Security Target
Page 9
All rights reserved. Copyright (c) 2012 RICOH COMPANY, LTD. Fax RemoteFax NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL OptionPCLFont Data Erase Std GWFCU3-23 (WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Ctlr 02.00.00 01.00.00 1.04 1.02 1.01 1....
All rights reserved. Copyright (c) 2012 RICOH COMPANY, LTD. Fax RemoteFax NetworkDocBox Web Support Web Uapl animation Scanner Printer PCL OptionPCLFont Data Erase Std GWFCU3-23 (WW) Engine OpePanel LANG0 LANG1 Ic Key Ic Ctlr 02.00.00 01.00.00 1.04 1.02 1.01 1....
Security Target
Page 11
...its folders. RC Gate An IT device used for the MFP using a Web browser installed on the client computer, - Copyright (c) 2012 RICOH COMPANY, LTD. Various settings for @Remote. Operation of documents using the fax driver installed on the client computer, - FTP Server A... line for @Remote is applied. This server is only used by communicating with external faxes. The function of documents using the printer driver installed on the client computer. SMB Server A server used when External Authentication is to communicate with the external authentication server ...
...its folders. RC Gate An IT device used for the MFP using a Web browser installed on the client computer, - Copyright (c) 2012 RICOH COMPANY, LTD. Various settings for @Remote. Operation of documents using the fax driver installed on the client computer, - FTP Server A... line for @Remote is applied. This server is only used by communicating with external faxes. The function of documents using the printer driver installed on the client computer. SMB Server A server used when External Authentication is to communicate with the external authentication server ...
Security Target
Page 14
... to the Controller Board, and operates the Scanner Engine or Printer Engine according to the Controller Board. 2. It stores documents, login user names and login passwords of 91 and digital signature. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. Page 13 of normal users.... Software. Fax Controller Unit (FCU) The Fax Controller Unit is one of the TOE and are installed: System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. The Operation Panel Control Software performs the ...
... to the Controller Board, and operates the Scanner Engine or Printer Engine according to the Controller Board. 2. It stores documents, login user names and login passwords of 91 and digital signature. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. Page 13 of normal users.... Software. Fax Controller Unit (FCU) The Fax Controller Unit is one of the TOE and are installed: System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. The Operation Panel Control Software performs the ...
Security Target
Page 15
... into or removed from the client computer. Note for HDD encryption realisation. Quick Reference Printer Guide M026-7429 - Guidance document sets will be inserted into the slot in the ... with functions for Users M026-7438 - Quick Reference Scanner Guide M026-7434 Copyright (c) 2012 RICOH COMPANY, LTD. Page 14 of 91 Ic Ctlr The Ic Ctlr is an external interface ... individual TOE component. All rights reserved. C230/C230SR/C240/C240SR LD130C/LD130CSR/LD140C/LD140CSR Aficio MP C300/C300SR/C400/C400SR Operating Instructions About This Machine M026-7401 - Network Unit ...
... into or removed from the client computer. Note for HDD encryption realisation. Quick Reference Printer Guide M026-7429 - Guidance document sets will be inserted into the slot in the ... with functions for Users M026-7438 - Quick Reference Scanner Guide M026-7434 Copyright (c) 2012 RICOH COMPANY, LTD. Page 14 of 91 Ic Ctlr The Ic Ctlr is an external interface ... individual TOE component. All rights reserved. C230/C230SR/C240/C240SR LD130C/LD130CSR/LD140C/LD140CSR Aficio MP C300/C300SR/C400/C400SR Operating Instructions About This Machine M026-7401 - Network Unit ...
Security Target
Page 17
... for Administrators Security Reference Aficio MP C300/MP C300SR/MP C400/MP C400SR MP C300/MP C300SR/MP C400/MP C400SR M026-6910 - All rights reserved. CE Marking Traceability Information (For EU Countries Only) AA00-0253A - Safety Information A232-8561A - Quick Reference Printer Guide M026-7428 - ...C400SR A M026-6906 - MP C300/C300SR/C400/C400SR MP C300/C300SR/C400/C400SR Aficio MP C300/C300SR/C400/C400SR Operating Instructions About This Machine M026-7403 - Notes for Users M026-7438 Copyright (c) 2012 RICOH COMPANY, LTD. Page 16 of 91 - Help 83NHBVENZ1.00 v118 FCU - ...
