Security Target
Page 7
... MP C2800 , Gestetner MP C3300 nashuatec MP C2800 , nashuatec MP C3300 Rex-Rotary MP C2800 , Rex-Rotary MP C3300 infotec MP C2800, infotec MP C3300 MFP Software/Hardware Version: Software System/Copy Network Support Scanner Printer Fax Web Support Web Uapl Network Doc Box 1.22 8.27 01.23 1.22 04.00.00 1.10 1.08 1.03 Hardware Ic Key 1100 Ic Ctlr 03 FCU Name : Fax Option Type C5000 Copyright (c) 2009,2010 RICOH COMPANY, LTD. Manufacturer : RICOH COMPANY, LTD. All Rights Reserved. Page...
... MP C2800 , Gestetner MP C3300 nashuatec MP C2800 , nashuatec MP C3300 Rex-Rotary MP C2800 , Rex-Rotary MP C3300 infotec MP C2800, infotec MP C3300 MFP Software/Hardware Version: Software System/Copy Network Support Scanner Printer Fax Web Support Web Uapl Network Doc Box 1.22 8.27 01.23 1.22 04.00.00 1.10 1.08 1.03 Hardware Ic Key 1100 Ic Ctlr 03 FCU Name : Fax Option Type C5000 Copyright (c) 2009,2010 RICOH COMPANY, LTD. Manufacturer : RICOH COMPANY, LTD. All Rights Reserved. Page...
Security Target
Page 8
... functions and provides a Copy Function, Scanner Function, Printer Function, and Fax Function. Paper documents are input using the MFP's scanning device, and electronic documents are the major Security Functions of the TOE in this ST: 1. Service Mode Lock Function 8. Users can be located in a general office. Copyright (c) 2009,2010 RICOH COMPANY, LTD. The TOE incorporates some of the assumed TOE environment. The TOE can operate the TOE from a client computer via a network, USB connection, or fax. The output function includes printing, Fax...
... functions and provides a Copy Function, Scanner Function, Printer Function, and Fax Function. Paper documents are input using the MFP's scanning device, and electronic documents are the major Security Functions of the TOE in this ST: 1. Service Mode Lock Function 8. Users can be located in a general office. Copyright (c) 2009,2010 RICOH COMPANY, LTD. The TOE incorporates some of the assumed TOE environment. The TOE can operate the TOE from a client computer via a network, USB connection, or fax. The output function includes printing, Fax...
Security Target
Page 9
... document data stored in the TOE to folders in FTP server. All Rights Reserved. Page 9 of 80 Figure 1: Example TOE environment The following describes non-TOE configuration: Internal Network The internal network connects the TOE with various types of servers (FTP, SMB, and SMTP servers) and client computers.It is connected to the Internal via the internal network or USB connection, the PCL printer driver and fax driver must be downloaded and installed...
... document data stored in the TOE to folders in FTP server. All Rights Reserved. Page 9 of 80 Figure 1: Example TOE environment The following describes non-TOE configuration: Internal Network The internal network connects the TOE with various types of servers (FTP, SMB, and SMTP servers) and client computers.It is connected to the Internal via the internal network or USB connection, the PCL printer driver and fax driver must be downloaded and installed...
Security Target
Page 10
Telephone Line A telephone line is a line used for the TOE to send the document data stored in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, IcCtlr, HDD, Network Unit, USB Port, and SD Card Slot. Figure 2 outlines the configuration of the following hardware (shown in the TOE to send and receive fax data from the external network. 1.4 TOE Description This section describes the physical boundaries of the TOE, user guidance documents, user roles, logical boundaries of the...
Telephone Line A telephone line is a line used for the TOE to send the document data stored in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, IcCtlr, HDD, Network Unit, USB Port, and SD Card Slot. Figure 2 outlines the configuration of the following hardware (shown in the TOE to send and receive fax data from the external network. 1.4 TOE Description This section describes the physical boundaries of the TOE, user guidance documents, user roles, logical boundaries of the...
Security Target
Page 11
... touch screen, and the Operation Panel Control Board. The Scanner Engine is an output device for use by users. Page 11 of 80 Figure 2: Hardware configuration of TOE Operation Panel Unit (hereafter "Operation Panel") The Operation Panel is an interface device that has a modem function to send and receive fax data when connected to read the paper documents. Engine Unit The Engine Unit contains a Scanner Engine, Printer Engine, and the Engine Control Board. The Printer Engine is an input device to a telephone line. Fax Unit (optional) The Fax Unit is a device...
