Ricoh Aficio MP 5002 Security Target - Page 59

Page 58 of 93 MFP administrator The lockout for the MFP administrator is released by the lockout time set by the MFP administrator, release operation by a supervisor, or elapse of a given time after the TOE's restart. FIA_ATD.1 User attribute definition Hierarchical to: No other components. Dependencies: No dependencies. FIA_ATD.1.1 The TSF shall maintain the following list of security attributes belonging to individual users: [assignment: the security attributes listed in Table 24 for each user in Table 24]. Table 24 : List of Security Attributes for Each User That Shall Be Maintained Users Normal user Supervisor MFP administrator RC Gate List of Security Attributes - Login user name of normal user - User role - Available function list - User role - Login user name of MFP administrator - User role - User role FIA_SOS.1 Verification of secrets Hierarchical to: No other components. Dependencies: No dependencies. FIA_SOS.1.1 The TSF shall provide a mechanism to verify that secrets (refinement: secrets used in Basic Authentication) meet [assignment: the following quality metrics]. (1) Usable character and types: Upper-case letters: [A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) Numbers: [0-9] (ten digits) Symbols: SP (spaces 33 symbols) (2) Registrable password length: For normal users: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 128 characters. For MFP administrators and a supervisor: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) Rule: Passwords that are composed of a combination of characters based on the password complexity setting specified by the MFP administrator can be registered. The MFP administrator specifies either Level 1 or Level 2 for password complexity setting. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.