Ricoh Aficio MP 6001 SP Security Target - Page 23

Audit Function, Identification and Authentication Function, Document Access Control Function, Use-of

Get Ricoh Aficio MP 6001 SP PDF manuals and user guides View all Ricoh Aficio MP 6001 SP manuals
Add to My Manuals
Save this manual to your list of manuals

Page 23 highlights

1.4.4.2. Security Functions The Security Functions are described as follows: Page 22 of 87 - Audit Function The Audit Function is to generate the audit log when security events occur so that the operation status of the TOE can be checked and any security intrusion can be detected. Also, this function can be used only by the MFP administrator to view and delete the recorded audit log. To view and delete the audit log, the Web Function will be used. - Identification and Authentication Function The Identification and Authentication Function is to identify and authenticate persons when they use the TOE, to lockout persons who consecutively fail authentication attempts, and to protect the authentication feedback area where the login password is entered using the Operation Panel. To use the Printer or Fax Function from the printer or fax driver, users will be identified and authenticated by entering the login user name and login password received from the printer or fax drivers. - Document Access Control Function The Document Access Control Function is to control the operations for user documents and user jobs by the authorised TOE users who are authenticated by Identification and Authentication Function. It controls user's operation on the user documents and user jobs based on the privileges for the user role, or the operation permissions for each user. - Use-of-Feature Restriction Function The Use-of-Feature Restriction Function is to control the operations of functions (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) by the authorised TOE users who are authenticated by Identification and Authentication Function. It controls the use of functions based on the privileges for the user role, or the operation permissions for each user. - Network Protection Function The Network Protection Function is to prevent information leakage through wiretapping on the LAN and detect data tampering. The protection function can be enabled using a Web browser to specify the URL for possible encrypted communication. If the Printer Function is used, the protection function can be enabled using the printer driver to specify encrypted communication. If the folder transmission function of Scanner Function is used, the protection function can be enabled through encrypted communication. If the e-mail transmission function of Scanner Function is used, the protection function can be enabled through encrypted communication with communication requirements that are specified for each e-mail address. If the LAN-Fax Transmission Function of Fax Function is used, the protection function can be enabled using the fax driver to specify encrypted communication. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
Page 22 of
87
1.4.4.2.
Security Functions
The Security Functions are described as follows:
- Audit Function
The Audit Function is to generate the audit log when security events occur so that the operation status of the
TOE can be checked and any security intrusion can be detected. Also, this function can be used only by the
MFP administrator to view and delete the recorded audit log. To view and delete the audit log, the Web
Function will be used.
- Identification and Authentication Function
The Identification and Authentication Function is to identify and authenticate persons when they use the
TOE, to lockout persons who consecutively fail authentication attempts, and to protect the authentication
feedback area where the login password is entered using the Operation Panel. To use the Printer or Fax
Function from the printer or fax driver, users will be identified and authenticated by entering the login user
name and login password received from the printer or fax drivers.
- Document Access Control Function
The Document Access Control Function is to control the operations for user documents and user jobs by the
authorised TOE users who are authenticated by Identification and Authentication Function. It controls user's
operation on the user documents and user jobs based on the privileges for the user role, or the operation
permissions for each user.
- Use-of-Feature Restriction Function
The Use-of-Feature Restriction Function is to control the operations of functions (Copy Function, Printer
Function, Scanner Function, Document Server Function and Fax Function) by the authorised TOE users who
are authenticated by Identification and Authentication Function. It controls the use of functions based on the
privileges for the user role, or the operation permissions for each user.
- Network Protection Function
The Network Protection Function is to prevent information leakage through wiretapping on the LAN and
detect data tampering. The protection function can be enabled using a Web browser to specify the URL for
possible encrypted communication. If the Printer Function is used, the protection function can be enabled
using the printer driver to specify encrypted communication. If the folder transmission function of Scanner
Function is used, the protection function can be enabled through encrypted communication. If the e-mail
transmission function of Scanner Function is used, the protection function can be enabled through encrypted
communication with communication requirements that are specified for each e-mail address. If the LAN-Fax
Transmission Function of Fax Function is used, the protection function can be enabled using the fax driver to
specify encrypted communication.
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.