Ricoh Aficio MP 3350B Security Target

Ricoh Aficio MP 3350B Manual

Get Ricoh Aficio MP 3350B PDF manuals and user guides View all Ricoh Aficio MP 3350B manuals
Add to My Manuals
Save this manual to your list of manuals

Ricoh Aficio MP 3350B manual content summary:

  • Ricoh Aficio MP 3350B | Security Target - Page 1
    Page 1 of 83 imagio MP 2550/3350 series, Aficio MP 2550/3350 series㩷 Security Target Authors Fumi TAKITA Date Version : RICOH COMPANY, LTD., Yoshihiko KAMEKURA, Yasushi FUNAKI, : 2010-02-08 : 1.05 Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 3350B | Security Target - Page 2
    Page 2 of 83 Update History Version 1.05 Date 2010-02-08 Authors Yoshihiko KAMEKURA, Yasushi FUNAKI, Fumi TAKITA Details Released documents Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 3350B | Security Target - Page 3
    1.4.3 User Roles ...17 1.4.3.1 Responsible Manager for MFP 17 1.4.3.2 Administrator 18 1.4.3.3 Supervisor ...18 1.4.3.4 General User...18 Claims, Package Claims 27 2.3 Conformance Rationale 27 3 Security Problem Definition 28 3.1 Threats ...28 3.2 Organisational Security Policies 28 Copyright
  • Ricoh Aficio MP 3350B | Security Target - Page 4
    6 Security Requirements...36 6.1 Security Functional Requirements 36 6.1.1 Class FAU: Security audit 36 6.1.2 Class FCS: Cryptographic support 41 6.1.3 Class FDP: User data protection 42 6.1.4 Class FIA: Identification and authentication 45 6.1.5 Class FMT: Security management 48 6.1.6 Class
  • Ricoh Aficio MP 3350B | Security Target - Page 5
    Management of General User Information 74 7.1.4.5 Management of Machine Control Data 75 7.1.5 SF.CE_OPE_LOCK Service Mode Lock Deliver to Folders from TOE 78 7.1.8 SF.FAX_LINE Protection Function for Intrusion from Telephone Line Interface 78 7.1.9 SF.GENUINE MFP Control Software Verification
  • Ricoh Aficio MP 3350B | Security Target - Page 6
    Table 19: List of TSF Data Management ...49 Table 20: List of Specification of Management Functions 51 Table 21: Services Requiring Trusted and Auditable Information 67 Table 27: User Roles and Authentication Methods 69 Table 28: Unlocking Administrators for Each User Role 70 Table 29: Initial
  • Ricoh Aficio MP 3350B | Security Target - Page 7
    Page 7 of 83 Table 33: List of Administrator for Machine Control Data 75 Table 34: List of Encryption Operation on Stored Data on HDD 77 Table 35: Specific Terms Used in this ST ...79 Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 3350B | Security Target - Page 8
    for "Ricoh imagio MP 2550/3350 series" and "Ricoh Aficio MP 2550/3350 series". TOE Version : "Ricoh imagio MP 2550/3350 series" and "Ricoh Aficio MP 2550/3350 series" are identified by following software and hardware. Software System/Copy Network Support Scanner Printer Fax Web Support Web Uapl
  • Ricoh Aficio MP 3350B | Security Target - Page 9
    1: List of TOE Series Name Ricoh imagio MP 2550/3350 series Ricoh Aficio MP 2550/3350 series Series Details Ricoh imagio MP 2550SP Ricoh imagio MP 2550SPF Ricoh imagio MP 3350SP Ricoh imagio MP 3350SPF Ricoh Aficio MP 2550 Ricoh Aficio MP 2550SP Ricoh Aficio MP 2550SPF Ricoh Aficio MP 3350 Ricoh
  • Ricoh Aficio MP 3350B | Security Target - Page 10
    digital MFP, which is an IT product that provides the functions of copier, scanner, printer Service Mode Lock Function 8. Telephone Line Intrusion Protection Function 9. MFP Control Software depending on the needs of the users, and USB connection is also available. Users can operate the TOE from the
  • Ricoh Aficio MP 3350B | Security Target - Page 11
    Internet Explorer 6.0 or later on the client PC in advance. It is necessary to download and install RPCS printer driver and fax driver into a client PC from the website described in the Operational user guidance when printing or faxing from a client PC that is connected to the Internal Network
  • Ricoh Aficio MP 3350B | Security Target - Page 12
    used to deliver the Document Data, which is stored in the TOE, to folders in an SMB server. SMTP Server An SMTP server is used to send TOE Description This chapter describes the Physical Scope of TOE, Guidance Documents, User Roles, Logical Scope of TOE, and Protected Assets. 1.4.1 Physical Scope
