Security Target
Page 5
Page 4 of 93 7.3 Document Access Control Function 84 7.4 Use-of-Feature Restriction Function 86 7.5 Network Protection Function 87 7.6 Residual Data Overwrite Function 87 7.7 Stored Data Protection Function 88 7.8 Security Management Function 88 7.9 Software Verification Function 93 7.10 Fax Line Separation Function 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Page 4 of 93 7.3 Document Access Control Function 84 7.4 Use-of-Feature Restriction Function 86 7.5 Network Protection Function 87 7.6 Residual Data Overwrite Function 87 7.7 Stored Data Protection Function 88 7.8 Security Management Function 88 7.9 Software Verification Function 93 7.10 Fax Line Separation Function 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Security Target
Page 8
... components are the identification information of TOE Names Ricoh Aficio MP C3001, Ricoh Aficio MP C3501, Ricoh Aficio MP C3001G, Ricoh Aficio MP C3501G, Gestetner MP C3001, Gestetner MP C3501, Lanier MP C3001, Lanier MP C3501, Lanier LD630C, Lanier LD635C, Lanier LD630CG, Lanier LD635CG, nashuatec MP C3001, nashuatec MP C3501, Rex-Rotary MP C3001, Rex-Rotary MP C3501, MFPs Versions Software System/Copy Network Support Scanner Printer Fax RemoteFax Web Support Web Uapl NetworkDocBox animation PCL...
... components are the identification information of TOE Names Ricoh Aficio MP C3001, Ricoh Aficio MP C3501, Ricoh Aficio MP C3001G, Ricoh Aficio MP C3501G, Gestetner MP C3001, Gestetner MP C3501, Lanier MP C3001, Lanier MP C3501, Lanier LD630C, Lanier LD635C, Lanier LD630CG, Lanier LD635CG, nashuatec MP C3001, nashuatec MP C3501, Rex-Rotary MP C3001, Rex-Rotary MP C3501, MFPs Versions Software System/Copy Network Support Scanner Printer Fax RemoteFax Web Support Web Uapl NetworkDocBox animation PCL...
Security Target
Page 9
All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. infotec MP C3001, infotec MP C3501, Savin C9130, Savin C9135, Savin C9130G, Savin C9135G FCU name Names Options Fax Option Type C5501 Page 8 of 93 Versions OpePanel 1.04 LANG0 1.04 LANG1 1.04 Data Erase Std 1.01x Hardware Ic Key... 01020700 Ic Ctlr 03 GWFCU3-21(WW) 03.00.00 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is a digital multi function ...
All rights reserved. Copyright (c) 2011 RICOH COMPANY, LTD. infotec MP C3001, infotec MP C3501, Savin C9130, Savin C9135, Savin C9130G, Savin C9135G FCU name Names Options Fax Option Type C5501 Page 8 of 93 Versions OpePanel 1.04 LANG0 1.04 LANG1 1.04 Data Erase Std 1.01x Hardware Ic Key... 01020700 Ic Ctlr 03 GWFCU3-21(WW) 03.00.00 Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security Features of TOE. 1.3.1 TOE Type This TOE is a digital multi function ...
Security Target
Page 10
..., which is the TOE itself, and hardware and software other than the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. MFP A machinery that is defined as shown in the TOE environment. Copy, fax, storage, and network transmission of the stored documents. All rights reserved. Page 9 of 93 Figure... 1 : Example of TOE Environment The TOE is used in Figure 1. Print, fax, network transmission, and deletion of paper documents, - Also, the TOE receives information via telephone lines and can store it as a document. Below...
..., which is the TOE itself, and hardware and software other than the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. MFP A machinery that is defined as shown in the TOE environment. Copy, fax, storage, and network transmission of the stored documents. All rights reserved. Page 9 of 93 Figure... 1 : Example of TOE Environment The TOE is used in Figure 1. Print, fax, network transmission, and deletion of paper documents, - Also, the TOE receives information via telephone lines and can store it as a document. Below...
