Ricoh Aficio MP 3351 Security Target - Page 22

In this ST, the Service Mode Lock Function is set to "ON" for the target of evaluation. Page 21 of 87 - Web Function A function for the TOE user to remotely control the TOE from the client computer. To control the TOE remotely, the TOE user needs to install the designated Web browser on the client computer following the guidance documents and connect the client computer to the TOE via the LAN. 1.4.4.2. Security Functions The Security Functions are described as follows: - Audit Function The Audit Function is to generate the audit log when security events occur so that the operation status of the TOE can be checked and any security intrusion can be detected. Also, this function can be used only by the MFP administrator to view and delete the recorded audit log. To view and delete the audit log, the Web Function will be used. - Identification and Authentication Function The Identification and Authentication Function is to identify and authenticate persons when they use the TOE, to lockout persons who consecutively fail authentication attempts, and to protect the authentication feedback area where the login password is entered using the Operation Panel. To use the Printer or Fax Function from the printer or fax driver, users will be identified and authenticated by entering the login user name and login password received from the printer or fax drivers. - Document Access Control Function The Document Access Control Function is to control the operations for user documents and user jobs by the authorised TOE users who are authenticated by Identification and Authentication Function. It controls user's operation on the user documents and user jobs based on the privileges for the user role, or the operation permissions for each user. - Use-of-Feature Restriction Function The Use-of-Feature Restriction Function is to control the operations of functions (Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function) by the authorised TOE users who are authenticated by Identification and Authentication Function. It controls the use of functions based on the privileges for the user role, or the operation permissions for each user. - Network Protection Function The Network Protection Function is to prevent information leakage through wiretapping on the LAN and detect data tampering. The protection function can be enabled using a Web browser to specify the URL for possible encrypted communication. If the Printer Function is used, the protection function can be enabled using the printer driver to specify encrypted communication. If the folder transmission function of Scanner Function is used, the protection function can be enabled through encrypted communication. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.