  • Ricoh Aficio MP 3350B | Security Target - Page 13
    . Engine Control Software is installed in the Engine Control Board. The Engine Control Software sends information about the status of the Scanner Engine and the Printer Engine to the MFP Control Software, or operates the Scanner Engine and the Printer Engine according to the instruction from the MFP
  • Ricoh Aficio MP 3350B | Security Target - Page 14
    according to the instruction from the MFP Control Software. Controller Board The FlashROM] A memory in which MFP Control Software is installed. [RAM] A volatile memory that hard disk drive in which image data and user information for identification and authentication are stored. Network
  • Ricoh Aficio MP 3350B | Security Target - Page 15
    MP 2550/MP 2550B/MP 3350/MP 3350B LD425/LD425B/LD433/LD433B Aficio MP 2550/2550B/3350/3350B Operating Instructions About This Machine - 9025/9025b/9033/9033b MP 2550/MP 2550B/MP 3350/MP 3350B LD425/LD425B/LD433/LD433B Aficio MP 2550/2550B/3350/3350B Operating Instructions Troubleshooting - Manuals
  • Ricoh Aficio MP 3350B | Security Target - Page 16
    Administrators Security Reference MP 2550/3350/2550B/3350B Aficio MP 2550/3350/2550B/3350B - Manuals for Administrators Security Reference Supplement 9025/9025b/9033/9033b MP 2550/MP 2550B/MP 3350/MP 3350B LD425/LD425B/LD433/LD433B Aficio MP 2550/2550B/3350/3350B - Notes for Users Back Up/Restore
  • Ricoh Aficio MP 3350B | Security Target - Page 17
    MP 3350/MP 3350B Operating Instructions About This Machine - MP 2550/MP 2550B/MP 3350/MP 3350B MP 2550/MP 2550B/MP 3350/MP 3350B Aficio MP 2550/2550B/3350/3350B MP 2550/MP 2550B/MP 3350/MP 3350B Operating Instructions Troubleshooting - Manuals MP 2550/3350/2550B/3350B Aficio MP 2550/3350/2550B/3350B
  • Ricoh Aficio MP 3350B | Security Target - Page 18
    as a Supervisor by the Responsible Manager for MFP changes Supervisor ID and password of the default Supervisor. 1.4.3.4 General User A General User is an authorised TOE user who is registered for the Address Book by the User Administrator, and can store the Document Data in the TOE and operate the
  • Ricoh Aficio MP 3350B | Security Target - Page 19
    Function, Printer Function, Fax Function, Scanner Function, Document Server Function, Management Function and Web Service Function. Users use the functions of Copy, Document Server, Fax, Printer and Scanner by pushing the buttons for "Copy", "Document Server", "Facsimile", "Printer" and "Scanner
  • Ricoh Aficio MP 3350B | Security Target - Page 20
    the functions corresponding to each user role by accessing to the Web Service Function of the TOE from web browser of client PC. The following describes the outlines of basic functions. Copy Function The Copy Function is used to scan the original and print out the scanned image data in accordance
  • Ricoh Aficio MP 3350B | Security Target - Page 21
    delivered to folders, and deleted using the Scanner Function. Document Server Function The Document Server Function is used to scan paper-based originals and store the scanned image data in D-BOX as Document Data. In addition, Document Data stored in D-BOX using Copy Function, Printer Function, Fax
  • Ricoh Aficio MP 3350B | Security Target - Page 22
    BOX. 4. Download the stored Document Data in D-BOX. The Document Data stored using Scanner Function or Fax Function can be downloaded. 5. Subset the user IDs and the authentication information to the TOE after users enter their user IDs and authentication information from printer or fax drivers,
  • Ricoh Aficio MP 3350B | Security Target - Page 23
    X: Granted permission to operate, Blank: Not granted permission to operate The operation permission on each Document Data can be set for each General User. Stored Data Protection Function The Stored Data Protection Function is used to protect Document Data recorded on HDD from leakage by making it
  • Ricoh Aficio MP 3350B | Security Target - Page 24
    purpose of the TOE. 1. Download Document Data using the Web Service Function from a client PC: SSL Default ACL. 2. Management of Administrator Information Management of Administrator Information is used to allow the specific users allowed to change Administrator passwords. And an Administrator is
