
Page 14
... an output device to the key switches, LED indicators, and LCD touch screen. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is an input device to read paper documents, Printer Engine that has a modem function for communication. It stores documents, login user names and login passwords of 91 and digital signature. Copyright (c) 2011 RICOH COMPANY, LTD. The Operation Panel Control Software performs the following software components are included in the Engine Control Board. The Engine Control Software sends status information...
... an output device to the key switches, LED indicators, and LCD touch screen. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is an input device to read paper documents, Printer Engine that has a modem function for communication. It stores documents, login user names and login passwords of 91 and digital signature. Copyright (c) 2011 RICOH COMPANY, LTD. The Operation Panel Control Software performs the following software components are included in the Engine Control Board. The Engine Control Software sends status information...
Security Target
Page 15
... SD Card Slot during the TOE operation. Quick Reference Copy Guide D120-7517 - Page 14 of 91 Ic Hdd The Ic Hdd is set in advance. Details of the guidance document sets depends on the SD Card. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - All rights reserved. SD Card, the component that constitutes the Printer/Scanner Unit, is...
... SD Card Slot during the TOE operation. Quick Reference Copy Guide D120-7517 - Page 14 of 91 Ic Hdd The Ic Hdd is set in advance. Details of the guidance document sets depends on the SD Card. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - All rights reserved. SD Card, the component that constitutes the Printer/Scanner Unit, is...
Security Target
Page 18
... users related to networks. An administrator performs management operations, which include issuing login names to perform user management, machine management, network Copyright (c) 2011 RICOH COMPANY, LTD. The administrator means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - Manuals for Administrators: Using this Machine in this ST indicates a direct user. Quick Reference Fax Guide D596-7108 1.4.3 Definition of normal users, administrators, and RC Gate. An IT device connected...
... users related to networks. An administrator performs management operations, which include issuing login names to perform user management, machine management, network Copyright (c) 2011 RICOH COMPANY, LTD. The administrator means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - Manuals for Administrators: Using this Machine in this ST indicates a direct user. Quick Reference Fax Guide D596-7108 1.4.3 Definition of normal users, administrators, and RC Gate. An IT device connected...
Security Target
Page 21
... called scanner documents. The printing methods include direct print, Document Server storage, locked print, stored print, hold print, or sample print is specified, the TOE deletes printer documents when printing is to the guidance document, users first install the specified printer driver on their own client computers, and then use this evaluation. - Receiving documents from the Operation Panel or a Web browser. - The TOE receives documents from the printer driver installed on the client computer. Page 20 of 91 Printer Function The Printer Function of printer documents by...
... called scanner documents. The printing methods include direct print, Document Server storage, locked print, stored print, hold print, or sample print is specified, the TOE deletes printer documents when printing is to the guidance document, users first install the specified printer driver on their own client computers, and then use this evaluation. - Receiving documents from the Operation Panel or a Web browser. - The TOE receives documents from the printer driver installed on the client computer. Page 20 of 91 Printer Function The Printer Function of printer documents by...
Security Target
Page 22
... operating the fax driver installed on their own client computers, and then use this function can be used from the Operation Panel or a Web browser. - Fax documents are sent by fax from the Operation Panel or a Web browser. This function can be scanned and stored using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. Paper documents will be printed, deleted and downloaded from a Web browser. The documents in the TOE by fax using the Operation Panel. Also, this function. Page 21 of Fax Data A function to send fax documents to folders by fax...
... operating the fax driver installed on their own client computers, and then use this function can be used from the Operation Panel or a Web browser. - Fax documents are sent by fax from the Operation Panel or a Web browser. This function can be scanned and stored using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. Paper documents will be printed, deleted and downloaded from a Web browser. The documents in the TOE by fax using the Operation Panel. Also, this function. Page 21 of Fax Data A function to send fax documents to folders by fax...
Security Target
Page 23
... via networks for the MFP if it is to customer engineers only. If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use and security-relevant events (hereafter, "audit events"). Security Functions The Security Functions are allowed to perform maintenance service for @Remote Service. From a Web browser, users can store, print and delete Document Server documents. The customer engineer will be implemented using the Operation Panel and a Web browser...
... via networks for the MFP if it is to customer engineers only. If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use and security-relevant events (hereafter, "audit events"). Security Functions The Security Functions are allowed to perform maintenance service for @Remote Service. From a Web browser, users can store, print and delete Document Server documents. The customer engineer will be implemented using the Operation Panel and a Web browser...
Security Target
Page 24
... Operation Panel or a Web browser, a user will be enabled using a Web browser to prevent information leakage through encrypted communication. Document Access Control Function The Document Access Control Function is to specify the URL for each user. Network Protection Function The Network Protection Function is to verify persons before they use the Printer or Fax Function from the printer or fax driver, a user will be verified by the authorised TOE users who are allowed to enter his or her login user name and login password received...
... Operation Panel or a Web browser, a user will be enabled using a Web browser to prevent information leakage through encrypted communication. Document Access Control Function The Document Access Control Function is to specify the URL for each user. Network Protection Function The Network Protection Function is to verify persons before they use the Printer or Fax Function from the printer or fax driver, a user will be verified by the authorised TOE users who are allowed to enter his or her login user name and login password received...
Security Target
Page 26
... SD Card. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. No security threat will occur even this data is exposed to restrictions. 1.5 Glossary 1.5.1 Glossary for This ST For clear understanding of this ST, "confidential data", listed below , is referred to these data types. Login password, audit...
... SD Card. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. No security threat will occur even this data is exposed to restrictions. 1.5 Glossary 1.5.1 Glossary for This ST For clear understanding of this ST, "confidential data", listed below , is referred to these data types. Login password, audit...
