Ricoh Aficio MP 8001 sec - Page 76

SF.CE_OPE_LOCK, Service Mode Lock Function, SF.CIPHER, Encryption Function, 1.6.1, Encryption

Get Ricoh Aficio MP 8001 PDF manuals and user guides View all Ricoh Aficio MP 8001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 76 highlights

Machine control data items Range of setting value Operations Query Lockout Flag for general users Lockout Flag for administrators Lockout Flag for supervisor Inactive Inactive Inactive Query, modify Query, modify Query , modify Authorised setter General users, User administrators, Network administrators, File administrators, Supervisor User administrators Supervisor M achine administrators Page 75 of 82 Operation interfaces Web Service Function Web Service Function Web Service Function Web Service Function By the above, FIA_AFL.1 (Authentication failure handling), FMT_MTD.1 (Management of TSF data), FMT_SMF.1 (Specification of management function), and FMT_SMR.1 (Security roles) are satisfied. 7.1.5 SF.CE_OPE_LOCK Service Mode Lock Function The Service Mode Lock Function restricts use of theM aintenance Functions to CEs only, based on the Service Mode Lock Function setting specified by the machine administrator. The TOE allows the machine administrator to set the Service Mode Lock Function from the Operation Panel, and allows all authorised users to view the value of the setting. If the Service Mode Lock Function is set to "Off", the TOE allows only the CE to use theM aintenance Functions. If it is set to "On", the TOE does not allow the CE to use the M aintenance Functions. By the above, FMT_MTD.1 (Management of TSF data) is satisfied. 7.1.6 SF.CIPHER Encryption Function The TOE encrypts the document data to be stored on the HDD. Following are explanations of each functional item in "SF.CIPHER their corresponding security functional requirements. Encryption Function" and 7.1.6.1 Encryption of Document Data The TOE encrypts data with the Ic Ctlr before writing it to the HDD. The TOE decrypts data with the Ic Ctlr after reading it from the HDD. This process is performed for all data written to and read from the HDD. Document data is encrypted and decrypted by the TOE in a similar way. The HDD encryption keys are generated by the machine administrator. If the logged-in user is the machine administrator, the TOE displays a screen on the Operation Panel that the administrator can use to generate the HDD encryption keys. When the machine administrator uses the Operation Panel to instruct the TOE to generate an HDD encryption key, the TOE generates a 256-bit HDD encryption key using the TRNG encryption key Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
Page 75 of 82
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
Machine control
data items
Range of setting
value
Operations
Authorised setter
Operation
interfaces
Query
General users,
User administrators,
Network
administrators,
File administrators,
Supervisor
Web
Service
Function
Lockout
Flag
for
general users
Inactive
Query,
modify
User administrators
Web
Service
Function
Lockout
Flag
for
administrators
Inactive
Query,
modify
Supervisor
Web
Service
Function
Lockout
Flag
for
supervisor
Inactive
Query,
modify
M achine
administrators
Web
Service
Function
By the above, FIA_AFL.1 (Authentication failure handling), FMT_MTD.1 (Management of TSF data),
FMT_SMF.1 (Specification of management function), and FMT_SMR.1 (Security roles) are satisfied.
7.1.5
SF.CE_OPE_LOCK
Service Mode Lock Function
The Service Mode Lock Function restricts use of the Maintenance Functions to CEs only, based on the
Service Mode Lock Function setting specified by the machine administrator.
The TOE allows the machine administrator to set the Service Mode Lock Function from the Operation
Panel, and allows all authorised users to view the value of the setting. If the Service Mode Lock Function is
set to "Off", the TOE allows only the CE to use the Maintenance Functions. If it is set to "On", the TOE
does not allow the CE to use the Maintenance Functions
.
By the above, FMT_MTD.1 (Management of TSF data) is satisfied.
7.1.6
SF.CIPHER
Encryption Function
The TOE encrypts the document data to be stored on the HDD.
Following are explanations of each functional item in "SF.CIPHER
Encryption
Function"
and
their corresponding security functional requirements.
7.1.6.1
Encryption of Document Data
The TOE encrypts data with the Ic Ctlr before writing it to the HDD. The TOE decrypts data with the Ic
Ctlr after reading it from the HDD. This process is performed for all data written to and read from the HDD.
Document data is encrypted and decrypted by the TOE in a similar way.
The HDD encryption keys are generated by the machine administrator. If the logged-in user is the machine
administrator, the TOE displays a screen on the Operation Panel that the administrator can use to generate
the HDD encryption keys.
When the machine administrator uses the Operation Panel to instruct the TOE to generate an HDD
encryption key, the TOE generates a 256-bit HDD encryption key using the TRNG encryption key