Security Target
Page 11
... SMTP Server A server used by the TOE for those documents, the TOE has the following security features: Copyright (c) 2011 RICOH COMPANY, LTD. External Authentication Server A server that identifies and authenticates the TOE user with the external authentication server via the ...All rights reserved. Operation of confidentiality and integrity for e-mail transmission of the stored documents in the TOE to communicate with external faxes. A transfer path to prevent the office environment from the client computer are as a client of documents using a Web browser installed...
... SMTP Server A server used by the TOE for those documents, the TOE has the following security features: Copyright (c) 2011 RICOH COMPANY, LTD. External Authentication Server A server that identifies and authenticates the TOE user with the external authentication server via the ...All rights reserved. Operation of confidentiality and integrity for e-mail transmission of the stored documents in the TOE to communicate with external faxes. A transfer path to prevent the office environment from the client computer are as a client of documents using a Web browser installed...
Security Target
Page 12
Network Protection Function - Fax Line Separation Function Page 11 of 93 1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE... MFP, which consists of -Feature Restriction Function - Security Management Function - Identification and Authentication Function - Copyright (c) 2011 RICOH COMPANY, LTD. Use-of the following hardware components (shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network Unit, USB Port, SD Card Slot, and SD Card. Software...
Network Protection Function - Fax Line Separation Function Page 11 of 93 1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE... MFP, which consists of -Feature Restriction Function - Security Management Function - Identification and Authentication Function - Copyright (c) 2011 RICOH COMPANY, LTD. Use-of the following hardware components (shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network Unit, USB Port, SD Card Slot, and SD Card. Software...
Security Target
Page 14
... is the identifier of Scanner Engine that is an input device to print and eject paper documents, and Engine Control Board. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. It has the memory medium inside, and the signature root key is installed before the TOE is a non...the components that constitute the TOE, is the identifier for communication. The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. HDD The HDD is a hard disk drive that has a modem function for the Operation Panel Control Software. Page 13 of...
... is the identifier of Scanner Engine that is an input device to print and eject paper documents, and Engine Control Board. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. It has the memory medium inside, and the signature root key is installed before the TOE is a non...the components that constitute the TOE, is the identifier for communication. The Engine Control Software sends status information about the Controller Board and Fax Unit and fax data. HDD The HDD is a hard disk drive that has a modem function for the Operation Panel Control Software. Page 13 of...
Security Target
Page 16
...v116 FCU - All rights reserved. Notes for Product - To Users of 93 Operating Instructions Troubleshooting D088-7653A - Quick Reference Fax Guide D545-8506 [English version-2] Table 3 : Guidance for English Version-2 TOE Components MFP Guidance Documents for Users D088-.../LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG Copyright (c) 2011 RICOH COMPANY, LTD. App2Me Start Guide D085-7906B - Notes for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/...
...v116 FCU - All rights reserved. Notes for Product - To Users of 93 Operating Instructions Troubleshooting D088-7653A - Quick Reference Fax Guide D545-8506 [English version-2] Table 3 : Guidance for English Version-2 TOE Components MFP Guidance Documents for Users D088-.../LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG Copyright (c) 2011 RICOH COMPANY, LTD. App2Me Start Guide D085-7906B - Notes for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/...
Security Target
Page 17
... Environment Compliant with IEEE Std. 2600.1TM-2009 D088-7709 - Quick Reference Fax Guide D545-8506 Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Scanner Guide D088-7889 - Notes for Administrators Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/ MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9...
... Environment Compliant with IEEE Std. 2600.1TM-2009 D088-7709 - Quick Reference Fax Guide D545-8506 Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Scanner Guide D088-7889 - Notes for Administrators Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/ MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9...
Security Target
Page 18
...-3] Page 17 of This Machine D029-7904 - Help 83NHBUENZ1.20 v116 FCU - [English version-4] TOE Components MFP Table 5 : Guidance for English Version-4 Guidance Documents for MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A/Aficio MP C3001/Aficio MP C3501/Aficio MP C4501/Aficio MP C4501A/Aficio MP C5501/Aficio MP C5501A D088-7400A - MP C3001/C3501/C4501/C4501A/C5501/C5501A Copyright (c) 2011 RICOH COMPANY, LTD.
