Ricoh Aficio MP 6001 SP Security Target - Page 77
Printer Function, Scanner Function, Fax Function and Document Server Function that the normal user
View all Ricoh Aficio MP 6001 SP manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 77 highlights
Page 76 of 87 - If the MFP application executed from printer driver is the Printer Function, it is allowed to store the Document Server user document. - If the MFP application executed from fax driver is the Fax Function, it is allowed to store the fax document. For access to the user document by the normal user process, the login user name of normal user associated with the normal user process and login user name of normal user in the document user list associated with the user document are checked, and if they match, the above-specified operations are allowed for the normal user process. The TOE associates the user job with the login user name of the person who newly created the user job as a security attribute. For access to the user job by the normal user process, the login user name of normal user associated with the normal user process and login user name of the person, who created the user job, associated with the user job are checked, and if they match, the access control is performed and it is allowed for the normal user process to delete the user job. The access control is also performed for the MFP administrator process, and it is allowed for the MFP administrator process to delete all of the stored user documents and created user jobs. For the supervisor process, the access control is performed and operations on all of the stored user documents and created user jobs are denied. FDP_ACF.1(b) (Security attribute based access control) The TOE defines the rule between the user role allowed to access the Copy Function, Printer Function, Scanner Function, Fax Function and Document Server Function, and operations allowed to each user role as shown in Table 21 and Table 22. It provides each user who is allowed to access to the MFP applications with the appropriate operation according to this rule. The TOE associates the normal user process with the login user name of normal user, and available function list (the list of functions that the normal user is allowed to access) as a security attribute. For access to the MFP application by the normal user process, the TOE checks if the available function list associated with the normal user process contains the function type (any of the following: Copy Function, Printer Function, Scanner Function, Fax Function and Document Server Function) that the normal user attempts to use as the attribute of the MFP application. If it does, the access control is performed and the normal user process is allowed to execute the function. It is always allowed to execute the fax reception function that if it is operated using administrator permission. FDP_RIP.1 (Subset residual information protection) When a user deletes a user document, the TOE overwrites the area on the HDD where the digital image data of the user document exists with the specific pattern. It also overwrites the area on the HDD where the temporary document and its fragments that are created during the user job execution exist with the specific pattern after the user job completes. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.