Security Target
Page 8
... Engine 1.61:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 Hardware Ic Key 1100 Ic Ctlr 03 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Page 7 of 87 Names infotec MP 8001 SP, infotec MP 9001 SP, Lanier LD360sp, Lanier LD370sp, Lanier LD380sp, Lanier LD390sp, nashuatec MP 6001 SP, nashuatec MP 7001 SP, nashuatec MP 8001 SP, nashuatec MP 9001 SP, Rex-Rotary MP 6001 SP, Rex-Rotary MP 7001 SP...
... Engine 1.61:04 OpePanel 1.04 LANG0 1.03 LANG1 1.03 Hardware Ic Key 1100 Ic Ctlr 03 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Page 7 of 87 Names infotec MP 8001 SP, infotec MP 9001 SP, Lanier LD360sp, Lanier LD370sp, Lanier LD380sp, Lanier LD390sp, nashuatec MP 6001 SP, nashuatec MP 7001 SP, nashuatec MP 8001 SP, nashuatec MP 9001 SP, Rex-Rotary MP 6001 SP, Rex-Rotary MP 7001 SP...
Security Target
Page 11
...and Protected Assets. 1.4.1 Physical Boundary of TOE The physical boundary of the TOE is the MFP, which consists of 87 - Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of the following security features: - Identification and Authentication Function - Software Verification Function - Use-of TOE The TOE...SMTP Server] A server used by the TOE for those documents, the TOE has the following hardware components (shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network Unit, USB Port, SD Card Slot, and SD Card. Network Protection Function -...
...and Protected Assets. 1.4.1 Physical Boundary of TOE The physical boundary of the TOE is the MFP, which consists of 87 - Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of the following security features: - Identification and Authentication Function - Software Verification Function - Use-of TOE The TOE...SMTP Server] A server used by the TOE for those documents, the TOE has the following hardware components (shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network Unit, USB Port, SD Card Slot, and SD Card. Network Protection Function -...
Security Target
Page 13
...which is one of the Fax Unit. It is a board that constitute the TOE, is installed in the MFP Control Software. The Engine Control Software sends status information about the Fax Unit and fax data to instructions from the MFP Control Software. Network Unit The Network Unit ... computer to a telephone line. Ic Ctlr The Ic Ctlr is provided with functions for printing directly from the MFP Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. The HDD encryption is an optional function, however, Ic Ctlr is a standard feature of the components that constitute the TOE, is...
...which is one of the Fax Unit. It is a board that constitute the TOE, is installed in the MFP Control Software. The Engine Control Software sends status information about the Fax Unit and fax data to instructions from the MFP Control Software. Network Unit The Network Unit ... computer to a telephone line. Ic Ctlr The Ic Ctlr is provided with functions for printing directly from the MFP Control Software. Copyright (c) 2011 RICOH COMPANY, LTD. The HDD encryption is an optional function, however, Ic Ctlr is a standard feature of the components that constitute the TOE, is...
Security Target
Page 14
.../9080/9080sp/9090/9090sp MP 6001/MP 6001 SP/MP 7001/MP 7001 SP/MP 8001/MP 8001 SP/MP 9001/MP 9001 SP Copyright (c) 2011 RICOH COMPANY, LTD. Details of 87 SD Card/SD Card Slot The SD Card is inside the MFP. Selection of user guidance documents are stored. Quick Reference Copy Guide - Quick Reference Scanner Guide - Only the customer engineer is inserted into...
.../9080/9080sp/9090/9090sp MP 6001/MP 6001 SP/MP 7001/MP 7001 SP/MP 8001/MP 8001 SP/MP 9001/MP 9001 SP Copyright (c) 2011 RICOH COMPANY, LTD. Details of 87 SD Card/SD Card Slot The SD Card is inside the MFP. Selection of user guidance documents are stored. Quick Reference Copy Guide - Quick Reference Scanner Guide - Only the customer engineer is inserted into...
Security Target
Page 20
... maintains TOE operation. All rights reserved. Basic Functions The overview of the Basic Functions is in the Copyright (c) 2011 RICOH COMPANY, LTD. Customer engineer The customer engineer is a person who is responsible for selection of the TOE administrators in the organisation where the TOE is used to ...the TOE. 1.4.4 Logical Boundary of TOE The Basic Functions and Security Functions are described as follows: - It can also be used . The customer engineer is described as below: Figure 3 : Logical Scope of the TOE 1.4.4.1. Page 19 of 87 The responsible manager of MFP is a person who...
