Ricoh Aficio MP 5002 Security Target - Page 58

Table 22 : List of Authentication Events of Basic Authentication

Get Ricoh Aficio MP 5002 PDF manuals and user guides View all Ricoh Aficio MP 5002 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 58 highlights

Page 57 of 93 FDP_ACF.1.4(b) The TSF shall explicitly deny access of subjects to objects based on the following additional rules: [assignment: deny an operation on MFP application in case of supervisor process or RC Gate process]. FDP_RIP.1 Subset residual information protection Hierarchical to: No other components. Dependencies: No dependencies. FDP_RIP.1.1 The TSF shall ensure that any previous information content of a resource is made unavailable upon the [selection: deallocation of the resource from] the following objects: [assignment: user documents]. 6.1.4 Class FIA: Identification and authentication FIA_AFL.1 Authentication failure handling Hierarchical to: No other components. Dependencies: FIA_UAU.1 Timing of authentication FIA_AFL.1.1 The TSF shall detect when [selection: an administrator configurable positive integer within [assignment: 1 to 5]] unsuccessful authentication attempts occur related to [assignment: the authentication events of Basic Authentication shown in Table 22]. Table 22 : List of Authentication Events of Basic Authentication FIA_AFL.1.2 Authentication Events User authentication using the Operation Panel User authentication using the TOE from client computer Web browser User authentication when printing from the client computer User authentication when using LAN Fax from client computer When the defined number of unsuccessful authentication attempts has been [selection: met], the TSF shall [assignment: perform actions shown in Table 23]. Table 23 : List of Actions for Authentication Failure Unsuccessfully Authenticated Users Normal user Supervisor Actions for Authentication Failure The lockout for the normal user is released by the lockout time set by the MFP administrator, or release operation by the MFP administrator. The lockout for a supervisor is released by the lockout time set by the MFP administrator, release operation by the MFP administrator, or elapse of a given time after the TOE's restart. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
Page 57 of
93
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
FDP_ACF.1.4(b) The TSF shall explicitly deny access of subjects to objects based on the following additional
rules:
[assignment: deny an operation on MFP application in case of supervisor process or
RC Gate process]
.
FDP_RIP.1
Subset residual information protection
Hierarchical to:
No other components.
Dependencies:
No dependencies.
FDP_RIP.1.1
The TSF shall ensure that any previous information content of a resource is made unavailable
upon the
[selection: deallocation of the resource from]
the following objects:
[assignment:
user documents]
.
6.1.4
Class FIA: Identification and authentication
FIA_AFL.1
Authentication failure handling
Hierarchical to:
No other components.
Dependencies:
FIA_UAU.1 Timing of authentication
FIA_AFL.1.1
The TSF shall detect when
[selection: an administrator configurable positive integer within
[assignment: 1 to 5]]
unsuccessful authentication attempts occur related to
[assignment: the
authentication events of Basic Authentication shown in Table 22]
.
Table 22 : List of Authentication Events of Basic Authentication
Authentication Events
User authentication using the Operation Panel
User authentication using the TOE from client computer Web
browser
User authentication when printing from the client computer
User authentication when using LAN Fax from client computer
FIA_AFL.1.2
When the defined number of unsuccessful authentication attempts has been
[selection: met]
,
the TSF shall
[assignment: perform actions shown in Table 23]
.
Table 23 : List of Actions for Authentication Failure
Unsuccessfully
Authenticated Users
Actions for Authentication Failure
Normal user
The lockout for the normal user is released by the lockout time set by the MFP
administrator, or release operation by the MFP administrator.
Supervisor
The lockout for a supervisor is released by the lockout time set by the MFP
administrator, release operation by the MFP administrator, or elapse of a given
time after the TOE's restart.