... touch screen, and the Operation Panel Control Board. The Scanner Engine is an output device for use by users. Page 11 of 80 Figure 2: Hardware configuration of TOE Operation Panel Unit (hereafter "Operation Panel") The Operation Panel is an interface device that has a modem function to send and receive fax data when connected to read the paper documents. Engine Unit The Engine Unit contains a Scanner Engine, Printer Engine, and the Engine Control Board. The Printer Engine is an input device to a telephone line. Fax Unit (optional) The Fax Unit is a device...
Security Target
Page 12
... MFP Control Data for maintenance work , s/he removes this cover to be stored on the side of the TOE, and is located on the HDD and decrypts information to insert and remove the SD card. When installing the TOE, the CE inserts an SD card into the SD CARD Slot to the HDD. Page 12 of 80 Software with the MFP Control Software. It is used to the Operation Panel Unit, Engine Unit, Fax Unit, Network Unit, USB Port, SD Card...
... MFP Control Data for maintenance work , s/he removes this cover to be stored on the side of the TOE, and is located on the HDD and decrypts information to insert and remove the SD card. When installing the TOE, the CE inserts an SD card into the SD CARD Slot to the HDD. Page 12 of 80 Software with the MFP Control Software. It is used to the Operation Panel Unit, Engine Unit, Fax Unit, Network Unit, USB Port, SD Card...
Security Target
Page 13
...Notes for Administrators C2828/C3333/C4040/C5050 MP C2800/MP C3300/MP C4000/MP C5000 LD528C/LD533C/LD540C/LD550C Aficio MP C2800/MP C3300/MP C4000/MP C5000 - Quick Reference Copy Guide - Manuals for Security Functions - Quick Reference Printer Guide Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved. : characteristics of the Optional USB 2.0/SD Slot Type A (Media Slot) - Quick Reference Copy Guide - Quick Reference Fax Guide - Quick Reference Printer Guide - Notes for this Machine in a CC-Certified Environment [English version-2] - Manuals for Users...
...Notes for Administrators C2828/C3333/C4040/C5050 MP C2800/MP C3300/MP C4000/MP C5000 LD528C/LD533C/LD540C/LD550C Aficio MP C2800/MP C3300/MP C4000/MP C5000 - Quick Reference Copy Guide - Manuals for Security Functions - Quick Reference Printer Guide Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved. : characteristics of the Optional USB 2.0/SD Slot Type A (Media Slot) - Quick Reference Copy Guide - Quick Reference Fax Guide - Quick Reference Printer Guide - Notes for this Machine in a CC-Certified Environment [English version-2] - Manuals for Users...
Security Target
Page 15
... default administrator is a user who are selected by a user administrator. Managing machines and performing audits. Managing the TOE's network connections. Managing the documents stored in the TOE. 1.4.3.3 Supervisor The "supervisor" is registered and assigned all four administrator roles as a factory setting. A default supervisor is being installed, the administrators who manages administrator passwords and changes them. One to four administrators and one or more administrators. Page 15 of 80 1.4.3.1 Responsible Manager of MFP...
... default administrator is a user who are selected by a user administrator. Managing machines and performing audits. Managing the TOE's network connections. Managing the documents stored in the TOE. 1.4.3.3 Supervisor The "supervisor" is registered and assigned all four administrator roles as a factory setting. A default supervisor is being installed, the administrators who manages administrator passwords and changes them. One to four administrators and one or more administrators. Page 15 of 80 1.4.3.1 Responsible Manager of MFP...
Security Target
Page 17
... multiple pages onto a single sheet). In addition, the scanned original images can process scanned data. The TOE prints the received data using its USB Port. Fax Receptio n either prints received fax data, or converts received fax data into fax reception data and then stores it in the D-BOX using the Copy Function, Printer Function, Fax Fun ction, or Document Server Function can be printed and deleted using this function. Document Server Function This function is for printing out the print data sent from the Operation Panel, and also include LAN-Fax transmission, which is part...
... multiple pages onto a single sheet). In addition, the scanned original images can process scanned data. The TOE prints the received data using its USB Port. Fax Receptio n either prints received fax data, or converts received fax data into fax reception data and then stores it in the D-BOX using the Copy Function, Printer Function, Fax Fun ction, or Document Server Function can be printed and deleted using this function. Document Server Function This function is for printing out the print data sent from the Operation Panel, and also include LAN-Fax transmission, which is part...
