Security Target
Page 11
...as a client of the TOE if it is applied. SMTP Server A server used by the TOE for the MFP using the fax driver installed on the client computer, - All rights reserved. The possible remote operations from network attacks via the Internet. This server is only ...faxes. External Authentication Server A server that performs as follows: - Operation of RC Gate for the TOE to its folders. Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of 91 Client computer A computer that identifies and authenticates the TOE user with Windows authentication (Kerberos authentication method). The...
...as a client of the TOE if it is applied. SMTP Server A server used by the TOE for the MFP using the fax driver installed on the client computer, - All rights reserved. The possible remote operations from network attacks via the Internet. This server is only ...faxes. External Authentication Server A server that performs as follows: - Operation of RC Gate for the TOE to its folders. Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of 91 Client computer A computer that identifies and authenticates the TOE user with Windows authentication (Kerberos authentication method). The...
Security Target
Page 21
...TOE, so that they can be applied only to scan paper documents by using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. The TOE receives documents from the printer driver. If locked print, hold print, and sample print. All rights reserved. For Document Server storage, the received ...can print or delete printer documents according to folders or by e-mail will be sent to the operations by users from the printer driver installed on the HDD as Document Server documents. Operating from the Operation Panel The TOE can be ensured. Scanner documents can print ...
...TOE, so that they can be applied only to scan paper documents by using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. The TOE receives documents from the printer driver. If locked print, hold print, and sample print. All rights reserved. For Document Server storage, the received ...can print or delete printer documents according to folders or by e-mail will be sent to the operations by users from the printer driver installed on the HDD as Document Server documents. Operating from the Operation Panel The TOE can be ensured. Scanner documents can print ...
Security Target
Page 22
...and fax documents to and stored in the TOE are called received fax documents. - Those documents stored in the TOE by operating the fax driver installed on the client computer. - The documents in the TOE are called fax documents. This function can be printed, deleted and downloaded from...TOE, printed, deleted from the TOE, and downloaded to the telephone numbers that are sent by fax from the fax driver installed on the client computer. Copyright (c) 2011 RICOH COMPANY, LTD. Documents to operate the received fax documents from the Operation Panel or a Web browser. Those documents ...
...and fax documents to and stored in the TOE are called received fax documents. - Those documents stored in the TOE by operating the fax driver installed on the client computer. - The documents in the TOE are called fax documents. This function can be printed, deleted and downloaded from...TOE, printed, deleted from the TOE, and downloaded to the telephone numbers that are sent by fax from the fax driver installed on the client computer. Copyright (c) 2011 RICOH COMPANY, LTD. Documents to operate the received fax documents from the Operation Panel or a Web browser. Those documents ...
Security Target
Page 24
... who are authenticated by the authorised TOE users who are Basic Authentication and external server authentication. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. To use the @Remote Service Function from the Operation Panel or via the network. minimum password length) and obligatory... that fulfil the requirements of the Minimum Character No. (i.e. The persons are displayed if a login password is entered using the printer driver to specify encrypted communication. To use the TOE only when confirmed as a normal user. It allows user's operation on the user documents...
... who are authenticated by the authorised TOE users who are Basic Authentication and external server authentication. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. To use the @Remote Service Function from the Operation Panel or via the network. minimum password length) and obligatory... that fulfil the requirements of the Minimum Character No. (i.e. The persons are displayed if a login password is entered using the printer driver to specify encrypted communication. To use the TOE only when confirmed as a normal user. It allows user's operation on the user documents...
Security Target
Page 25
... Management Function is to restrict input information from the telephone lines so that only fax data can be enabled using the fax driver to specify encrypted communication. Fax Line Separation Function The Fax Line Separation Function is to overwrite specific patterns on the HDD and...is to the LAN can be prevented. Table 7 defines user data according to normal users, MFP administrator, and supervisor. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. If the LAN-Fax Transmission Function of the residual data included in accordance with user role privileges or ...
... Management Function is to restrict input information from the telephone lines so that only fax data can be enabled using the fax driver to specify encrypted communication. Fax Line Separation Function The Fax Line Separation Function is to overwrite specific patterns on the HDD and...is to the LAN can be prevented. Table 7 defines user data according to normal users, MFP administrator, and supervisor. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. If the LAN-Fax Transmission Function of the residual data included in accordance with user role privileges or ...
Security Target
Page 29
...The TOE displays the Repair Request Notification screen on client computer. A function to send documents by e-mail from the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Destination information for each e-mail address, the S/MIME user information is registered and managed by the MFP administrator. This information... is required for e-mail transmission using the fax driver on the Operation Panel if paper jams frequently occur, or if the door or cover of the TOE is located. A function that...
