Ricoh Aficio MP C3001 Security Target - Page 77

O.SOFTWARE.VERIFIED Software verification, O.AUDIT.LOGGED Management of audit log records, O.STORAGE

Get Ricoh Aficio MP C3001 PDF manuals and user guides View all Ricoh Aficio MP C3001 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 77 highlights

Page 76 of 93 (3) Restricted forwarding of data to external interfaces. FPT_FDI_EXP.1 prevents the data received from the Operation Panel, LAN interface and telephone line from being transmitted from the LAN or telephone line without further processing by the TSF. By satisfying FIA_UID.1(a), FIA_UID.1(b), FIA_UAU.1(a), FIA_UAU.1(b), FIA_UID.2, FIA_UAU.2, FTA_SSL.3 and FPT_FDI_EXP.1, which are the security functional requirements for these countermeasures, O.INTERFACE.MANAGED is fulfilled. O.SOFTWARE.VERIFIED Software verification O.SOFTWARE.VERIFIED is the security objective to ensure that MFP Control Software and FCU Control Software are verified. To fulfil this security objective, it is required to implement the following countermeasures. (1) Self-check FPT_TST.1 checks if the MFP Control Software and FCU Control Software are verified software at the start-up. By satisfying FTP_TST.1, which is the security functional requirement for this countermeasure, O.SOFTWARE.VERIFIED is fulfilled. O.AUDIT.LOGGED Management of audit log records O.AUDIT.LOGGED is the security objective to record the audit log required to detect the security intrusion, and allow the MFP administrator to view the audit log. To fulfil this security objective, it is required to implement the following countermeasures. (1) Record the audit log. FAU_GEN.1 and FAU_GEN.2 record the events, which should be auditable, with the identification information of the occurrence factor. (2) Protect the audit log. FAU_STG.1 protects the audit logs from the alteration, and FAU_STG.4 deletes the audit logs that have the oldest time stamp, and records the new audit logs if auditable events occur and the audit log files are full. (3) Provide Audit Function. FAU_SAR.1 allows the MFP administrator to read audit logs in a format that can be audited. FAU_SAR.2 prohibits the persons other than the MFP administrator reading the audit logs. (4) Reliable occurrence time of the event FPT_STM.1 provides a trusted time stamp, and a reliable record of the times when events occurred are recorded in the audit log. By satisfying FAU_GEN.1, FAU_GEN.2, FAU_STG.1, FAU_STG.4, FAU_SAR.1, FAU_SAR.2 and FPT_STM.1, which are the security functional requirements for these countermeasures, O.AUDIT.LOGGED is fulfilled. O.STORAGE.ENCRYPTED Encryption of storage devices O.STORAGE.ENCRYPTED is the security objective to ensure the data to be written into the HDD is encrypted. To fulfil this security objective, it is required to implement the following countermeasures. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
Page 76 of
93
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
(3)
Restricted forwarding of data to external interfaces.
FPT_FDI_EXP.1 prevents the data received from the Operation Panel, LAN interface and telephone
line from being transmitted from the LAN or telephone line without further processing by the TSF.
By satisfying FIA_UID.1(a), FIA_UID.1(b), FIA_UAU.1(a), FIA_UAU.1(b), FIA_UID.2, FIA_UAU.2,
FTA_SSL.3 and FPT_FDI_EXP.1, which are the security functional requirements for these countermeasures,
O.INTERFACE.MANAGED is fulfilled.
O.SOFTWARE.VERIFIED Software verification
O.SOFTWARE.VERIFIED is the security objective to ensure that MFP Control Software and FCU Control
Software are verified. To fulfil this security objective, it is required to implement the following
countermeasures.
(1)
Self-check
FPT_TST.1 checks if the MFP Control Software and FCU Control Software are verified software at the
start-up.
By satisfying FTP_TST.1, which is the security functional requirement for this countermeasure,
O.SOFTWARE.VERIFIED is fulfilled.
O.AUDIT.LOGGED Management of audit log records
O.AUDIT.LOGGED is the security objective to record the audit log required to detect the security intrusion,
and allow the MFP administrator to view the audit log. To fulfil this security objective, it is required to
implement the following countermeasures.
(1)
Record the audit log.
FAU_GEN.1 and FAU_GEN.2 record the events, which should be auditable, with the identification
information of the occurrence factor.
(2)
Protect the audit log.
FAU_STG.1 protects the audit logs from the alteration, and FAU_STG.4 deletes the audit logs that
have the oldest time stamp, and records the new audit logs if auditable events occur and the audit log
files are full.
(3)
Provide Audit Function.
FAU_SAR.1 allows the MFP administrator to read audit logs in a format that can be audited.
FAU_SAR.2 prohibits the persons other than the MFP administrator reading the audit logs.
(4)
Reliable occurrence time of the event
FPT_STM.1 provides a trusted time stamp, and a reliable record of the times when events occurred are
recorded in the audit log.
By satisfying FAU_GEN.1, FAU_GEN.2, FAU_STG.1, FAU_STG.4, FAU_SAR.1, FAU_SAR.2 and
FPT_STM.1, which are the security functional requirements for these countermeasures, O.AUDIT.LOGGED
is fulfilled.
O.STORAGE.ENCRYPTED Encryption of storage devices
O.STORAGE.ENCRYPTED is the security objective to ensure the data to be written into the HDD is
encrypted. To fulfil this security objective, it is required to implement the following countermeasures.