Ricoh Aficio MP 2550B Security Target - Page 78

Page 78 of 83 7.1.7.3 Sending by E-mail from TOE When sending Document Data by e-mail from the TOE to client PC, the TOE attaches the Document Data to e-mail and send the e-mail with S/MIME. The destination information of S/MIME is managed as S/MIME User Information of General User Information, and users send e-mail only using this managed destination information. From the above, FTP_TRP.1 (Trusted path) is accomplished. 7.1.7.4 Deliver to Folders from TOE When delivering data from the TOE to folders in an SMB server or an FTP server, the TOE connects itself with the SMB server or FTP server using the IPSec protocol as a trusted channel. The destination information for Deliver to Folders is registered in advance and managed by the TOE as Machine Control Data, and users deliver files to folders only using this managed destination information. From the above, FTP_ITC.1 (Inter-TSF trusted channel) is accomplished. 7.1.8 SF.FAX_LINE Protection Function for Intrusion from Telephone Line Interface When the type of received data from a telephone line is the fax data, the TOE passes the received data to the Controller Board. When the TOE receives the non-fax data, it does not pass the data to the Controller Board but instead it discards the data. From the above, FDP_IFC.1 (Subset information flow control) and FDP_IFF.1 (Simple security attributes) are accomplished. 7.1.9 SF.GENUINE MFP Control Software Verification Function The MFP Control Software Verification Function verifies the integrity of MFP Control Software, which is installed in FlashROM, at the TOE start-up. The TOE verifies the integrity of the executable code of MFP Control Software at the TOE start-up. If the integrity is verified, it makes the TOE available for users. If not, it indicates that the MFP Control Software is not correct. From the above, FPT_TST.1 (TSF testing) is accomplished. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.