  • Ricoh Aficio MP 3350B | Security Target - Page 25
    his/her Supervisor ID and password. 5. Management of Machine Control Data Each Administrator is allowed to configure the data items of machine control data that corresponds to their Administrator Role (Machine Administrator, User Administrator and File Administrator). Service Mode Lock Function The
  • Ricoh Aficio MP 3350B | Security Target - Page 26
    address) 2. Send Document Data to an SMB server or FTP server 3. Download Document Data from the TOE to a client PC 4. Print out Document Data is generated from the document files in a client PC by printer or fax drivers that are installed on the client PC when printing or faxing, respectively. Print
  • Ricoh Aficio MP 3350B | Security Target - Page 27
    2 Conformance Claims This chapter describes the conformance claim. Page 27 of 83 2.1 CC Conformance Claim The CC conformance claim of this ST and TOE as follows: - CC Version for which this ST claims the conformance Part 1: Introduction and general model September 2006 Version 3.1 Revision 1 (
  • Ricoh Aficio MP 3350B | Security Target - Page 28
    3 Security Problem Definition This (Access Violation to Protected Assets Stored in TOE) Authorised TOE users may go beyond the bounds of the authorised usage and access for the organisations that demand the integrity of software installed in IT products: Copyright (c) 2009,2010 RICOH COMPANY
  • Ricoh Aficio MP 3350B | Security Target - Page 29
    Measures are provided for verifying the integrity of MFP Control Software, which is installed in FlashROM in the TOE. 3.3 Assumptions The assumptions the TOE securely in the roles assigned to them, and guide General Users to operate the TOE securely. Additionally, Administrators will not carry
  • Ricoh Aficio MP 3350B | Security Target - Page 30
    interceptions, and detect tampering. O.GENUINE (Protection of Integrity of MFP Control Software) The TOE shall provide the function to verify the integrity of MFP Control Software, which is installed in FlashROM, with the TOE users. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 3350B | Security Target - Page 31
    educated Administrators shall instruct General Users to be familiar with the compliance rules for secure operation for General Users, as explicitly stated all security objectives are achieved, the security problems as defined in "3 Security Problem Definition" are solved: all threats are countered
  • Ricoh Aficio MP 3350B | Security Target - Page 32
    T.SALVAGE T.TRANSIT T.FAX_LINE P.SOFTWARE Security Objectives O.AUDIT O.I&A O.DOC_ACC in the roles assigned to them, will guide General Users to operate the TOE securely. Additionally, instruct General Users to be familiar with the compliance rules for secure operation for General Users,
  • Ricoh Aficio MP 3350B | Security Target - Page 33
    to perform operations on Document Data according to the operation permissions for the Document Data that are assigned to the General User, and if the authorised user is the File Administrator, the TOE allows the File Administrator to delete the Document Data stored in D-BOX. Therefore, the TOE can
  • Ricoh Aficio MP 3350B | Security Target - Page 34
    To counter this organisational security policy, the TOE provides the function to verify the integrity of MFP Control Software, which is installed in FlashROM, with the TOE users by O.GENUINE. Therefore, the TOE can counter P.SOFTWARE. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 3350B | Security Target - Page 35
    Page 35 of 83 5 Extended Components Definition In this ST and TOE, there are no extended components, i.e., the new security requirements and security assurance requirements that are not described in the CC, which is claimed the conformance in "2.1 CC Conformance Claim". Copyright (c) 2009,2010 RICOH
  • Ricoh Aficio MP 3350B | Security Target - Page 36
    recommended by the CC to be auditable for each functional requirement, and the corresponding auditable events of the TOE. Table 5: List of Auditable Events Functional Requirements FAU_GEN.1 FAU_SAR.1 FAU_SAR.2 FAU_STG.1 FAU_STG.4 FCS_CKM.1 Actions which should be auditable None㩷 a) Basic: Reading
