Security Target
Page 8
Title : Aficio MP 2352/2852/3352 series Security Target Version : 1.00 Date : 2011-12-19 Author : RICOH COMPANY, LTD. 1.2 TOE Reference The TOE is shown below . "Printer/Scanner Unit Type 3352", or "Printer Unit Type 3352" and "Scanner Enhance Option Type 3352" must be installed on sales areas and/or sales companies, their components are the identification information of Scanner and Printer are not displayed. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01...
Title : Aficio MP 2352/2852/3352 series Security Target Version : 1.00 Date : 2011-12-19 Author : RICOH COMPANY, LTD. 1.2 TOE Reference The TOE is shown below . "Printer/Scanner Unit Type 3352", or "Printer Unit Type 3352" and "Scanner Enhance Option Type 3352" must be installed on sales areas and/or sales companies, their components are the identification information of Scanner and Printer are not displayed. Software System/Copy 1.04 Network Support 10.65 Fax 01.01.00 RemoteFax 01...
Security Target
Page 9
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL PCL Font Data Erase Onb GWFCU3.5-1(WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Hdd 1.00 1.01 1.00 1.00 01.01 1.02 1.00 1.12 1.03m 01.00.01 1.01:08 1.01 1.01 1.01 Hardware 01020714 01 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax Page 8 of 91 1.3 TOE...
Security Target
Page 14
... memory medium. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is installed on the LCD touch screen according to display instructions from the MFP Control Software. It stores documents, login user names and login passwords of the components that constitute the TOE, is the identifier for the Operation Panel Control Software. Transfers operation instructions from other fax devices using the G3 standard for connection to read paper documents, Printer...
... memory medium. The Engine Control Software sends status information about the Controller Board and the FCU and fax data. Fax Controller Unit (FCU) The Fax Controller Unit is a unit that is installed on the LCD touch screen according to display instructions from the MFP Control Software. It stores documents, login user names and login passwords of the components that constitute the TOE, is the identifier for the Operation Panel Control Software. Transfers operation instructions from other fax devices using the G3 standard for connection to read paper documents, Printer...
Security Target
Page 15
.... USB Port The USB Port is provided with individual TOE component. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - Scanner, Printer, PCL, and PCL Font are as follows. [English version-1] Table 2 : Guidance for English Version-1 TOE Components MFP Guidance Documents for printing directly from the SD Card Slot during installation. 1.4.2 Guidance Documents...
.... USB Port The USB Port is provided with individual TOE component. MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions About This Machine D120-7523 - MP 2352/MP 2852/MP 3352 MP 2352/MP 2852/MP 3352 Aficio MP 2352/MP 2852/MP 3352 Operating Instructions Troubleshooting D120-7533 - Scanner, Printer, PCL, and PCL Font are as follows. [English version-1] Table 2 : Guidance for English Version-1 TOE Components MFP Guidance Documents for printing directly from the SD Card Slot during installation. 1.4.2 Guidance Documents...
Security Target
Page 18
... means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - According to use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. Manuals for Administrators: Using this ST indicates a direct user. Help 83NHCCENZ1.00 v122 FCU - The following table (Table 5) shows the definitions of 91 - Up to four MFP administrators can use the TOE. Direct User The "user" referred to normal users. Quick Reference Fax Guide D596-7108...
... means the user registered for Administrators MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP Aficio MP 2352SP/MP 2852/MP 2852SP/MP 3352/MP 3352SP D595-7801 - According to use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. Manuals for Administrators: Using this ST indicates a direct user. Help 83NHCCENZ1.00 v122 FCU - The following table (Table 5) shows the definitions of 91 - Up to four MFP administrators can use the TOE. Direct User The "user" referred to normal users. Quick Reference Fax Guide D596-7108...
Security Target
Page 21
... to scan paper documents by users from the Operation Panel. - Folder transmission can be stored in the TOE and with which is used for documents is to the operations by using the Operation Panel. All rights reserved. Receiving documents from the printer driver installed on their own client computers, and then use this evaluation. - If locked print, hold print, and sample print. Scanner documents can be applied only to the destination folders in a server that the MFP administrator...
... to scan paper documents by users from the Operation Panel. - Folder transmission can be stored in the TOE and with which is used for documents is to the operations by using the Operation Panel. All rights reserved. Receiving documents from the printer driver installed on their own client computers, and then use this evaluation. - If locked print, hold print, and sample print. Scanner documents can be applied only to the destination folders in a server that the MFP administrator...
Security Target
Page 22
... Function). Operation Function for Received Fax Documents A function to operate the received fax documents from the fax driver installed on the client computer. - Folder Transmission Function of 91 Fax Function The Fax Function is to send paper documents and documents received from the Operation Panel or a Web browser. The MFP administrator must pre-register the destination server that the MFP administrator pre-registers, and send data to the guidance document, users first install the specified fax driver on the client computer. Documents can be printed, deleted and downloaded...
