Ricoh Aficio MP C3001 Security Target - Page 35

Augmentation of FCS_CKM.1 and FCS_COP.1

Get Ricoh Aficio MP C3001 PDF manuals and user guides View all Ricoh Aficio MP C3001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 35 highlights

Page 34 of 93 Ownership of Received Fax Documents For the ownership of the received fax documents, the TOE has the characteristic that the ownership of the document is assigned to the intended user. This is according to PP APPLICATION NOTE 93. Augmentation of FCS_CKM.1 and FCS_COP.1 This TOE claims O.STORAGE.ENCRYPTED as the security objectives for the data protection applied to non-volatile memory media that are neither allowed to be attached nor removed by the administrator. To fulfil this claim, additional changes were augmented to the functional requirements FCS_CKM.1 and FCS_COP.1 and to the functional requirements interdependent with FCS_CKM.1 and FCS_COP.1; however, these changes still satisfy the functional requirements demanded in the PP. Augmentation of information protected by FTP_ITC.1 FTP_ITC.1 was changed in this TOE. This change only augmented communication with RC Gate via LAN on the information protected by FTP_ITC.1 that the PP requires; it is to restrict the requirements in the PP. Therefore, this satisfies the functional requirements demanded in the PP. Augmentation of restricted forwarding of data to external interface (FPT_FDI_EXP) This TOE, in accordance with the PP, extends the functional requirement Part 2 due to the addition of the restricted forwarding of data to external interfaces (FPT_FDI_EXP). Consistency Rationale of FDP_ACF.1(a) While FDP_ACF.1.1(a) and FDP_ACF.1.2(a) in the PP require the access control SFP to the document data that is defined for each SFR package in the PP, this ST requires the access control SFP to the document data that is defined for each document data attribute, which is the security attribute for objects. This is not a deviation from the PP but an instantiation of the PP. Although FDP_ACF.1.3(a) in the PP has no additional rules on access control of document data and user jobs, this ST allows the MFP administrator to delete document data and user jobs. The TOE allows the MFP administrator to delete document data and user jobs on behalf of normal users who are privileged to delete them in case normal users cannot execute such privileges for some reasons. This does not deviate from the access control SFP defined in the PP. Although FDP_ACF.1.4(a) in the PP has no additional rules on access control of document data and user jobs, this ST rejects supervisor and RC Gate to operate document data and user jobs. Supervisor and RC Gate are not identified in the PP and are the special users for this TOE. This indicates that the PP does not allow users to operate the TOE, unless they are identified as the users of document data and user jobs. Therefore, FDP_ACF.1 (a) in this ST satisfies FDP_ACF.1 (a) in the PP. Additional Rules on FDP_ACF.1.3(b) While FDP_ACF.1.3(b) in the PP allows users with administrator privileges to operate the TOE functions, this ST allows them to operate Fax Reception Function only, which is part of the TOE functions. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
Page 34 of
93
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Ownership of Received Fax Documents
For the ownership of the received fax documents, the TOE has the characteristic that the ownership of the
document is assigned to the intended user. This is according to PP APPLICATION NOTE 93.
Augmentation of FCS_CKM.1 and FCS_COP.1
This TOE claims O.STORAGE.ENCRYPTED as the security objectives for the data protection applied to
non-volatile memory media that are neither allowed to be attached nor removed by the administrator. To
fulfil this claim, additional changes were augmented to the functional requirements FCS_CKM.1 and
FCS_COP.1 and to the functional requirements interdependent with FCS_CKM.1 and FCS_COP.1; however,
these changes still satisfy the functional requirements demanded in the PP.
Augmentation of information protected by FTP_ITC.1
FTP_ITC.1 was changed in this TOE. This change only augmented communication with RC Gate via LAN
on the information protected by FTP_ITC.1 that the PP requires; it is to restrict the requirements in the PP.
Therefore, this satisfies the functional requirements demanded in the PP.
Augmentation of restricted forwarding of data to external interface (FPT_FDI_EXP)
This TOE, in accordance with the PP, extends the functional requirement Part 2 due to the addition of the
restricted forwarding of data to external interfaces (FPT_FDI_EXP).
Consistency Rationale of FDP_ACF.1(a)
While FDP_ACF.1.1(a) and FDP_ACF.1.2(a) in the PP require the access control SFP to the document data
that is defined for each SFR package in the PP, this ST requires the access control SFP to the document data
that is defined for each document data attribute, which is the security attribute for objects. This is not a
deviation from the PP but an instantiation of the PP.
Although FDP_ACF.1.3(a) in the PP has no additional rules on access control of document data and user
jobs, this ST allows the MFP administrator to delete document data and user jobs.
The TOE allows the MFP administrator to delete document data and user jobs on behalf of normal users who
are privileged to delete them in case normal users cannot execute such privileges for some reasons. This does
not deviate from the access control SFP defined in the PP.
Although FDP_ACF.1.4(a) in the PP has no additional rules on access control of document data and user
jobs, this ST rejects supervisor and RC Gate to operate document data and user jobs.
Supervisor and RC Gate are not identified in the PP and are the special users for this TOE.
This indicates that the PP does not allow users to operate the TOE, unless they are identified as the users of
document data and user jobs.
Therefore, FDP_ACF.1 (a) in this ST satisfies FDP_ACF.1 (a) in the PP.
Additional Rules on FDP_ACF.1.3(b)
While FDP_ACF.1.3(b) in the PP allows users with administrator privileges to operate the TOE functions,
this ST allows them to operate Fax Reception Function only, which is part of the TOE functions.