  • Ricoh Aficio MP 3350B | Security Target - Page 37
    Page 37 of 83 Functional Requirements FCS_COP.1 FDP_ACC.1 FDP_ACF.1 FDP_IFC.1 FDP_IFF.1 FIA_AFL.1 FIA_ATD.1 Actions which should be auditable of the activity.㩷 b) Basic: The object attribute(s), and object value(s) excluding any sensitive information (e.g. secret or private keys). a) Minimal:
  • Ricoh Aficio MP 3350B | Security Target - Page 38
    ). b) Basic: Success and failure of binding of user security attributes to a subject (e.g. success or failure to create a subject). a) Basic: All modifications of the values of security attributes. a) Basic: Modifications of the default setting of permissive or restrictive rules. b) Basic: All
  • Ricoh Aficio MP 3350B | Security Target - Page 39
    .1 FTP_TRP.1 Page 39 of 83 Actions which should be auditable a) Minimal: Use of the Management Functions. a) Minimal: modifications to the group of users that are part of a role; b) Detailed: every use of the rights of a role. a) Minimal: changes to the time;㩷 b) Detailed: providing a timestamp
  • Ricoh Aficio MP 3350B | Security Target - Page 40
    the PP/ST, [assignment: communication IP address, IDs of persons whose authentication information is created/changed/deleted, locking out Users, releasing User lockout, method of lockout release, IDs of object Document Data].㩷 FAU_SAR.1 Audit review Hierarchical to: No other components. Dependencies
  • Ricoh Aficio MP 3350B | Security Target - Page 41
    6.1.2 Class FCS: Cryptographic support Page 41 of 83 FCS_CKM : [assignment: standard shown in Table 6]. Table 6: List of Cryptographic Key Generation Key type HDD cryptographic key Standard FDP_ITC.1 Import of user data without security attributes, or FDP_ITC.2 Import of user data with security
  • Ricoh Aficio MP 3350B | Security Target - Page 42
    control SFP] on [assignment: List of Subjects, Objects, and Operation among Subjects and Objects in Table 8]. Table 8: List of Subjects, Objects, and IDs - Administrator Roles Subject General User process - General User IDs - Document Data Default ACL Object Document Data - Document
  • Ricoh Aficio MP 3350B | Security Target - Page 43
    Document Data Reading Document Data Editing Document Data Deleting Document Data Rules governing access General Users can store the Document Data. The Document Data Default ACL associated with General User process is copied to the Document Data ACL associated with the storing Document Data when
  • Ricoh Aficio MP 3350B | Security Target - Page 44
    .1.1 The TSF shall enforce the [assignment: telephone line information flow SFP] on [assignment: subjects, information, and an operation listed in Table 12]. Table 12: List of Subjects, Information and Operation Subjects Information Operation - Fax process on Fax Unit - Fax reception process on
  • Ricoh Aficio MP 3350B | Security Target - Page 45
    : the consecutive numbers of times of authentication failure for each user in the authentication events shown in Table 14]. Table 14: List of Authentication Events Authentication events User authentication using the Control Panel User authentication using the TOE from web browser of client PC
  • Ricoh Aficio MP 3350B | Security Target - Page 46
    the following list of security attributes belonging to individual users: [assignment: General User IDs, Document Data Default ACL, letters) Symbols: SP (spaces 33 letters) (2) Registerable digit numbers: For General Users No fewer than the Minimum Password Length set by the User Administrator (8-32
  • Ricoh Aficio MP 3350B | Security Target - Page 47
    of attributes listed in Table 16]. Table 16: Rules for Initial Association of Attributes Users General User Administrator Supervisor Subjects General User process Administrator process Supervisor process Security attributes of users General User ID, Document Data Default ACL Administrator
  • Ricoh Aficio MP 3350B | Security Target - Page 48
    Newly create Query, change Query Query, add, delete Query, change Query, modify Document Data Default Query, ACL (a data item of modify User roles - User Administrator - General Users - Administrators - Administrators who owns the applicable Administrator IDs - Supervisor - Administrators who are
