Ricoh Aficio MP 6001 SP Security Target - Page 52
Table 21: Subjects, Objects and Security Attributes b
View all Ricoh Aficio MP 6001 SP manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 52 highlights
Table 19: Rules on User Jobs (a) Page 51 of 87 Subject Operation on Object Rule Governing Access Normal user Deletion of user job process When the login user name of normal user associated with the normal user process matches the login user name of normal user associated with the user job, deletion of user job is allowed for that normal user process. FDP_ACF.1.3(a) The TSF shall explicitly authorise access of subjects to objects based on the following additional rules: [assignment: rules that explicitly authorise access of subjects to objects shown in Table 20]. Table 20: Rules That Explicitly Authorise Access (a) Subject MFP administrator process MFP administrator process Operations on Object Deletion of user document Rules That Explicitly Authorise Access Allows the MFP administrator process to delete all of the stored user documents. Deletion of user job Allows the MFP administrator process to delete all user jobs. FDP_ACF.1.4(a) The TSF shall explicitly deny access of subjects to objects based on the following additional rules: [assignment: rules that deny the operations on the user documents and user jobs when logged in with login user name of supervisor]. FDP_ACF.1(b) Security attribute based access control Hierarchical to: No other components. Dependencies: FDP_ACC.1 Subset access control FMT_MSA.3 Static attribute initialisation FDP_ACF.1.1(b) The TSF shall enforce the [assignment: TOE function access control SFP] to objects based on the following: [assignment: subjects or objects, and their corresponding security attributes shown in Table 21]. Table 21: Subjects, Objects and Security Attributes (b) Category Subject or Object Security Attributes Subject Normal user process Login user name of normal user, available function list Object MFP application Function type FDP_ACF.1.2(b) The TSF shall enforce the following rules to determine if an operation among controlled subjects and controlled objects is allowed: [assignment: operations on objects by subjects and rules governing access to operations shown in Table 22]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.