Security Target
Page 18
...Functions". Remote operation is possible if a Web browser is for setting the following TOE operations are available: 1. Sending document data stored in the D-BOX. Downloading document data stored in the D-BOX. This section describes these functions. When document data is applied to networks, user information, and information on the user's role (general user, administrator, or supervisor). Document data stored using the Copy Function, Document Server Function, Fax Function, or Printer Function can be updated according to manage this document is printed, the Print Setting...
...Functions". Remote operation is possible if a Web browser is for setting the following TOE operations are available: 1. Sending document data stored in the D-BOX. Downloading document data stored in the D-BOX. This section describes these functions. When document data is applied to networks, user information, and information on the user's role (general user, administrator, or supervisor). Document data stored using the Copy Function, Document Server Function, Fax Function, or Printer Function can be updated according to manage this document is printed, the Print Setting...
Security Target
Page 19
... the users to delete any document data. However, when printing or faxing from aclient computer, this function temporarily prevents further login attempts from the Operation Panel or a client computer. File administrators are allowed to enter their user ID and authentication details from printer or fax drivers, which the user administrator sets in the D-BOX to read the audit logs using the Web Service Function, and delete the audit logs using both the Minimum Password Length and Password Complexity...
... the users to delete any document data. However, when printing or faxing from aclient computer, this function temporarily prevents further login attempts from the Operation Panel or a client computer. File administrators are allowed to enter their user ID and authentication details from printer or fax drivers, which the user administrator sets in the D-BOX to read the audit logs using the Web Service Function, and delete the audit logs using both the Minimum Password Length and Password Complexity...
Security Target
Page 20
... data ACL includes changing document file owners, registering new document file users forthe Copyright (c) 2009,2010 RICOH COMPANY, LTD. Download document data using the Web Service Function from unauthorised access. Send document data attached to e-mail to a client computer from leakage, by making it difficult to understand unless the document data is sent. Network Communication Data Protection Function This function is operating and the intended usage of the TOE. Stored Data Protection Function The Stored Data Protection Function is for protecting document data and print data...
... data ACL includes changing document file owners, registering new document file users forthe Copyright (c) 2009,2010 RICOH COMPANY, LTD. Download document data using the Web Service Function from unauthorised access. Send document data attached to e-mail to a client computer from leakage, by making it difficult to understand unless the document data is sent. Network Communication Data Protection Function This function is operating and the intended usage of the TOE. Stored Data Protection Function The Stored Data Protection Function is for protecting document data and print data...
Security Target
Page 21
... to newly create, change, and delete general user information. Management of 80 document data ACL, deleting document file users previously registered for devices equipped with full control permissions can change , and delete general user information. - Service Mode Lock Function The Maintenance Function is registered to them in document data. In this evaluation, the Service Mode Lock Function set to configure the items of machine control data Each administrator is for document data ACL, and changing operation permissions specified in the Address Book, with the exception...
... to newly create, change, and delete general user information. Management of 80 document data ACL, deleting document file users previously registered for devices equipped with full control permissions can change , and delete general user information. - Service Mode Lock Function The Maintenance Function is registered to them in document data. In this evaluation, the Service Mode Lock Function set to configure the items of machine control data Each administrator is for document data ACL, and changing operation permissions specified in the Address Book, with the exception...
Security Target
Page 22
... a print or fax image is written. Storing Document Data Document data stored inside the TOE is stored in the TOE can be deleted. Downloaded by the printer or fax drivers installed on the client computer when it . When output using methods 1 to 3, document data is protected from Copyright (c) 2009,2010 RICOH COMPANY, LTD. From the network or from a device connected to the USB Port Document data is created from the scanned image of this TOE (document data and print data). 1.4.5.1 Document Data Document data is...
... a print or fax image is written. Storing Document Data Document data stored inside the TOE is stored in the TOE can be deleted. Downloaded by the printer or fax drivers installed on the client computer when it . When output using methods 1 to 3, document data is protected from Copyright (c) 2009,2010 RICOH COMPANY, LTD. From the network or from a device connected to the USB Port Document data is created from the scanned image of this TOE (document data and print data). 1.4.5.1 Document Data Document data is...
Security Target
Page 47
...Management Functions: [assignment: list of specifications of Management Function Hierarchical to Folder Query, modify Query, modify Query, modify Query, newly create, delete, change Query Query Page 47 of 80 User roles General users, user administrator, network administrator, file administrator, supervisor User administrator User administrator Machine administrator Machine administrator Machine administrator General users, User administrator, Network administrator, File administrator, Supervisor User administrator Supervisor Machine administrator User administrator Applicable general users...
