Ricoh Aficio MP C3001 Security Target - Page 59

Page 58 of 93 6.1.4 Class FIA: Identification and authentication FIA_AFL.1 Authentication failure handling Hierarchical to: No other components. Dependencies: FIA_UAU.1 Timing of authentication FIA_AFL.1.1 The TSF shall detect when [selection: an administrator configurable positive integer within [assignment: 1 to 5]] unsuccessful authentication attempts occur related to [assignment: the authentication events of Basic Authentication shown in Table 22]. Table 22 : List of Authentication Events of Basic Authentication FIA_AFL.1.2 Authentication Events User authentication using the Operation Panel User authentication using the TOE from client computer Web browser User authentication when printing from the client computer User authentication when using LAN Fax from client computer When the defined number of unsuccessful authentication attempts has been [selection: met], the TSF shall [assignment: perform actions shown in Table 23]. Table 23 : List of Actions for Authentication Failure Unsuccessfully Authenticated Users Normal user Supervisor MFP administrator Actions for Authentication Failure The lockout for the normal user is released by the lockout time set by the MFP administrator, or release operation by the MFP administrator. The lockout for a supervisor is released by the lockout time set by the MFP administrator, release operation by the MFP administrator or the TOE's restart. The lockout for the MFP administrator is released by the lockout time set by the MFP administrator, release operation by a supervisor or the TOE's restart. FIA_ATD.1 User attribute definition Hierarchical to: No other components. Dependencies: No dependencies. FIA_ATD.1.1 The TSF shall maintain the following list of security attributes belonging to individual users: [assignment: the security attributes listed in Table 24 for each user in Table 24]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.