...-3] Page 17 of This Machine D029-7904 - Help 83NHBUENZ1.20 v116 FCU - [English version-4] TOE Components MFP Table 5 : Guidance for English Version-4 Guidance Documents for MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A/Aficio MP C3001/Aficio MP C3501/Aficio MP C4501/Aficio MP C4501A/Aficio MP C5501/Aficio MP C5501A D088-7400A - MP C3001/C3501/C4501/C4501A/C5501/C5501A Copyright (c) 2011 RICOH COMPANY, LTD.
Security Target
Page 19
...-7527 - Quick Reference Scanner Guide D088-7887 - App2Me Start Guide D085-7906B - Quick Reference Fax Guide D545-8507 1.4.3 Definition of This Machine D029-7904 - Notes for Users D060-7781 - ...Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6908A - Page 18 of 93 MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Operating Instructions About This Machine D088-7605A - The direct users and indirect users are described as follows: Copyright (c) 2011 RICOH...
...-7527 - Quick Reference Scanner Guide D088-7887 - App2Me Start Guide D085-7906B - Quick Reference Fax Guide D545-8507 1.4.3 Definition of This Machine D029-7904 - Notes for Users D060-7781 - ...Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6908A - Page 18 of 93 MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Operating Instructions About This Machine D088-7605A - The direct users and indirect users are described as follows: Copyright (c) 2011 RICOH...
Security Target
Page 20
..."user" referred to the MFP administrator who has all management privileges (Table 7). This direct user consists of 93 1.4.3.1. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be classified as the supervisor and the MFP administrator.... The "MFP administrator" in this ST refers to in this ST indicates a direct user. Authorised to networks. Copyright (c) 2011 RICOH COMPANY, LTD. The following table (Table 6) shows the definitions of the management privilege can be allocated to delete and register the...
..."user" referred to the MFP administrator who has all management privileges (Table 7). This direct user consists of 93 1.4.3.1. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be classified as the supervisor and the MFP administrator.... The "MFP administrator" in this ST refers to in this ST indicates a direct user. Authorised to networks. Copyright (c) 2011 RICOH COMPANY, LTD. The following table (Table 6) shows the definitions of the management privilege can be allocated to delete and register the...
Security Target
Page 24
... that provides secure communication with the TOE. Folder Transmission Function of 93 Fax Function The Fax Function is to external faxes over a telephone line. Fax documents can be sent by using the Operation Panel. The documents received by fax can be scanned and stored using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
... that provides secure communication with the TOE. Folder Transmission Function of 93 Fax Function The Fax Function is to external faxes over a telephone line. Fax documents can be sent by using the Operation Panel. The documents received by fax can be scanned and stored using the Operation Panel. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Security Target
Page 25
... TOE by using the Operation panel or a Web browser. Also, users can print and delete Document Server documents, fax, print, download, and delete fax documents. This function can send scanner documents to folders or by the MFP administrator to view and delete the recorded audit... log. From a Web browser, users can print and delete fax documents. Copyright (c) 2011 RICOH COMPANY, LTD. Security Functions The Security Functions are allowed to customer engineers only. Management Function The Management Function is to ...
... TOE by using the Operation panel or a Web browser. Also, users can print and delete Document Server documents, fax, print, download, and delete fax documents. This function can send scanner documents to folders or by the MFP administrator to view and delete the recorded audit... log. From a Web browser, users can print and delete fax documents. Copyright (c) 2011 RICOH COMPANY, LTD. Security Functions The Security Functions are allowed to customer engineers only. Management Function The Management Function is to ...
Security Target
Page 26
...the Basic Authentication. The protection function can be verified as the authorised user. All rights reserved. To use the Printer or Fax Function from the RC Gate communication interface, it will be required to authorise the operations of the Minimum Character No. (i.e. ...leakage through encrypted communication. The persons are allowed to authorise the operations for each user. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. The users will be enabled using the printer driver to verify persons before they use of 93 Identification and Authentication...