...The TOE displays the Repair Request Notification screen on client computer. A function to send documents by e-mail from the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Destination information for each e-mail address, the S/MIME user information is registered and managed by the MFP administrator. This information... is required for e-mail transmission using the fax driver on the Operation Panel if paper jams frequently occur, or if the door or cover of the TOE is located. A function that...
Security Target
Page 67
... after a [assignment: elapsed time of auto logout, completion of document data reception from the printer driver, completion of document data reception from the fax driver, and termination of communication with RC Gate via the LAN]. 6.2 Security Assurance Requirements The evaluation assurance...channel Hierarchical to restrict data received on [assignment: the Operation Panel, LAN, telephone line] from modification or disclosure. Copyright (c) 2011 RICOH COMPANY, LTD. ALC_FLR.2 was added to : No other components. Page 66 of 91 FPT_FDI_EXP.1 Restricted forwarding of data to external ...
... after a [assignment: elapsed time of auto logout, completion of document data reception from the printer driver, completion of document data reception from the fax driver, and termination of communication with RC Gate via the LAN]. 6.2 Security Assurance Requirements The evaluation assurance...channel Hierarchical to restrict data received on [assignment: the Operation Panel, LAN, telephone line] from modification or disclosure. Copyright (c) 2011 RICOH COMPANY, LTD. ALC_FLR.2 was added to : No other components. Page 66 of 91 FPT_FDI_EXP.1 Restricted forwarding of data to external ...
Security Target
Page 74
... is required to implement the following countermeasures. (1) Identify and authenticate the users prior to use the TOE from the printer driver or fax driver. By satisfying FDP_ACC.1(b), FDP_ACF.1(b), FIA_UID.1(a), FIA_UID.1(b), FIA_UID.2, FIA_UAU.1(a), FIA_UAU.1(b), FIA_UAU.2, FIA_ATD.1, FIA_USB.1, FIA_UAU.7, FIA_AFL.1, FIA_SOS.1,...FTA_SSL.3 terminates the session after completing the communication with the access control by FDP_ACC.1(b) and FDP_ACF.1(b). Copyright (c) 2011 RICOH COMPANY, LTD. FIA_AFL.1 does not allow the user who attempt to use the Operation Panel and LAN interface. ...
... is required to implement the following countermeasures. (1) Identify and authenticate the users prior to use the TOE from the printer driver or fax driver. By satisfying FDP_ACC.1(b), FDP_ACF.1(b), FIA_UID.1(a), FIA_UID.1(b), FIA_UID.2, FIA_UAU.1(a), FIA_UAU.1(b), FIA_UAU.2, FIA_ATD.1, FIA_USB.1, FIA_UAU.7, FIA_AFL.1, FIA_SOS.1,...FTA_SSL.3 terminates the session after completing the communication with the access control by FDP_ACC.1(b) and FDP_ACF.1(b). Copyright (c) 2011 RICOH COMPANY, LTD. FIA_AFL.1 does not allow the user who attempt to use the Operation Panel and LAN interface. ...
Security Target
Page 81
...Authentication Function is not required for the use the TOE are allowed to use the TOE according to the identified user role. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(a) and FIA_UID.1(a): Application of the TOE. All rights reserved. However, regarding the viewing of user job lists, Web Image... for a user to use the TOE. When the TOE is complete. When the entered login user name is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from the Operation Panel or a Web browser, the screen for confirmation....
...Authentication Function is not required for the use the TOE are allowed to use the TOE according to the identified user role. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(a) and FIA_UID.1(a): Application of the TOE. All rights reserved. However, regarding the viewing of user job lists, Web Image... for a user to use the TOE. When the TOE is complete. When the entered login user name is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from the Operation Panel or a Web browser, the screen for confirmation....
Security Target
Page 82
...User Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2011 RICOH COMPANY, LTD. The TOE locks out the login user name if the number of consecutive login failures exceeds the number of ...by a person who intends to the TOE from a Web browser. The TOE logs out immediately after receiving the print data from the fax driver. Page 81 of 91 FIA_USB.1, FIA_ATD.1, and FMT_SMR.1 If a user is identified and authenticated as a result of checking FIA_UAU.1(a), FIA_UID.1(a), ...
...User Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2011 RICOH COMPANY, LTD. The TOE locks out the login user name if the number of consecutive login failures exceeds the number of ...by a person who intends to the TOE from a Web browser. The TOE logs out immediately after receiving the print data from the fax driver. Page 81 of 91 FIA_USB.1, FIA_ATD.1, and FMT_SMR.1 If a user is identified and authenticated as a result of checking FIA_UAU.1(a), FIA_UID.1(a), ...