Security Target
Page 27
... types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. The TOE authenticates TOE users by e-mail or sent to IT devices by using the login user names and the login passwords registered on the TOE. One of TOE users who are authorised to as registrable passwords. Page 26 of registrable password digits. Auto logout time for identification and authentication of the procedures for the Operation Panel: Time specified by users...
... types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. The TOE authenticates TOE users by e-mail or sent to IT devices by using the login user names and the login passwords registered on the TOE. One of TOE users who are authorised to as registrable passwords. Page 26 of registrable password digits. Auto logout time for identification and authentication of the procedures for the Operation Panel: Time specified by users...
Security Target
Page 28
... A list of MFP administrators whose access to the document data is selected as the printing method for Printer Function. Page 27 of 91 Terms +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Users for stored and received documents Definitions One of the document data attributes. One of the document data attributes. This list does not include the login user names of the functions (Copy...
... A list of MFP administrators whose access to the document data is selected as the printing method for Printer Function. Page 27 of 91 Terms +CPY +FAXOUT +FAXIN +DSR Document user list Stored documents Stored document type Document Server documents Printer documents Scanner documents Fax documents Received fax documents MFP application Available function list Operation Panel Users for stored and received documents Definitions One of the document data attributes. One of the document data attributes. This list does not include the login user names of the functions (Copy...
Security Target
Page 70
... and implement the access control to the document data. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on the document user list of the document data. All rights reserved. The MFP administrator, supervisor and RC Gate are not allowed to the TOE security objectives. Deleted documents, temporary documents and their fragments. Page 69 of 91 O.DOC...
... and implement the access control to the document data. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on the document user list of the document data. All rights reserved. The MFP administrator, supervisor and RC Gate are not allowed to the TOE security objectives. Deleted documents, temporary documents and their fragments. Page 69 of 91 O.DOC...
Security Target
Page 71
... operation on the document user list, and a specified user is required to implement the following countermeasures. (1) Specify and implement the access control to the document. Copyright (c) 2011 RICOH COMPANY, LTD. Page 70 of the document data, and the MFP administrator. Deleted documents, temporary documents and their fragments. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on this TOE's user jobs. (2) Use...
... operation on the document user list, and a specified user is required to implement the following countermeasures. (1) Specify and implement the access control to the document. Copyright (c) 2011 RICOH COMPANY, LTD. Page 70 of the document data, and the MFP administrator. Deleted documents, temporary documents and their fragments. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on this TOE's user jobs. (2) Use...
Security Target
Page 80
... (IN/OUT) Communicating IP address Communicating e-mail address for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate...
... (IN/OUT) Communicating IP address Communicating e-mail address for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user information Success and failure of creation, modification, and deletion of destination folders Communication with RC Gate...
Security Target
Page 84
... to change job owners is provided, an interface to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is cancelled, any document the cancelled job operates will be displayed according to folders, deletion, and deletion of all files). Page 83 of 91 The TOE provides users with the interface for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of Stored Documents displayed in...
... to change job owners is provided, an interface to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is cancelled, any document the cancelled job operates will be displayed according to folders, deletion, and deletion of all files). Page 83 of 91 The TOE provides users with the interface for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of Stored Documents displayed in...
Security Target
Page 85
...Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (E-mail transmission and folder transmission are authorised for normal users who are privileged to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in accordance with the roles of the identified and authenticated TOE users and user privileges set for normal users who logs in from the Operation Panel is a user job owner or MFP administrator and a cancellation of a user job...
...Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (E-mail transmission and folder transmission are authorised for normal users who are privileged to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in accordance with the roles of the identified and authenticated TOE users and user privileges set for normal users who logs in from the Operation Panel is a user job owner or MFP administrator and a cancellation of a user job...
Security Target
Page 86
All rights reserved. If the role is that of the residual data included in the available function list set for an authorised TOE user who attempts to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. Table 39 : Encrypted Communications Provided by the TOE Communicating Encrypted communications provided by the TOE Devices Protocols Cryptographic Algorithms Client computer TLS1.0 AES(128bits, 256bits), 3DES(168bits) External Kerberos...
All rights reserved. If the role is that of the residual data included in the available function list set for an authorised TOE user who attempts to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. Table 39 : Encrypted Communications Provided by the TOE Communicating Encrypted communications provided by the TOE Devices Protocols Cryptographic Algorithms Client computer TLS1.0 AES(128bits, 256bits), 3DES(168bits) External Kerberos...
Security Target
Page 88
... (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH...
... (*1) Login user name of supervisor Login user name of MFP administrator Document data attributes Document user list Stored document types are Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH...
Security Target
Page 91
... identify Printer Function. Default values of a document user list assigned to identify Copy Function. All rights reserved. For Printer Function, values to identify Fax Function. Login user name of a normal user who newly creates a user job. Copyright (c) 2011 RICOH COMPANY, LTD. For Scanner Function, values to identify Document Server Function. For Document Server Function, values to identify Scanner Function. Page 90 of 91 Table 43 : List of Static Initialisation for each user. Documents printed using Document Server printing or stored print from a telephone line...
... identify Printer Function. Default values of a document user list assigned to identify Copy Function. All rights reserved. For Printer Function, values to identify Fax Function. Login user name of a normal user who newly creates a user job. Copyright (c) 2011 RICOH COMPANY, LTD. For Scanner Function, values to identify Document Server Function. For Document Server Function, values to identify Scanner Function. Page 90 of 91 Table 43 : List of Static Initialisation for each user. Documents printed using Document Server printing or stored print from a telephone line...