Ricoh Aficio MP 8001 sec - Page 75

By the above, FMT_MSA.1 Management of security attributes, FMT_MTD.1 Management of TSF data

Get Ricoh Aficio MP 8001 PDF manuals and user guides View all Ricoh Aficio MP 8001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 75 highlights

Page 74 of 82 Operations on general user information Query general user information registered to Address Book (general user ID, S/MIME user information) Delete general user information registered to Address Book (general user ID, authentication information of general users, S/MIME user information) Delete general user information registered to Address Book (S/MIME user information) Authorised user General users User administrators General users identified as the S/MIME users When new general user information is created, the new general user ID will be set to the value of the document data default ACL as the document file owner, and authorised operations on the document data will be reading document data and modifying the document data ACL. By the above, FMT_MSA.1 (Management of security attributes), FMT_MTD.1 (Management of TSF data), FMT_SMF.1 (Specification of management functions), and FMT_SMR.1 (Security roles) are satisfied. 7.1.4.5 Management of Machine Control Data Management of machine control data allows setting of machine control data by specified users only. The TOE allows only specified users to use the functions that set the machine control data from specified operation interfaces. Table 33 shows for each item of machine control data, the range of values that can be set, the operations available, the authorised setter, and the operation interfaces allowed by the TOE. The TOE also allows the user administrator and general users to query the destination information when using the Deliver to Folder function. Table 33: Administrators authorised to specify machine control data Machine control data items Number of Attempts before Lockout Setting for Lockout Release Timer Lockout time Minimum Password Length Password Complexity Setting Date and time of system clock Range of setting value An integer 1-5 (times) Active or Inactive 1-9999 (minutes) An integer 8-32 (digits) Level 1 or Level 2 Date, time (hour, minute, second) Operations Query, modify Query, modify Query, modify Query, modify Query, modify Query, modify Authorised setter M achine administrators M achine administrators M achine administrators User administrators User administrators M achine administrators Operation interfaces Web Service Function Web Service Function Web Service Function Operation Panel Operation Panel Operation Panel, Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
Page 74 of 82
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
Operations on general user information
Authorised user
Query general user information registered to Address
Book
(general user ID, S/MIME user information)
General users
Delete general user information registered to Address
Book
(general user ID, authentication information of general
users, S/MIME user information)
User administrators
Delete general user information registered to Address
Book
(S/MIME user information)
General users identified as the S/MIME
users
When new general user information is created, the new general user ID will be set to the value of the
document data default ACL as the document file owner, and authorised operations on the document data
will be reading document data and modifying the document data ACL.
By the above, FMT_MSA.1 (Management of security attributes), FMT_MTD.1 (Management of TSF data),
FMT_SMF.1 (Specification of management functions), and FMT_SMR.1 (Security roles) are satisfied.
7.1.4.5
Management of Machine Control Data
Management of machine control data allows setting of machine control data by specified users only.
The TOE allows only specified users to use the functions that set the machine control data from specified
operation interfaces. Table 33 shows for each item of machine control data, the range of values that can be
set, the operations available, the authorised setter, and the operation interfaces allowed by the TOE.
The TOE also allows the user administrator and general users to query the destination information when
using the Deliver to Folder function.
Table 33: Administrators authorised to specify machine control data
Machine control
data items
Range of setting
value
Operations
Authorised setter
Operation
interfaces
Number of Attempts
before Lockout
An
integer
1-5
(times)
Query,
modify
M achine
administrators
Web
Service
Function
Setting for Lockout
Release Timer
Active or Inactive
Query,
modify
M achine
administrators
Web
Service
Function
Lockout time
1-9999 (minutes)
Query,
modify
M achine
administrators
Web
Service
Function
Minimum
Password
Length
An integer 8-32
(digits)
Query,
modify
User administrators
Operation
Panel
Password Complexity
Setting
Level 1 or Level
2
Query,
modify
User administrators
Operation
Panel
Date
and
time
of
system clock
Date, time (hour,
minute, second)
Query,
modify
M achine
administrators
Operation
Panel,