HP Color LaserJet 4730 HP LaserJet MFP and Color MFP Products - Configuring Se - Page 9

Tampering with Data, Repudiation - parts

Get HP Color LaserJet 4730 - Multifunction Printer PDF manuals and user guides View all HP Color LaserJet 4730 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 9 highlights

• Configure authentication. • Configure the administrator password. • Configure SNMPv3. Tampering with Data Tampering with data can include any method of changing, destroying, or adding to information that is flowing to or from an MFP or stored on it. Here are some ways tampering with data can relate to MFPs: • Canceling another person's job. Someone could use a remote access tool to cancel pending jobs. The person who sent a cancelled job gets no warning; only part or none of the job is printed. • Intercepting a print job before it reaches the MFP, altering it, and sending it on to the MFP • Intercepting remote configuration data, such as communications between Web Jetadmin and the MFP, to get passwords and other information You can minimize the risks from data tampering in the following ways: • Disable Cancel Job button. • Disable Go (Pause) button. • Configure SNMPv3. • Prevent unnecessary remote access: close down all unused ports and protocols. • Configure HTTPS for EWS access. Repudiation Repudiation is using an MFP without leaving usage information. This includes preventing the MFP from logging data or bypassing security checks such as user authentication. This also includes finding ways to use an MFP with out paying by bypassing job accounting software. Here are some ways repudiation can relate to MFPs: • Accessing usage logs to delete entries • Removing origination information from file metadata • Bypassing user authentication • Using remote management software to access the MFP You can minimize the risks of repudiation in the following ways: • Install Jetdirect 635n Print Servers to encrypt the data stream to include log data and file metadata (look for this product at hp.com or contact your hp product supplier). • Close unused ports and protocols. • Save copies of log data at a separate location • Add security solutions such as swipe-card readers and thumbprint readers HP LaserJet and Color LaserJet MFP Security Checklist 9

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
HP LaserJet and Color LaserJet MFP Security Checklist
9
Configure authentication.
Configure the administrator password.
Configure SNMPv3.
Tampering with Data
Tampering with data can include any method of changing, destroying, or adding to information
that is flowing to or from an MFP or stored on it. Here are some ways tampering with data can
relate to MFPs:
Canceling another person's job. Someone could use a remote access tool to cancel
pending jobs. The person who sent a cancelled job gets no warning; only part or none of
the job is printed.
Intercepting a print job before it reaches the MFP, altering it, and sending it on to the
MFP
Intercepting remote configuration data, such as communications between Web Jetadmin
and the MFP, to get passwords and other information
You can minimize the risks from data tampering in the following ways:
Disable
Cancel Job
button.
Disable
Go
(Pause) button.
Configure SNMPv3.
Prevent unnecessary remote access: close down all unused ports and protocols.
Configure HTTPS for EWS access.
Repudiation
Repudiation is using an MFP without leaving usage information. This includes preventing the
MFP from logging data or bypassing security checks such as user authentication. This also
includes finding ways to use an MFP with out paying by bypassing job accounting software. Here
are some ways repudiation can relate to MFPs:
Accessing usage logs to delete entries
Removing origination information from file metadata
Bypassing user authentication
Using remote management software to access the MFP
You can minimize the risks of repudiation in the following ways:
Install Jetdirect 635n Print Servers to encrypt the data stream to include log data and file
metadata (look for this product at hp.com or contact your hp product supplier).
Close unused ports and protocols.
Save copies of log data at a separate location
Add security solutions such as swipe-card readers and thumbprint readers