Ricoh Aficio MP 2852 Security Target - Page 54

Page 53 of 91 FDP_ACF.1.1(a) The TSF shall enforce the [assignment: document access control SFP] to objects based on the following: [assignment: subjects or objects, and their corresponding security attributes shown in Table 1766]. Table 176 : Subjects, Objects and Security Attributes (a) Category Subject Subjects or Objects Normal user process Subject Subject Subject Object MFP administrator process Supervisor process RC Gate process Document data Object User job Security Attributes - Login user name of normal user - User role - User role - User role - User role - Document data attribute - Document user list - Login user name of normal user FDP_ACF.1.2(a) The TSF shall enforce the following rules to determine if an operation among controlled subjects and controlled objects is allowed: [assignment: rules to control operations among subjects and objects shown in Table 18]. Table 18 : Rules to Control Operations on Document Data and User Jobs (a) Objects Document data Document data Document data Document data Document data Document data Document Data Attributes +PRT Operations Subjects Delete Normal user process +PRT Read Normal user process +SCN Delete Normal user process +SCN Read Normal user process +FAXOUT Delete Normal user process +FAXOUT Read Normal user process Rules to control Operations Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.