Ricoh Aficio MP 3352 Security Target - Page 55

Document data +FAXIN Delete Document data +FAXIN Read Document data +CPY Document data +CPY Document data +DSR Delete Read Delete Document data +DSR Read User jobs No setting of document data attribute Delete Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Page 54 of 91 Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process with login user name of normal user, which is the security attribute of user jobs. FDP_ACF.1.3(a) The TSF shall explicitly authorise access of subjects to objects based on the following additional rules: [assignment: rules to control operations among subjects and objects shown in Table 19]. Table 19 : Additional Rules to Control Operations on Document Data and User Jobs (a) Objects Document data Document data Document data Document Data Attributes +PRT +FAXIN +DSR Operations Subjects Delete Delete Delete MFP administrator process MFP administrator process MFP administrator process Rules to control Operations Allows. Allows. Allows. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.