... Function). Operation Function for Received Fax Documents A function to operate the received fax documents from the fax driver installed on the client computer. - Folder Transmission Function of 91 Fax Function The Fax Function is to send paper documents and documents received from the Operation Panel or a Web browser. The MFP administrator must pre-register the destination server that the MFP administrator pre-registers, and send data to the guidance document, users first install the specified fax driver on the client computer. Documents can be printed, deleted and downloaded...
Security Target
Page 23
... delete Document Server documents. The customer engineer will be implemented using the Operation Panel and a Web browser. To view and delete the audit log, the Web Function will implement this ST, the Service Mode Lock Function is set to "ON" for the TOE user to remotely control the TOE from the Operation Panel. Page 22 of 91 Document Server Function The Document Server Function is to operate documents stored in a legible fashion for @Remote Service. From the Operation Panel, users can print and delete Document Server documents, fax, print, download...
... delete Document Server documents. The customer engineer will be implemented using the Operation Panel and a Web browser. To view and delete the audit log, the Web Function will implement this ST, the Service Mode Lock Function is set to "ON" for the TOE user to remotely control the TOE from the Operation Panel. Page 22 of 91 Document Server Function The Document Server Function is to operate documents stored in a legible fashion for @Remote Service. From the Operation Panel, users can print and delete Document Server documents, fax, print, download...
Security Target
Page 24
... the operations for each user. Document Access Control Function The Document Access Control Function is to enter his or her login user name and login password received from the RC Gate communication interface, it will be enabled using the printer driver to verify persons before they use the @Remote Service Function from the printer or fax drivers, so that the lockout function can be enabled and login password quality can be verified as a normal user. It allows user's operation on the user documents and user jobs based...
... the operations for each user. Document Access Control Function The Document Access Control Function is to enter his or her login user name and login password received from the RC Gate communication interface, it will be enabled using the printer driver to verify persons before they use the @Remote Service Function from the printer or fax drivers, so that the lockout function can be enabled and login password quality can be verified as a normal user. It allows user's operation on the user documents and user jobs based...
Security Target
Page 26
..."confidential data", listed below , is exposed to these data types. Type Protected data Confidential data Table 8 : Definition of user data are classified as "TSF confidential data". Login password, audit log, and HDD cryptographic key. 1.4.5.3. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. Copyright (c) 2011 RICOH...
..."confidential data", listed below , is exposed to these data types. Type Protected data Confidential data Table 8 : Definition of user data are classified as "TSF confidential data". Login password, audit log, and HDD cryptographic key. 1.4.5.3. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, PCL Font, LANG0, LANG1 and Data Erase Onb. Copyright (c) 2011 RICOH...
Security Target
Page 27
...login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Copyright (c) 2011 RICOH COMPANY, LTD. Page 26 of registrable password digits. Password Complexity Setting Basic Authentication External Authentication HDD User job Documents Document data attributes +PRT +SCN Definitions A type of behaviour to use the TOE. A function for identification and authentication of the document data attributes. Auto logout time for identification and authentication of the procedures for the Operation Panel: Time...
...login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the MFP. Copyright (c) 2011 RICOH COMPANY, LTD. Page 26 of registrable password digits. Password Complexity Setting Basic Authentication External Authentication HDD User job Documents Document data attributes +PRT +SCN Definitions A type of behaviour to use the TOE. A function for identification and authentication of the document data attributes. Auto logout time for identification and authentication of the procedures for the Operation Panel: Time...
Security Target
Page 28
... term for Printer Function. Copyright (c) 2011 RICOH COMPANY, LTD. One of the stored document types. Documents stored in the TOE so that normal users are externally received and whose "users cannot be set for administration. A list of the login user names of the normal users whose access to folders by fax and stored. One of the document data attributes. This list is used with Document Server printing or stored print from the telephone line. The Operation Panel is assigned...
... term for Printer Function. Copyright (c) 2011 RICOH COMPANY, LTD. One of the stored document types. Documents stored in the TOE so that normal users are externally received and whose "users cannot be set for administration. A list of the login user names of the normal users whose access to folders by fax and stored. One of the document data attributes. This list is used with Document Server printing or stored print from the telephone line. The Operation Panel is assigned...
Security Target
Page 71
... are the security functional requirements for sending or receiving user jobs. FDP_ACC.1(a) and FDP_ACF.1(a) allow the MFP administrator to delete user jobs, and the normal user with a login user name but without an access permission to delete user jobs. The document data sent and received by FTP_ITC.1. (4) Management of document alteration O.DOC.NO_ALT is required to implement the following countermeasures. (1) Specify and implement the access control to perform each operation. Copyright (c) 2011 RICOH COMPANY, LTD...