... for Administrators Security Reference Aficio MP C300/MP C300SR/MP C400/MP C400SR MP C300/MP C300SR/MP C400/MP C400SR M026-6910 - All rights reserved. CE Marking Traceability Information (For EU Countries Only) AA00-0253A - Safety Information A232-8561A - Quick Reference Printer Guide M026-7428 - ...C400SR A M026-6906 - MP C300/C300SR/C400/C400SR MP C300/C300SR/C400/C400SR Aficio MP C300/C300SR/C400/C400SR Operating Instructions About This Machine M026-7403 - Notes for Users M026-7438 Copyright (c) 2012 RICOH COMPANY, LTD. Page 16 of 91 - Help 83NHBVENZ1.00 v118 FCU - ...
Security Target
Page 18
... Machine in this ST indicates a direct user. Operating Instructions Notes on Electrical & Electronic Equipment D127-6601 - All rights reserved. Quick Reference Printer Guide M026-7429 - Notes for Users M026-7439 - Quick Reference Fax Guide D483-8505 - This direct user consists of Users This section ... Compliant with IEEE Std. 2600.1TM-2009 M026-7442 - Copyright (c) 2012 RICOH COMPANY, LTD. About the Software on the CD-ROM M080-8547 - SOFTWARE LICENSE AGREEMENT D376-7905 - Manuals for Administrators Aficio MP C300/MP C300SR/MP C400/MP C400SR MP C300/MP C300SR/MP C400...
... Machine in this ST indicates a direct user. Operating Instructions Notes on Electrical & Electronic Equipment D127-6601 - All rights reserved. Quick Reference Printer Guide M026-7429 - Notes for Users M026-7439 - Quick Reference Fax Guide D483-8505 - This direct user consists of Users This section ... Compliant with IEEE Std. 2600.1TM-2009 M026-7442 - Copyright (c) 2012 RICOH COMPANY, LTD. About the Software on the CD-ROM M080-8547 - SOFTWARE LICENSE AGREEMENT D376-7905 - Manuals for Administrators Aficio MP C300/MP C300SR/MP C400/MP C400SR MP C300/MP C300SR/MP C400...
Security Target
Page 19
... user name and can be used. A user who has all management privileges (Table 6). Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be registered and selectively authorised to perform user management, machine management, network management, and... TOE management. Authorised to normal users. This privilege allows configuration of device settings and view of MFP Copyright (c) 2012 RICOH COMPANY, LTD. Indirect User Responsible manager of the audit log. According to its roles, the administrator can be classified ...
... user name and can be used. A user who has all management privileges (Table 6). Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be registered and selectively authorised to perform user management, machine management, network management, and... TOE management. Authorised to normal users. This privilege allows configuration of device settings and view of MFP Copyright (c) 2012 RICOH COMPANY, LTD. Indirect User Responsible manager of the audit log. According to its roles, the administrator can be classified ...
Security Target
Page 21
... Operation Panel or a Web browser. Folder transmission can print or delete printer documents according to the guidance document, users first install the specified printer driver on printing methods. Copyright (c) 2012 RICOH COMPANY, LTD. Scanner documents can be sent to scan paper documents by... stored documents from a Web browser. - If locked print, hold print, and sample print. Page 20 of 91 Printer Function The Printer Function of printer documents by the TOE differs depending on their own client computers, and then use this evaluation. - E-mail transmission is...
... Operation Panel or a Web browser. Folder transmission can print or delete printer documents according to the guidance document, users first install the specified printer driver on printing methods. Copyright (c) 2012 RICOH COMPANY, LTD. Scanner documents can be sent to scan paper documents by... stored documents from a Web browser. - If locked print, hold print, and sample print. Page 20 of 91 Printer Function The Printer Function of printer documents by the TOE differs depending on their own client computers, and then use this evaluation. - E-mail transmission is...
Security Target
Page 24
.... Page 23 of 91 Identification and Authentication Function The Identification and Authentication Function is to verify persons before they use the Printer or Fax Function from the RC Gate communication interface, it will be verified only by Identification and Authentication Function. The users...so that the lockout function can be enabled and login password quality can be enabled through encrypted Copyright (c) 2012 RICOH COMPANY, LTD. If the Printer Function is used to register passwords that the user can be verified whether the communication request is to authorise the ...
.... Page 23 of 91 Identification and Authentication Function The Identification and Authentication Function is to verify persons before they use the Printer or Fax Function from the RC Gate communication interface, it will be verified only by Identification and Authentication Function. The users...so that the lockout function can be enabled and login password quality can be enabled through encrypted Copyright (c) 2012 RICOH COMPANY, LTD. If the Printer Function is used to register passwords that the user can be verified whether the communication request is to authorise the ...
Security Target
Page 26
.... The components that are for management of the document data of user data are classified as "TSF protected data". Copyright (c) 2012 RICOH COMPANY, LTD. Table 8 defines TSF data according to as "TSF confidential data". In this ST, "confidential data", listed below ... data and confidential data. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0...