... maintains TOE operation. All rights reserved. Basic Functions The overview of the Basic Functions is in the Copyright (c) 2011 RICOH COMPANY, LTD. Customer engineer The customer engineer is a person who is responsible for selection of the TOE administrators in the organisation where the TOE is used to ...the TOE. 1.4.4 Logical Boundary of TOE The Basic Functions and Security Functions are described as follows: - It can also be used . The customer engineer is described as below: Figure 3 : Logical Scope of the TOE 1.4.4.1. Page 19 of 87 The responsible manager of MFP is a person who...
Security Target
Page 22
... delete the documents from the client computer. If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use this ST, the Service Mode Lock Function is malfunctioning. All rights reserved. Normal users can send scanner user documents ...the Operation Panel. When analysing causes of 87 - In this function from the Operation Panel or a Web browser. Copyright (c) 2011 RICOH COMPANY, LTD. Maintenance Function The Maintenance Function is to print or delete fax documents. Management Function The Management Function is to perform ...
... delete the documents from the client computer. If the MFP administrator sets the Service Mode Lock Function to "ON", the customer engineer cannot use this ST, the Service Mode Lock Function is malfunctioning. All rights reserved. Normal users can send scanner user documents ...the Operation Panel. When analysing causes of 87 - In this function from the Operation Panel or a Web browser. Copyright (c) 2011 RICOH COMPANY, LTD. Maintenance Function The Maintenance Function is to print or delete fax documents. Management Function The Management Function is to perform ...
Design Guide
Page 7
... Line I /F Page 7 of 86 Internal System Configuration 1-1 Hardware Configuration 1-1-1 MFP Controller Processing and Control Unit ・CPU ・RAM RAM - data Flash ROM Operation Panel Engine Image Processing Scanning Image Processing Printing FCU FAX comm. Firmware Encryption Processor HDD - Mgmt. Line External Charge Device I/F USB TypeA USB TypeB Ethernet Host I/F Optional...
... Line I /F Page 7 of 86 Internal System Configuration 1-1 Hardware Configuration 1-1-1 MFP Controller Processing and Control Unit ・CPU ・RAM RAM - data Flash ROM Operation Panel Engine Image Processing Scanning Image Processing Printing FCU FAX comm. Firmware Encryption Processor HDD - Mgmt. Line External Charge Device I/F USB TypeA USB TypeB Ethernet Host I/F Optional...
Design Guide
Page 9
Firmware Encryption Processor HDD - data Flash ROM Operation Panel Engine Image Processing Printing TPM NVRAM - Image data - Settings - Mgmt. Print Controller Design Guide for Information Security 1-1-2 LP RAM - Counters Controller Processing and Control Unit ・CPU ・RAM System Control USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IC Card Reader Pict Bridge Compatible Device RC Gate Internet SD Card I/F Page 9 of 86 Page memory -
Firmware Encryption Processor HDD - data Flash ROM Operation Panel Engine Image Processing Printing TPM NVRAM - Image data - Settings - Mgmt. Print Controller Design Guide for Information Security 1-1-2 LP RAM - Counters Controller Processing and Control Unit ・CPU ・RAM System Control USB TypeA USB TypeB Ethernet Host I/F Optional I/F: Parallel Gigabit Ethernet Wireless LAN Bluetooth IC Card Reader Pict Bridge Compatible Device RC Gate Internet SD Card I/F Page 9 of 86 Page memory -
Design Guide
Page 11
... and commands with the FCU (FAX Control Unit), which manages and controls FAX communication and telecommunications lines. Controls host I /F ECS (Engine Control Service) MCS (Memory Control Service) IMH (Image Memory Handler) OCS (Operation Panel Control Service) NCS (Network Control Service) FCS (...FAX Control Service) Controls engine operations for scanning and printing. Controls the panel LEDs, monitors panel keys and manages panel objects and display messages. Manages the memory...
... and commands with the FCU (FAX Control Unit), which manages and controls FAX communication and telecommunications lines. Controls host I /F ECS (Engine Control Service) MCS (Memory Control Service) IMH (Image Memory Handler) OCS (Operation Panel Control Service) NCS (Network Control Service) FCS (...FAX Control Service) Controls engine operations for scanning and printing. Controls the panel LEDs, monitors panel keys and manages panel objects and display messages. Manages the memory...