...Management Functions: [assignment: list of specifications of Management Function Hierarchical to Folder Query, modify Query, modify Query, modify Query, newly create, delete, change Query Query Page 47 of 80 User roles General users, user administrator, network administrator, file administrator, supervisor User administrator User administrator Machine administrator Machine administrator Machine administrator General users, User administrator, Network administrator, File administrator, Supervisor User administrator Supervisor Machine administrator User administrator Applicable general users...
Security Target
Page 57
... the service mode lock setting, newly create and query HDD cryptographic keys, andquery and delete audit logs. the machine administrator to query and change their own administrator IDs; - supervisor and applicable administrators to query and modify its document data ACL; To fulfil O.MANAGE, management of security attributes shall be permitted to fulfil the O.MANAGE specification. the file administrator, document file owners, and general users with full control operation permission for administrators, and...
... the service mode lock setting, newly create and query HDD cryptographic keys, andquery and delete audit logs. the machine administrator to query and change their own administrator IDs; - supervisor and applicable administrators to query and modify its document data ACL; To fulfil O.MANAGE, management of security attributes shall be permitted to fulfil the O.MANAGE specification. the file administrator, document file owners, and general users with full control operation permission for administrators, and...
Security Target
Page 64
...(*1) Login Starting Lockout Releasing Lockout (*2) Lockout release at TOE startup HDD encryption key generation Successful storage of document data Successful reading of document data (*3) Successful deletion of document data Receiving fax Changing user password (including new creation and deletion) Deletion of administrator role Addition of administrator role Changing document data ACL Changing date and time of auditable events that require additional information for each auditable event. Communication IP address - -: No applicable expanded audit information Copyright (c) 2009,2010 RICOH...
...(*1) Login Starting Lockout Releasing Lockout (*2) Lockout release at TOE startup HDD encryption key generation Successful storage of document data Successful reading of document data (*3) Successful deletion of document data Receiving fax Changing user password (including new creation and deletion) Deletion of administrator role Addition of administrator role Changing document data ACL Changing date and time of auditable events that require additional information for each auditable event. Communication IP address - -: No applicable expanded audit information Copyright (c) 2009,2010 RICOH...
Security Target
Page 76
... where a private key for units and devices that controls the operation of an MFP. Copyright (c) 2009,2010 RICOH COMPANY, LTD. It can identify TOE components such as system/copy, network support, scanner, printer, fax, Web support, Web Uapl, and Network Doc Box. Manages the resources for secure communication is connected to the HDD installed in the TOE. A generic term for sharing files with a client computer using Server Message Block Protocol. A server for a set of "Hard Disk Drive".
... where a private key for units and devices that controls the operation of an MFP. Copyright (c) 2009,2010 RICOH COMPANY, LTD. It can identify TOE components such as system/copy, network support, scanner, printer, fax, Web support, Web Uapl, and Network Doc Box. Manages the resources for secure communication is connected to the HDD installed in the TOE. A generic term for sharing files with a client computer using Server Message Block Protocol. A server for a set of "Hard Disk Drive".
Security Target
Page 78
... number of data that is assigned to each administrator is given one or more administrator roles. A setting that prohibits access to the TOE to "Inactive". Indicates the general user's login name on this TOE. A database containing information about general users as duplex or layout settings). The document files in advance: a printer driver for printing and a fax driver for stored document data can be updated by an administrator. Print Settings for faxing. A password for a Lockout-released user is set...
... number of data that is assigned to each administrator is given one or more administrator roles. A setting that prohibits access to the TOE to "Inactive". Indicates the general user's login name on this TOE. A database containing information about general users as duplex or layout settings). The document files in advance: a printer driver for printing and a fax driver for stored document data can be updated by an administrator. Print Settings for faxing. A password for a Lockout-released user is set...
Security Target
Page 79
...set for each document data. A function that is a person who perform either of the document data. Electronic data sent to a registered administrator. The default value that prints print data received by authorised MFP users who has the role of administrator role: user administration, machine administration, network administration, and file administration. An "access control list" of general users that faxes document data stored earlier in the document data ACL as an "Operation Panel Unit". The file administrator is set for the document data ACL of a touch screen LCD, key...
...set for each document data. A function that is a person who perform either of the document data. Electronic data sent to a registered administrator. The default value that prints print data received by authorised MFP users who has the role of administrator role: user administration, machine administration, network administration, and file administration. An "access control list" of general users that faxes document data stored earlier in the document data ACL as an "Operation Panel Unit". The file administrator is set for the document data ACL of a touch screen LCD, key...