  • Ricoh Aficio MP 3350B | Security Target - Page 49
    Data stored by General Users Security attribute associated to object Document Data ACL Default value and its List of TSF Data Management TSF data Authentication information of General Users (a data item of General User Information) Operations Newly create, change, delete User roles User
  • Ricoh Aficio MP 3350B | Security Target - Page 50
    Length Password Complexity Setting HDD cryptographic key Audit logs Service Mode Lock setting Query, modify Query, modify Query, newly create Query, delete entirely Query, modify Query Lockout Flag for General Users Lockout Flag for Administrators Lockout Flag for Supervisor Query, modify
  • Ricoh Aficio MP 3350B | Security Target - Page 51
    Folder Operations Query, newly create, delete, change Query Query Page 51 of 83 User roles User Administrator Applicable General User of S/MIME User Information General User User Administrator, General Users : List of Specification of Management Functions described in Table 20]. Table 20: List of
  • Ricoh Aficio MP 3350B | Security Target - Page 52
    of the machine control data: - Minimum Password Length - Password Complexity Setting - Security Management Function (Management of General User Information): management of authentication information of General Users by the User Administrator and management of own authentication information
  • Ricoh Aficio MP 3350B | Security Target - Page 53
    Management of the Document Data Default ACL. - Allows the User Administrator to modify the Document Data Default ACL for all General User Information registered for Address Book. - Allows General Users to modify the Document Data Default ACL of their own General User Information. c) None: No rules
  • Ricoh Aficio MP 3350B | Security Target - Page 54
    the actions that require trusted channel, if supported. a) Configuring the actions that require trusted path, if supported. and second). a) None: The condition Function of Ic Hdd]].㩷 FPT_TST.1.2 The TSF shall provide authorised users with the capability to verify the integrity of [selection: [
  • Ricoh Aficio MP 3350B | Security Target - Page 55
    (IPSec), Deliver to Folders service from the TOE to FTP server (IPSec)].㩷 㩷 FTP_TRP.1 Trusted path Hierarchical to: No other components.㩷 Dependencies: No dependencies.㩷 FTP_TRP.1.1 The TSF shall provide a communication path between itself and [selection: remote] users that is logically distinct
  • Ricoh Aficio MP 3350B | Security Target - Page 56
    classes ADV: Development AGD: Guidance documents ALC: Life-cycle support ASE: Security Target evaluation ATE: Tests AVA: Vulnerability design Operational user guidance Preparative procedures objectives Derived security requirements Security problem definition TOE summary specification Analysis
  • Ricoh Aficio MP 3350B | Security Target - Page 57
    Page 57 of 83 6.3 Security Requirements Rationale This chapter describes the rationale for the security requirements. As described below, if all security functional requirements are satisfied, the security objectives defined in "4.1 Security Objectives for TOE" are achieved. 6.3.1 Tracing Table 23
  • Ricoh Aficio MP 3350B | Security Target - Page 58
    , FAU_GEN.1 generates the audit information when starting and ending Audit Function, when performing the Identification and Authentication Function, when users operate the protected assets, when encrypting the protected assets, and when performing the major management functions. It also records the
  • Ricoh Aficio MP 3350B | Security Target - Page 59
    and maintain the subjects with the security attributes. c) Make it difficult to decode passwords. To accomplish O.I&A, the passwords for user authentication shall be protected from being viewed by others while users enter them, and from being easily guessed. For this, FIA_UAU.7 prevents the
  • Ricoh Aficio MP 3350B | Security Target - Page 60
    specific users. In addition, a specified value shall be set as the default value Service Mode Lock setting, - The User Administrator to query and set the Minimum Password Length, Password Complexity Setting, and Lockout Flag for General Users, - The User Administrator and the applicable General Users