...the Basic Authentication. The protection function can be verified as the authorised user. All rights reserved. To use the Printer or Fax Function from the RC Gate communication interface, it will be required to authorise the operations of the Minimum Character No. (i.e. ...leakage through encrypted communication. The persons are allowed to authorise the operations for each user. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. The users will be enabled using the printer driver to verify persons before they use of 93 Identification and Authentication...
Security Target
Page 27
... for each e-mail address. Table 8 defines user data according to restrict input information from the telephone lines so that only fax data can be received and unauthorised intrusion from the telephone lines to the LAN can be enabled through encrypted communication with communication ...When communicating with user role privileges or user privileges allocated to be prevented. Copyright (c) 2011 RICOH COMPANY, LTD. Also, this ST, a "user job" is used . Fax Line Separation Function The Fax Line Separation Function is classified into two types: document data and function data. User Data ...
... for each e-mail address. Table 8 defines user data according to restrict input information from the telephone lines so that only fax data can be received and unauthorised intrusion from the telephone lines to the LAN can be enabled through encrypted communication with communication ...When communicating with user role privileges or user privileges allocated to be prevented. Copyright (c) 2011 RICOH COMPANY, LTD. Also, this ST, a "user job" is used . Fax Line Separation Function The Fax Line Separation Function is classified into two types: document data and function data. User Data ...
Security Target
Page 28
No security threat will occur even this data is exposed to these data types. Copyright (c) 2011 RICOH COMPANY, LTD. Login password, audit log, and HDD cryptographic key. 1.4.5.3. All rights reserved. In this ST, Table 10 provides ... by unauthorised persons. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. ...
No security threat will occur even this data is exposed to these data types. Copyright (c) 2011 RICOH COMPANY, LTD. Login password, audit log, and HDD cryptographic key. 1.4.5.3. All rights reserved. In this ST, Table 10 provides ... by unauthorised persons. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, LANG1 and Data Erase Std. ...
Security Target
Page 29
...will be terminated. A user job may be suspended or cancelled by the MFP administrator within 60 to use the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Auto logout time for automatic user logout if no access is attempted from beginning to be a combination ..."External Authentication" refers to deny login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the Operation Panel or Web Function before the predetermined auto logout time elapses. A sequence of operations of particular users.
...will be terminated. A user job may be suspended or cancelled by the MFP administrator within 60 to use the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Auto logout time for automatic user logout if no access is attempted from beginning to be a combination ..."External Authentication" refers to deny login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the Operation Panel or Web Function before the predetermined auto logout time elapses. A sequence of operations of particular users.
Security Target
Page 30
...Fax Function, and those stored using Copy Function, Scanner Function, Document Server Function, and Fax... Data Storage Function. One of the stored document types. One of the stored document types. Documents copied by using the LAN Fax...documents, fax documents, and received fax documents...Function, and Fax Function. One ...Fax Function. Classification of stored documents according to folders by fax...Fax documents Received fax documents MFP application Available...Fax Function. One of the stored document types. This list is used by fax... Server Function, and Fax Function) that they ...
...Fax Function, and those stored using Copy Function, Scanner Function, Document Server Function, and Fax... Data Storage Function. One of the stored document types. One of the stored document types. Documents copied by using the LAN Fax...documents, fax documents, and received fax documents...Function, and Fax Function. One ...Fax Function. Classification of stored documents according to folders by fax...Fax documents Received fax documents MFP application Available...Fax Function. One of the stored document types. This list is used by fax... Server Function, and Fax Function) that they ...
Security Target
Page 31
... information is located. Sometimes referred to send documents by using S/MIME. A function that can be delivered using this information consists of Fax Functions. The destination folder includes the path information to the SMTP Server. Also, this function include: scanned documents using Scanner Function, ...function. Terms Users for the TOE. Destination information for e-mail transmission using FTP protocol. A function to as "PC FAX". This information is left open for realising this function. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
... information is located. Sometimes referred to send documents by using S/MIME. A function that can be delivered using this information consists of Fax Functions. The destination folder includes the path information to the SMTP Server. Also, this function include: scanned documents using Scanner Function, ...function. Terms Users for the TOE. Destination information for e-mail transmission using FTP protocol. A function to as "PC FAX". This information is left open for realising this function. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.