Ricoh Aficio SP C821DNT1 Design Guide - Page 51
Data Security Considerations
View all Ricoh Aficio SP C821DNT1 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 51 highlights
Print Controller Design Guide for Information Security 2-2-3 Data Security Considerations Printing Unencrypted Image Data • The language processing subsystem only allows data in legal format to be processed. In the event that illegal data is received, the subsystem will declare an error and cancel the processing session. • When User Authentication is enabled, the MFP/LP will only accept printing data that contains a username and password that matches those of a pre-registered user (or a User Code in the case of User Code Authentication). Any data received that does not contain this information is destroyed, preventing the introduction of illegal data. When the Printer's authentication mode is set to Simple Authentication, the MFP/LP does not perform authentication on data sent from users that have been given "Guest" status. • Authentication passwords: Before the printer driver sends the print data and authentication information to the MFP/LP, the authentication password is encrypted using one of two methods: Simple Encryption or driver key encryption (which uses a key common to both the driver and MFP/LP), depending on setting selected in the driver. When the "Restrict Use of Simple Encryption" setting in the MFP/LP is ON, the MFP/LP will only accept jobs that carry authentication passwords that have been encrypted using the driver encryption key. Any job carrying an authentication password encrypted by Simple Encryption will be subsequently reset. This has the effect of requiring operators to use the driver encryption key, the stronger of the two methods, and avoids any possibility of sender impersonation by preventing the password from being surmised in the first place. • Document passwords: When Locked Print, Stored Print, Store and Print, or Save to Document Server is specified as the job type, the document password sent along with the print data is always encrypted using Simple Encryption (not with a driver key). However, even when the "Restrict Use of Simple Encryption" setting explained above is ON, the MFP/LP will accept jobs with document passwords that have only been encrypted with Simple Encryption. This is because "Restrict Use of Simple Encryption" only applies to authentication passwords, and not to document passwords. In addition, if a job containing a document password is sent from an older driver or using PJL commands, the document password itself will be sent in an unencrypted state. The MFP/LP does not require that the document password be encrypted (the job will be accepted). In such cases, it is Page 51 of 86