  • Ricoh Aficio MP 3350B | Security Target - Page 61
    83 - The User Administrator and General Users to query S/MIME User Information and destination information for Deliver to Folder, - Supervisor to be detected. For this, FTP_ITC.1 uses the IPSec protocol for Deliver to Folders on either an FTP server or SMB server from the TOE, protects Document Data
  • Ricoh Aficio MP 3350B | Security Target - Page 62
    described later, between the TOE and the remote users. For sending by e-mail from the TOE to in the mailing service. For use of web service, print service, and fax service from client PC Control Software. To accomplish O.GENUINE, the integrity of MFP Control Software, which is installed in FlashROM
  • Ricoh Aficio MP 3350B | Security Target - Page 63
    FIA_ATD.1 FDP_ACC.1 FMT_SMF.1 FMT_SMR.1 FMT_MSA.1 FMT_SMR.1 FMT_SMF.1 FMT_SMR.1 None FIA_UID.2 None None None None The rationale for satisfying no dependencies is listed and explained below. Page 63 of 83 Dependencies not satisfied in ST FCS_CKM.4 None None None None FIA_UAU.1 None None FIA_UID
  • Ricoh Aficio MP 3350B | Security Target - Page 64
    Page 64 of 83 In this TOE, HDD encryption keys are stored in the area that cannot be accessed from outside Ic Hdd. In addition, after the Administrators generate encryption keys at the start of the TOE operation, deletion of encryption keys are not performed but only the change to overwrite the new
  • Ricoh Aficio MP 3350B | Security Target - Page 65
    "6.1". SF.AUDIT Audit Function SF.I&A User Identification and Authentication Function SF.DOC_ACC Security Management Function SF.CE_OPE_LOCK Service Mode Lock Function SF.CIPHER Line Interface SF.GENUINE MFP Control Software Verification Function These TOE security functions correspond
  • Ricoh Aficio MP 3350B | Security Target - Page 66
    Page 66 of 83 SF.AUDIT SF.I&A SF.DOC_ACC SF.SEC_MNG SF.CE_OPE_LOCK SF.CIPHER SF.NET_PROT SF.FAX_LINE SF.GENUINE FDP_ACF.1 X FDP_IFC.1 X FDP_IFF.1 X FIA_AFL.1 X X FIA_ATD.1 X FIA_SOS.1 X FIA_UAU.2 X FIA_UAU.7 X FIA_UID.2 X FIA_USB.1 X X FMT_MSA.1 X FMT_MSA.3 X FMT_MTD.1 X
  • Ricoh Aficio MP 3350B | Security Target - Page 67
    Document Data Receiving fax Changing user password (include newly creating and deleting password) Deleting Administrator Role Adding identity (*4) - Outcome Locked out User Locked out User who is to be released Release methods (Auto Lockout Release/Manual Lockout Release) - ID of object
  • Ricoh Aficio MP 3350B | Security Target - Page 68
    of object Document Data are printing, sending by e-mail, delivering to folders and downloading from Web Service Function the Document Data stored in D-BOX. *4: When the recording events occur due to the operations by users, User IDs are set as subject identities of Basic Audit Information, and when
  • Ricoh Aficio MP 3350B | Security Target - Page 69
    The TOE displays a login window to users who attempt to use the TOE security functions from the Operation Panel or Web Service Function, requires them to enter their user IDs and passwords, and then identifies and authenticates the users with the entered user IDs and passwords. In addition, when
  • Ricoh Aficio MP 3350B | Security Target - Page 70
    The TOE provides the function to register and change the passwords of General Users, Administrators and a Supervisor, from the Operation Panel and Web Service Function using the characters described below (1). It checks if the password to be registered or changed meets the condition (2) and
  • Ricoh Aficio MP 3350B | Security Target - Page 71
    (26 letters) Numbers: [0-9] (10 letters) Symbols: SP (space 33 letters) (2) Registerable Password Length: For General Users No fewer than the Minimum Password Length set by the User Administrator (8-32 digits), nor more than 128 digits. For Administrators and a Supervisor No fewer than the Minimum
  • Ricoh Aficio MP 3350B | Security Target - Page 72
    of Document Data Document Data stored by General User Initial value for Document Data ACL Document Data Default ACL From the above, FDP_ACC.1 (Subset login user from the Operation Panel or Web Service Function is the File Administrator, the TOE allows the File Administrator to display the list