.... The components that are for management of the document data of user data are classified as "TSF protected data". Copyright (c) 2012 RICOH COMPANY, LTD. Table 8 defines TSF data according to as "TSF confidential data". In this ST, "confidential data", listed below ... data and confidential data. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0...
Security Target
Page 27
...can be a combination of three or more types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the Operation Panel or Web Function before the predetermined auto logout time elapses. An abbreviation of... Setting Basic Authentication External Authentication HDD User job Documents Document data attributes +PRT Definitions An identifier assigned to end. Copyright (c) 2012 RICOH COMPANY, LTD. A sequence of operations of characters and symbols specified above . Level 2 requires a password to use the TOE....
...can be a combination of three or more types of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from the Operation Panel or Web Function before the predetermined auto logout time elapses. An abbreviation of... Setting Basic Authentication External Authentication HDD User job Documents Document data attributes +PRT Definitions An identifier assigned to end. Copyright (c) 2012 RICOH COMPANY, LTD. A sequence of operations of characters and symbols specified above . Level 2 requires a password to use the TOE....
Security Target
Page 28
... Panel is selected as the printing method for each function the TOE provides: Copy Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. Documents copied by users to folders, or downloaded on the client computer from the client computer, .... One of the stored document types. One of a touch screen LCD and key switches. Copyright (c) 2012 RICOH COMPANY, LTD. This includes Document Server documents, printer documents, scanner documents, fax documents, and received fax documents. Documents received by using Fax Function. Consists of ...
... Panel is selected as the printing method for each function the TOE provides: Copy Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. Documents copied by users to folders, or downloaded on the client computer from the client computer, .... One of the stored document types. One of a touch screen LCD and key switches. Copyright (c) 2012 RICOH COMPANY, LTD. This includes Document Server documents, printer documents, scanner documents, fax documents, and received fax documents. Documents received by using Fax Function. Consists of ...
Security Target
Page 31
...the devices the HCDs have the interface to the security objectives in the PP and security objectives of Copy Function, Scanner Function, Printer Function or Fax Function. Defining all security problems in chapter 4 are independent from the requirements of the PP conformance. This, ... in chapter 3 and security objectives in the PP, P.STORAGE_ENCRYPTION and P.RCGATE.COMM.PROTECT were augmented to the PP. Copyright (c) 2012 RICOH COMPANY, LTD. Also, the protected assets are the rationale for readers to the PP. 2600.1-SMI conformant Page 30 of 91 2.4 Conformance...
...the devices the HCDs have the interface to the security objectives in the PP and security objectives of Copy Function, Scanner Function, Printer Function or Fax Function. Defining all security problems in chapter 4 are independent from the requirements of the PP conformance. This, ... in chapter 3 and security objectives in the PP, P.STORAGE_ENCRYPTION and P.RCGATE.COMM.PROTECT were augmented to the PP. Copyright (c) 2012 RICOH COMPANY, LTD. Also, the protected assets are the rationale for readers to the PP. 2600.1-SMI conformant Page 30 of 91 2.4 Conformance...
Security Target
Page 66
...the correct operation of [selection: [assignment: the MFP Control Software, FCU Control Software]]. Dependencies: No dependencies. Copyright (c) 2012 RICOH COMPANY, LTD. FPT_TST.1.3 The TSF shall provide authorised users with RC Gate]. 6.1.8 Class FTP: Trusted path/channels FTP_ITC.1 ... shall terminate an interactive session after a [assignment: elapsed time of auto logout, completion of document data reception from the printer driver, completion of document data reception from being forwarded without further processing by the TSF to [assignment: the LAN and telephone...
...the correct operation of [selection: [assignment: the MFP Control Software, FCU Control Software]]. Dependencies: No dependencies. Copyright (c) 2012 RICOH COMPANY, LTD. FPT_TST.1.3 The TSF shall provide authorised users with RC Gate]. 6.1.8 Class FTP: Trusted path/channels FTP_ITC.1 ... shall terminate an interactive session after a [assignment: elapsed time of auto logout, completion of document data reception from the printer driver, completion of document data reception from being forwarded without further processing by the TSF to [assignment: the LAN and telephone...
Security Target
Page 73
...who attempt to use the TOE from disclosure. FIA_AFL.1 does not allow the applicable normal user to use the TOE from the printer driver or fax driver. The TOE terminates the session with the security policies so that satisfy the minimum character number and password ... Gate communication, and FIA_UAU.2 authenticates RC Gate. (2) Allow the successfully identified and authenticated user to use the TOE functions. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. FIA_ATD.1 and FIA_USB.1 manage the access procedures to the protected assets of the users who are defined in...