Design Guide
Page 12
...the printer language into image data, which then sends the data to managing hardware resources, this module mediates control of the printer engine, scanner engine and memory resources during the authentication process, as well as the operational link between the driver UI and the host I /F.... In addition to the controller. Secondary data is handled via the connection protocols between SP settings and machine operations. Also receives FAX data and prints it out from the printing engine. Print Controller Design Guide for access control, is then printed out from the printing...
...the printer language into image data, which then sends the data to managing hardware resources, this module mediates control of the printer engine, scanner engine and memory resources during the authentication process, as well as the operational link between the driver UI and the host I /F.... In addition to the controller. Secondary data is handled via the connection protocols between SP settings and machine operations. Also receives FAX data and prints it out from the printing engine. Print Controller Design Guide for access control, is then printed out from the printing...
Design Guide
Page 18
...remote firmware update is performed, the process for which is overwritten with new files If MD1 = MD2 Digital signature Ricoh distribution server Program + digital signature Program Ricoh license server 1. Files are employed. Verification of model and target machine functions (Copier, Printer, etc.) 3. Compare...these files are transmitted over public Internet communication paths in the field via Web SmartDeviceMonitor Professional IS, usually by a field engineer in some reason, it is necessary to the MFP/LP. The process for some cases, routed through multiple servers before...
...remote firmware update is performed, the process for which is overwritten with new files If MD1 = MD2 Digital signature Ricoh distribution server Program + digital signature Program Ricoh license server 1. Files are employed. Verification of model and target machine functions (Copier, Printer, etc.) 3. Compare...these files are transmitted over public Internet communication paths in the field via Web SmartDeviceMonitor Professional IS, usually by a field engineer in some reason, it is necessary to the MFP/LP. The process for some cases, routed through multiple servers before...
Design Guide
Page 27
... by default, using a different pattern each time, however the number of passes can be activated on the MFP/LP, a service or sales engineer must perform the setup procedure. Also, it with a fixed value (normally, this is not possible. Even in the unlikely event that data ... In rare cases, performing the overwrite just once may not be able to reconstruct the original data. National Security Agency The Ricoh randomized value method, a Ricoh-original method which overwrites data using randomly-generated values Note: The DoD and NSA methods automatically perform three passes, using a ...
... by default, using a different pattern each time, however the number of passes can be activated on the MFP/LP, a service or sales engineer must perform the setup procedure. Also, it with a fixed value (normally, this is not possible. Even in the unlikely event that data ... In rare cases, performing the overwrite just once may not be able to reconstruct the original data. National Security Agency The Ricoh randomized value method, a Ricoh-original method which overwrites data using randomly-generated values Note: The DoD and NSA methods automatically perform three passes, using a ...
Design Guide
Page 28
...the contents of the HDD in addition to initializing the FCU data, Erase All Memory is unique to a particular installation environment from remaining in SP mode and UP mode. Erase All Memory This function overwrites the contents of every region of the HDD and initializes the contents of 86 ... data to store the incoming image data. Note: If the MFP/LP receives a request to the processing region of the total counter, or engine-related adjustment settings contained in the HDD by the MFP/LP. Print Controller Design Guide for Information Security whether or not the option is to...
...the contents of the HDD in addition to initializing the FCU data, Erase All Memory is unique to a particular installation environment from remaining in SP mode and UP mode. Erase All Memory This function overwrites the contents of every region of the HDD and initializes the contents of 86 ... data to store the incoming image data. Note: If the MFP/LP receives a request to the processing region of the total counter, or engine-related adjustment settings contained in the HDD by the MFP/LP. Print Controller Design Guide for Information Security whether or not the option is to...
Design Guide
Page 29
For MFP models, a field engineer must perform the installation of whether the function is enabled or disabled. If an HDD containing encrypted data is enabled, the following data is always ... keys is always enabled for @Remote Page 29 of the data, even in section 1.4.2 above , the following data are encrypted: NVRAM: All data, except the engine adjustment parameters and some Copier screen display parameters (i.e. Print Controller Design Guide for Information Security 1-7-2 Encryption of Stored Data Overview By encrypting the data stored...
For MFP models, a field engineer must perform the installation of whether the function is enabled or disabled. If an HDD containing encrypted data is enabled, the following data is always ... keys is always enabled for @Remote Page 29 of the data, even in section 1.4.2 above , the following data are encrypted: NVRAM: All data, except the engine adjustment parameters and some Copier screen display parameters (i.e. Print Controller Design Guide for Information Security 1-7-2 Encryption of Stored Data Overview By encrypting the data stored...
