Home » Lexmark Manuals » Network Security & Firewall Devices » Lexmark 10G0149 » Manual Viewer

Lexmark 10G0149 Security Target

Lexmark 10G0149 - PrintCryption Card Encryption Module Manual

UPC - 734646142786

View all Lexmark 10G0149 manuals

Add to My Manuals
Save this manual to your list of manuals

Lexmark 10G0149 manual content summary:

Lexmark 10G0149 | Security Target - Page 1
Lexmark PrintCryptionTM (Firmware Version 1.3.1) FIPS 140-2 Non-Proprietary Security Policy Level 1 Validation Version 0.95 April 2007 © Copyright 2006 Lexmark International Inc. This document may be freely reproduced and distributed whole and intact including this Copyright Notice.
Lexmark 10G0149 | Security Target - Page 2
Table of Contents INTRODUCTION...3 PURPOSE...3 REFERENCES...3 DOCUMENT ORGANIZATION ...3 LEXMARK PRINTCRYPTIONTM 4 OVERVIEW...4 MODULE SPECIFICATION ...4 MODULE INTERFACES...6 ROLES AND SERVICES...7 Crypto Officer Role ...7 User Role...8 PHYSICAL SECURITY ...8 OPERATIONAL ENVIRONMENT ...9
Lexmark 10G0149 | Security Target - Page 3
(CMVP) website at http://csrc.nist.gov/cryptval/. The Lexmark PrintCryptionTM is referred to in this document as PrintCryption, PrintCryption : ƒ Vendor Evidence document ƒ Finite State Machine ƒ Other supporting documentation as additional references With the exception of this Non-Proprietary
Lexmark 10G0149 | Security Target - Page 4
it is installed in Lexmark printers using a Downloaded Emulator Card (DLE), a serial interface PCB board that plugs into the printer. The DLE card T644: W840: P/N 10G0149 P/N 16N3204 P/N 19E0123 P/N 12N1253 P/N 20G0740 P/N 25A0034 Page 4 of 17 © Copyright 2006 Lexmark International Inc. This
Lexmark 10G0149 | Security Target - Page 5
Specification 1 2 Cryptographic Module Ports and Interfaces 1 3 Roles, Services, and Authentication 1 4 Finite State Model 1 5 Physical for use on Lexmark printers that are running Linux operating system. Once the PrintCryption firmware is installed in the printer, the printer must use
Lexmark 10G0149 | Security Target - Page 6
Lexmark printers including mono-color printers (T630, T632, T634, W820, T640, T642, T644, W840), Color printers (C534, C760, C762, C912, C920, C772, C782, C935) and MFP printers the only means of accessing the module's services. Data inputs are service requests on the TCP ports. Control inputs are
Lexmark 10G0149 | Security Target - Page 7
Logical Interfaces Roles and Services The module supports two roles, a Service Description Input Output CSP Install Assemble the printer(s); Install PrintCryptionTM firmware card; Install printer driver on host PC Command Result of installation None Page 7 of 17 © Copyright 2006 Lexmark
Lexmark 10G0149 | Security Target - Page 8
Status output RSA public key AES session key Table 4 - User Services, Descriptions, Inputs and Outputs Type of Access to CSP Read/Write Read cryptographic module. The module runs on Lexmark printers listed in Module Specification section. The printers are made of all production-grade components
Lexmark 10G0149 | Security Target - Page 9
default. The operating system is used as an embedded OS within the Lexmark printers, and there is no direct access to the OS provided. Cryptographic uses a 1024bit key length providing 80-bits of security. The module supports the following critical security parameters: Key or CSP AES Session Key
Lexmark 10G0149 | Security Target - Page 10
after the connection is closed or by rebooting the module. The module provides no service to erase or discard the RSA key pair. The key pair is erased by conditions are met. Page 10 of 17 © Copyright 2006 Lexmark International Inc. This document may be freely reproduced and distributed whole
Lexmark 10G0149 | Security Target - Page 11
, and logging. Mitigation of Other Attacks The PrintCryption module does not employ security mechanisms to mitigate specific attacks. Page 11 of 17 © Copyright 2006 Lexmark International Inc. This document may be freely reproduced and distributed whole and intact including this Copyright Notice.
Lexmark 10G0149 | Security Target - Page 12
for further instructions on installing the card. 3. Turn the printer on. a. If the printer displays the message 41 - Unsupported Firmware Card, then the installed card is not compatible for the printer. Turn off the printer and remove the card. Page 12 of 17 © Copyright 2006 Lexmark International
Lexmark 10G0149 | Security Target - Page 13
instructions on installing the software. The setup executable, once launched, will: a. Ask for confirmation of the End-User License Agreement. b. Present a small README, which explains that after installation, the Crypto Officer can add a new port to their printer driver that will support Lexmark
Lexmark 10G0149 | Security Target - Page 14
module, the User should be careful to use secured printing services as needed. Uses can select the AES encryption key length, block length and mode using the printer property. 1. Open the printer folder, right click on the desired printer and select Properties. 2. Navigate to Port tab and press the
Lexmark 10G0149 | Security Target - Page 15
sizes, and mode of operation are as follows: • Key Length: 128, 192, or 256 bit. • Block Length: 128 bit. Page 15 of 17 © Copyright 2006 Lexmark International Inc. This document may be freely reproduced and distributed whole and intact including this Copyright Notice.
Lexmark 10G0149 | Security Target - Page 16
decode an encrypted packet. Users also can view the communication to the printer via PrintCryption Log Viewer, installed during the installation session, which can be started by START → Programs → Lexmark → PrintCryption → PrintCryption Log Viewer Figure 5 - PrintCryption Log Viewer Users can see
Lexmark 10G0149 | Security Target - Page 17
Internet Protocol Known Answer Test Light Emitting Diode Line Printer Control Message Authentication Code National Institute of Standards and Control Protocol Visual Source Safe Page 17 of 17 © Copyright 2006 Lexmark International Inc. This document may be freely reproduced and distributed whole and