...who attempt to use the TOE from disclosure. FIA_AFL.1 does not allow the applicable normal user to use the TOE from the printer driver or fax driver. The TOE terminates the session with the security policies so that satisfy the minimum character number and password ... Gate communication, and FIA_UAU.2 authenticates RC Gate. (2) Allow the successfully identified and authenticated user to use the TOE functions. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved. FIA_ATD.1 and FIA_USB.1 manage the access procedures to the protected assets of the users who are defined in...
Security Target
Page 81
...entered login password matches with the one pre-registered by the MFP administrator or supervisor in the TOE. Verification methods for confirmation. Copyright (c) 2012 RICOH COMPANY, LTD. When the entered login user name is the login user name of a normal user, MFP administrator, or supervisor, the TOE ...identifies and authenticates a user by checking the login user name and login password entered by the user. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from each driver by a user. When the TOE...
...entered login password matches with the one pre-registered by the MFP administrator or supervisor in the TOE. Verification methods for confirmation. Copyright (c) 2012 RICOH COMPANY, LTD. When the entered login user name is the login user name of a normal user, MFP administrator, or supervisor, the TOE ...identifies and authenticates a user by checking the login user name and login password entered by the user. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from each driver by a user. When the TOE...
Security Target
Page 82
...Each User Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2012 RICOH COMPANY, LTD. If a user name is locked out, the user with that consecutively result in failure using the login user name ... is applied, the TOE counts the number of identification and authentication attempts that user name is not allowed to use the TOE from the printer driver. Page 81 of 91 FIA_USB.1, FIA_ATD.1, and FMT_SMR.1 If a user is identified and authenticated as a result of checking FIA_UAU.1(a), ...
...Each User Role User Roles (Locked out Users) Normal user Supervisor MFP administrator Unlocking Administrators MFP administrator MFP administrator Supervisor Copyright (c) 2012 RICOH COMPANY, LTD. If a user name is locked out, the user with that consecutively result in failure using the login user name ... is applied, the TOE counts the number of identification and authentication attempts that user name is not allowed to use the TOE from the printer driver. Page 81 of 91 FIA_USB.1, FIA_ATD.1, and FMT_SMR.1 If a user is identified and authenticated as a result of checking FIA_UAU.1(a), ...
Security Target
Page 84
... all documents. When the MFP administrator or a normal user logs in the List Document Server documents Fax transmission documents Printer documents Scanner documents Fax transmission documents Fax reception documents Operations displayed on the Menu Print Delete Print Delete Print Delete E-...mail transmission Folder transmission Delete Fax transmission Folder transmission Print Delete Print Delete Copyright (c) 2012 RICOH COMPANY, LTD. Table 36 : Stored Documents Access Control Rules for Normal Users I/F to be Used Operation Panel Operation Panel...
... all documents. When the MFP administrator or a normal user logs in the List Document Server documents Fax transmission documents Printer documents Scanner documents Fax transmission documents Fax reception documents Operations displayed on the Menu Print Delete Print Delete Print Delete E-...mail transmission Folder transmission Delete Fax transmission Folder transmission Print Delete Print Delete Copyright (c) 2012 RICOH COMPANY, LTD. Table 36 : Stored Documents Access Control Rules for Normal Users I/F to be Used Operation Panel Operation Panel...
Security Target
Page 85
Copyright (c) 2012 RICOH COMPANY, LTD. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax Function Page 84 of a user job is attempted by the owner or MFP ...Panel is a user job owner or MFP administrator and a cancellation of 91 Document Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (E-mail transmission and folder transmission are authorised for ...
Copyright (c) 2012 RICOH COMPANY, LTD. Web browser Document Server Function Web browser Document Server Function Web browser Document Server Function Web browser Printer Function Web browser Fax Function Page 84 of a user job is attempted by the owner or MFP ...Panel is a user job owner or MFP administrator and a cancellation of 91 Document Server documents Scanner documents Fax transmission documents Printer documents Fax reception documents Print Delete E-mail transmission Folder transmission Download Delete (E-mail transmission and folder transmission are authorised for ...
Security Target
Page 86
... any existing residual data is that of MFP administrator, the user can operate only functions that corresponds to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. FTP_ITC.1 The encrypted communications provided by the TOE. If the user... deletes document data, the TOE Copyright (c) 2012 RICOH COMPANY, LTD. If the role is discovered. Table 37 shows the encrypted communications provided by the TOE differ depending on the HDD...
... any existing residual data is that of MFP administrator, the user can operate only functions that corresponds to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. FTP_ITC.1 The encrypted communications provided by the TOE. If the user... deletes document data, the TOE Copyright (c) 2012 RICOH COMPANY, LTD. If the role is discovered. Table 37 shows the encrypted communications provided by the TOE differ depending on the HDD...