Ricoh Aficio MP C3001 Security Target - Page 56

Table 18 : Rules to Control Operations on Document Data and User Jobs a, Objects, Document Data,

Get Ricoh Aficio MP C3001 PDF manuals and user guides View all Ricoh Aficio MP C3001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 56 highlights

Subject Subject Object Object Supervisor process RC Gate process Document data User job Page 55 of 93 - User role - User role - Document data attribute - Document user list - Login user name of normal user FDP_ACF.1.2(a) The TSF shall enforce the following rules to determine if an operation among controlled subjects and controlled objects is allowed: [assignment: rules to control operations among subjects and objects shown in Table 18]. Table 18 : Rules to Control Operations on Document Data and User Jobs (a) Objects Document data Document data Document data Document data Document data Document data Document data Document data Document data Document Data Attributes +PRT +PRT +SCN +SCN +FAXOUT +FAXOUT +FAXIN +FAXIN +CPY Operations Subjects Rules to control Operations Delete Read Delete Read Delete Read Delete Read Delete Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Normal user process Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process that created the document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process that created the document data. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
Page 55 of
93
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
Subject
Supervisor process
- User role
Subject
RC Gate process
- User role
Object
Document data
- Document data attribute
- Document user list
Object
User job
- Login user name of normal user
FDP_ACF.1.2(a) The TSF shall enforce the following rules to determine if an operation among controlled
subjects and controlled objects is allowed:
[assignment: rules to control operations among
subjects and objects shown in Table 18]
.
Table 18 : Rules to Control Operations on Document Data and User Jobs (a)
Objects
Document Data
Attributes
Operations
Subjects
Rules to control Operations
Document
data
+PRT
Delete
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+PRT
Read
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+SCN
Delete
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+SCN
Read
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+FAXOUT
Delete
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+FAXOUT
Read
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.
Document
data
+FAXIN
Delete
Normal user
process
Not allowed. However, it is allowed for
normal user process with login user
name of normal user registered on
document user list for document data.
Document
data
+FAXIN
Read
Normal user
process
Not allowed. However, it is allowed for
normal user process with login user
name of normal user registered on
document user list for document data.
Document
data
+CPY
Delete
Normal user
process
Not allowed. However, it is allowed for
normal user process that created the
document data.