... are the security functional requirements for sending or receiving user jobs. FDP_ACC.1(a) and FDP_ACF.1(a) allow the MFP administrator to delete user jobs, and the normal user with a login user name but without an access permission to delete user jobs. The document data sent and received by FTP_ITC.1. (4) Management of document alteration O.DOC.NO_ALT is required to implement the following countermeasures. (1) Specify and implement the access control to perform each operation. Copyright (c) 2011 RICOH COMPANY, LTD...
Security Target
Page 80
... IP address Communicating e-mail address Setting Values of Audit Log Items Values of the TOE system clock at an event occurrence Values of the TOE system clock at an event occurrence Audit event identity User or TOE identity for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax...
... IP address Communicating e-mail address Setting Values of Audit Log Items Values of the TOE system clock at an event occurrence Values of the TOE system clock at an event occurrence Audit event identity User or TOE identity for an audit event caused by auto logout Web Function communication Folder transmission E-mail transmission Printing via networks LAN Fax via networks Storing document data Reading document data (print, download, fax...
Security Target
Page 84
... Folder transmission Print Delete Print Delete Copyright (c) 2011 RICOH COMPANY, LTD. They will be displayed according to edit the document user list are authorised and the menu for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of all the stored documents. The supervisor and RC Gate are MFP administrator and normal users. The MFP administrator can select and delete a document from the Operation Panel or a Web browser, the TOE displays a list of all files...
... Folder transmission Print Delete Print Delete Copyright (c) 2011 RICOH COMPANY, LTD. They will be displayed according to edit the document user list are authorised and the menu for Users Document Server Function Document Server Function Printer Function Scanner Function Operation Panel Operation Panel Fax Function Fax Function Types of all the stored documents. The supervisor and RC Gate are MFP administrator and normal users. The MFP administrator can select and delete a document from the Operation Panel or a Web browser, the TOE displays a list of all files...
Security Target
Page 85
... TOE users to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of the identified and authenticated TOE users and user privileges set for normal users who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are privileged to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who...
... TOE users to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of the identified and authenticated TOE users and user privileges set for normal users who are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users are privileged to use Document Server Function) (2) Access control rule on user jobs The TOE displays on the Operation Panel a menu to cancel a user job only if the user who...
Security Target
Page 86
... reserved. If the role is that of MFP administrator, the user can operate only functions that are included in the deleted documents, temporary documents and their fragments on communicating devices. Table 39 shows the encrypted communications provided by the TOE differ depending on the HDD. If the role is used and to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. If the role is that corresponds to...
... reserved. If the role is that of MFP administrator, the user can operate only functions that are included in the deleted documents, temporary documents and their fragments on communicating devices. Table 39 shows the encrypted communications provided by the TOE differ depending on the HDD. If the role is used and to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. If the role is that corresponds to...
Security Target
Page 88
...Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page 87 of the document user list Available function list Operation Interface Operation Panel, Web browser Operation Panel, Web...
...Document Server document, scanner document, fax document and printer document (with stored print) Document user list Stored document type is fax received document(*2) Default values of 91 FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for External Authentication) MFP administrator, applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. Page 87 of the document user list Available function list Operation Interface Operation Panel, Web browser Operation Panel, Web...
Security Target
Page 91
... each function type is fax received document) User jobs Each MFP application (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) Document user list Document user list Document user list Login user name of normal user Function type Default values +PRT: Documents printed from the client computer with direct print, locked print, hold print, and sample print. +SCN: Documents sent by e-mail or to folders from the MFP. +CPY: Documents copied using the MFP. +FAXOUT: Documents sent by using Document Server printing or stored print from a telephone line...
... each function type is fax received document) User jobs Each MFP application (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) Document user list Document user list Document user list Login user name of normal user Function type Default values +PRT: Documents printed from the client computer with direct print, locked print, hold print, and sample print. +SCN: Documents sent by e-mail or to folders from the MFP. +CPY: Documents copied using the MFP. +FAXOUT: Documents sent by using Document Server printing or stored print from a telephone line...
Quick Start Guide
Page 39
Press [Printer] Press [Print Jobs] Select your job and follow the next steps or press [Start] to output your document. If you will now be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to access print jobs from the desktop that were sent via the "locked Print" feature, you submitted your print job via confidential [locked print] or other option from desktop. Highlight file and select print. Printer must be online to be prompted for your password.
Press [Printer] Press [Print Jobs] Select your job and follow the next steps or press [Start] to output your document. If you will now be able to submit work via desktop Main Display Printer Display Panel Print Jobs List Use the Printer button to access print jobs from the desktop that were sent via the "locked Print" feature, you submitted your print job via confidential [locked print] or other option from desktop. Highlight file and select print. Printer must be online to be prompted for your password.