Ricoh Aficio MP 3350B Security Target - Page 68

From the above, FAU_SAR.1 Audit review, FAU_SAR.2 Restricted audit review and FMT_MTD.1

Get Ricoh Aficio MP 3350B PDF manuals and user guides View all Ricoh Aficio MP 3350B manuals
Add to My Manuals
Save this manual to your list of manuals

Page 68 highlights

Page 68 of 83 Communication with trusted IT product Communication with remote user Deleting the entire audit log Communication IP address - -: No applicable Expanded Audit Information *1: The starting of Audit Function is substituted with the event of the TOE startup. This TOE does not record the ending of Audit Function. The starting and ending of Audit Function audit the state of inactivity of Audit Function. Since Audit Function works as long as the TOE works and it is not necessary to audit the state of inactivity of Audit Function, it is appropriate not to record the ending of Audit Function. *2: Lockout release for Administrators and Supervisor by the restarting the TOE, which is the special Lockout release operation, is substituted with the event of the TOE startup. *3: For the successful reading of the Document Data, the objects to be recorded in ID of object Document Data are printing, sending by e-mail, delivering to folders and downloading from Web Service Function the Document Data stored in D-BOX. *4: When the recording events occur due to the operations by users, User IDs are set as subject identities of Basic Audit Information, and when the recording events occur due to the TOE, IDs that do not duplicate the user IDs but can identify systems are set. Since there are no interfaces on the TOE for modifying audit logs, unauthorised modification for the audit logs are not performed and the Machine Administrator who can delete the audit logs will not carry out any malicious acts using Administrator privileges. From the above, FAU_GEN.1 (Audit data generation), FAU_STG.1 (Protected audit trail storage) and FAU_STG.4 (Prevention of audit data loss) are accomplished. 7.1.1.2 Reading Audit Logs The TOE allows only the Machine Administrator to read the audit logs as text format from Web Service Function. From the above, FAU_SAR.1 (Audit review), FAU_SAR.2 (Restricted audit review) and FMT_MTD.1 (Management of TSF data) are accomplished. 7.1.1.3 Protection of Audit Logs The TOE allows only the Machine Administrator to delete the entire audit logs from the Operation Panel and Web Service Function. From the above, FAU_SAR.1 (Audit review), FAU_SAR.2 (Restricted audit review) and FMT_MTD.1 (Management of TSF data) are accomplished. 7.1.1.4 Time stamps The TOE provides the data/time of the events of the audit logs by using the date and time of the system clock inside the TOE. From the above, FPT_STM.1 (Reliable time stamps) is accomplished. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
Page 68 of 83
Communication with trusted IT
product
Communication IP address
Communication
with
remote
user
-
Deleting the entire audit log
-
-: No applicable Expanded Audit Information
*1: The starting of Audit Function is substituted with the event of the TOE startup. This TOE does not record
the ending of Audit Function. The starting and ending of Audit Function audit the state of inactivity of Audit
Function. Since Audit Function works as long as the TOE works and it is not necessary to audit the state of
inactivity of Audit Function, it is appropriate not to record the ending of Audit Function.
*2: Lockout release for Administrators and Supervisor by the restarting the TOE, which is the special
Lockout release operation, is substituted with the event of the TOE startup.
*3: For the successful reading of the Document Data, the objects to be recorded in ID of object Document
Data are printing, sending by e-mail, delivering to folders and downloading from Web Service Function the
Document Data stored in D-BOX.
*4: When the recording events occur due to the operations by users, User IDs are set as subject identities of
Basic Audit Information, and when the recording events occur due to the TOE, IDs that do not duplicate the
user IDs but can identify systems are set.
Since there are no interfaces on the TOE for modifying audit logs, unauthorised modification for the audit
logs are not performed and the Machine Administrator who can delete the audit logs will not carry out any
malicious acts using Administrator privileges.
From the above, FAU_GEN.1 (Audit data generation), FAU_STG.1 (Protected audit trail storage) and
FAU_STG.4 (Prevention of audit data loss) are accomplished.
7.1.1.2
Reading Audit Logs
The TOE allows only the Machine Administrator to read the audit logs as text format from Web Service
Function.
From the above, FAU_SAR.1 (Audit review), FAU_SAR.2 (Restricted audit review) and FMT_MTD.1
(Management of TSF data) are accomplished.
7.1.1.3
Protection of Audit Logs
The TOE allows only the Machine Administrator to delete the entire audit logs from the Operation Panel and
Web Service Function.
From the above, FAU_SAR.1 (Audit review), FAU_SAR.2 (Restricted audit review) and FMT_MTD.1
(Management of TSF data) are accomplished.
7.1.1.4
Time stamps
The TOE provides the data/time of the events of the audit logs by using the date and time of the system clock
inside the TOE.
From the above, FPT_STM.1 (Reliable time stamps) is accomplished.
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.