Design Guide
Page 31
... paper, for Information Security to the HDD, it still exists inside de-allocated HDD memory, where it will remain until it is encrypted by a field engineer. Encryption Key Update: This operation allows the operator to be replaced (in which case, the original key cannot be recovered and decrypted in order to...
... paper, for Information Security to the HDD, it still exists inside de-allocated HDD memory, where it will remain until it is encrypted by a field engineer. Encryption Key Update: This operation allows the operator to be replaced (in which case, the original key cannot be recovered and decrypted in order to...
Design Guide
Page 43
... store them directly to the HDD without printing them to the HDD, which limits what operations can be printed out from the printing engine. User Codes can be assigned when scanning a document for the username and password of 86 filename). Principal Machine Functions 2-1 Copier (MFP... Models Only) 2-1-1 Overview of every copy job, it is initiated, the scanning engine scans the original and forwards this data to the controller to be enabled to restrict access to the Copier function. 2-1-2 Data Security Considerations ...
... store them directly to the HDD without printing them to the HDD, which limits what operations can be printed out from the printing engine. User Codes can be assigned when scanning a document for the username and password of 86 filename). Principal Machine Functions 2-1 Copier (MFP... Models Only) 2-1-1 Overview of every copy job, it is initiated, the scanning engine scans the original and forwards this data to the controller to be enabled to restrict access to the Copier function. 2-1-2 Data Security Considerations ...
Design Guide
Page 47
...of 86 The entry is registered as soon as data written to the HDD. • When Spooling is enabled, the incoming data is compressed in Ricoh original compression format, and stored in WebImageMonitor, or "Spooling Job" list on the job settings received from page 1), however the actual printing order ... The Document Server and all related Printer functions described below are printed out is same whether Image Spooling is then sent to the printing engine for all pages of the incoming data are converted to image data and then stored to the spooling area of the pages may differ depending...
...of 86 The entry is registered as soon as data written to the HDD. • When Spooling is enabled, the incoming data is compressed in Ricoh original compression format, and stored in WebImageMonitor, or "Spooling Job" list on the job settings received from page 1), however the actual printing order ... The Document Server and all related Printer functions described below are printed out is same whether Image Spooling is then sent to the printing engine for all pages of the incoming data are converted to image data and then stored to the spooling area of the pages may differ depending...
Design Guide
Page 59
...for Information Security 2-4 FAX (MFP Models Only) 2-4-1 Overview of FAX operations The FAX function sends the scanned image data from the scanner engine to receive only those transmissions accompanied by a predetermined code. For reception, it is saved to the HDD, after which commands can be ...with normal FAX communication. The incoming document is then forwarded on to the printer engine for transmission as an Internet FAX is converted into image data and then forwarded on to the printer engine for printing out. • For Internet FAX transmission, the scanned image data is...
...for Information Security 2-4 FAX (MFP Models Only) 2-4-1 Overview of FAX operations The FAX function sends the scanned image data from the scanner engine to receive only those transmissions accompanied by a predetermined code. For reception, it is saved to the HDD, after which commands can be ...with normal FAX communication. The incoming document is then forwarded on to the printer engine for transmission as an Internet FAX is converted into image data and then forwarded on to the printer engine for printing out. • For Internet FAX transmission, the scanned image data is...
Design Guide
Page 75
....) will depend on which in effect alerts the MFP that of an embedded pattern. Detection, replacing image with the vertical line pattern. As the scanning engine scans the image, the Copy Data Security Unit examines the data for the event itself is possible to suit the operator's needs, such as an...
....) will depend on which in effect alerts the MFP that of an embedded pattern. Detection, replacing image with the vertical line pattern. As the scanning engine scans the image, the Copy Data Security Unit examines the data for the event itself is possible to suit the operator's needs, such as an...
Design Guide
Page 79
... GWWS FCS ECS MCS OCS NCS DCS UCS CCS NRS LCS MIRS DESS SCS MFP only Shared Service Layers SRM libc IMH NetBSD Engine I/F Scanning Engine MFP only Printing Engine FCU MFP only HDD Fig. 3: DSDK - Principal Machine Function API for an image file stored on the MFP/LP. Examples of such methods...
... GWWS FCS ECS MCS OCS NCS DCS UCS CCS NRS LCS MIRS DESS SCS MFP only Shared Service Layers SRM libc IMH NetBSD Engine I/F Scanning Engine MFP only Printing Engine FCU MFP only HDD Fig. 3: DSDK - Principal Machine Function API for an image file stored on the MFP/LP. Examples of such methods...