  • Ricoh Aficio MP 3350B | Security Target - Page 73
    of Administrator Information Management of Administrator Information allows only specific users to perform operations on Administrator Information from the Operation Panel or Web Service Function. Administrator Information includes Administrator IDs, Administrator Authentication Information, and
  • Ricoh Aficio MP 3350B | Security Target - Page 74
    IDs, authentication information of General Users, Document Data Default ACL and S/MIME User Information. If the login user from the Operation Panel or Web Service Function is the User Administrator or General User, the TOE allows the User Administrator/General User to perform the operations shown
  • Ricoh Aficio MP 3350B | Security Target - Page 75
    Administrator and General Users to query the destination information for Deliver to Folder. Table 33: List of Administrator for Machine Control Data Machine control data items Number of Attempts before Lockout Setting for Lockout Release Timer Lockout time Minimum Password Range of values An
  • Ricoh Aficio MP 3350B | Security Target - Page 76
    Password Complexity Setting Date and time of system clock Range of values (digits) Level 1 or Level 2 Date, time (hour, minute, second) Operations modify Query, modify Query, modify Query Lockout Flag for General Users 7.1.5 SF.CE_OPE_LOCK Service Mode Lock Function Service Mode Lock Function
  • Ricoh Aficio MP 3350B | Security Target - Page 77
    user is the Machine Administrator, the TOE provides the screen to generate the HDD encryption keys from the Operation Panel. When the Machine Administrator gives the instruction . Table 34: List of Encryption Operation on Service Function from Client PC When receiving requests to use the Web Service
  • Ricoh Aficio MP 3350B | Security Target - Page 78
    verifies the integrity of MFP Control Software, which is installed in FlashROM, at the TOE start-up. The TOE verifies the integrity of the executable code of MFP Control Software at the TOE start-up. If the integrity is verified, it makes the TOE available for users. If not, it indicates that the
  • Ricoh Aficio MP 3350B | Security Target - Page 79
    Software MFP Control Data Fax Transmission from Computers S/MIME User this function. An abbreviation for digital multi function product. Also indicates Software installed in the TOE and has the elements that identify the TOE such as System/Copy, Network Support, Scanner, Printer, Fax, Web Support
  • Ricoh Aficio MP 3350B | Security Target - Page 80
    , technical support service companies, or sales companies. MFP Control Software that is on the Controller Board, receives the information about the status of fax communication from Fax Unit, and provides Fax Unit with the instruction on fax communication. One of the authorised TOE users who uses
  • Ricoh Aficio MP 3350B | Security Target - Page 81
    Data Default ACL, and S/MIME User Information. The password to identify and authenticate the General User. The document files in client PC that are sent to the TOE from a client PC to be printed or faxed. It is necessary to install drivers into client PC in advance printer driver for printing
  • Ricoh Aficio MP 3350B | Security Target - Page 82
    that can be processed by the MFP. One of the data items of General User Information. The default value that is set for the Document Data ACL of a new Document Data to be stored. An access control list of General Users that is set for each Document Data. One of the Administrator Roles that
  • Ricoh Aficio MP 3350B | Security Target - Page 83
    Page 83 of 83 - CC Version 3.1 Revision 2 Evaluation Criteria: "English version" Common Criteria for Information Technology Security Evaluation Version3.1 Part 1: Introduction and general model Revision 1 (CCMB-2006-09-001) Part 2: Security functional components Revision 2 (CCMB-2007-09-002) Part 3:
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
Page 1 of 83
imagio MP 2550/3350 series, Aficio MP 2550/3350 series
Security Target
Authors
: RICOH COMPANY, LTD., Yoshihiko KAMEKURA, Yasushi FUNAKI,
Fumi TAKITA
Date
: 2010-02-08
Version
: 1.05
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.