Ricoh Aficio MP 6001 SP Security Target - Page 51

of

87

Table 18: Rules on User Documents

Subject

Object

Rules Governing Access

Normal

user

process

User

document

The TOE controls the operations on user documents in the following order 1) and 2).

1) Limit the document types by MFP applications

2) Limit the operation by each normal user

1) Limit the document types by MFP applications

The availability of a user document is determined by the operation interface for

normal user, application type associated with the normal user process, and document

type associated with the user document. The following table shows the relationship

between the application type and available document type.

Operation

Interfaces

Application Type

Available Document Type

Document

Server

Function

Document Server user document,

fax document

Scanner Function

Scanner user document

Operation

Panel

Fax Function

Fax document,

received fax document

Document

Server

Function

Document Server user document,

scanner user document (operation

permission for Scanner Function

is required for the applicable

normal user),

fax

document

(operation

permission for Fax Function is

required for the applicable normal

user)

Client

computer

(Web

browser)

Fax Function

Received fax document (operation

permission for Document Server

Function

is

required

for

the

applicable normal user)

Client

computer

(printer

driver)

Printer Function

Document Server user document

Client

computer (fax

driver)

Fax Function

Fax document

2) Limit the operation for each normal user

When the document user list associated with the user documents includes the login

user name of the normal user associated with the normal user process, the user

document operations of reading (print, download, fax, e-mail and folder

transmission) and deletion are allowed for that normal user process.

Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

Section	Page
1 ST Introduction	7
1.1 ST Reference	7
1.2 TOE Reference	7
1.3 TOE Overview	9
1.3.1 TOE Type	9
1.3.2 TOE Usage	9
1.3.3 Major Security Features of TOE	11
1.4 TOE Description	11
1.4.1 Physical Boundary of TOE	11
1.4.2 Guidance Documents	14
1.4.3 Definition of Users	17
1.4.3.1. Direct User	19
1.4.3.2. Indirect User	19
1.4.4 Logical Boundary of TOE	20
1.4.4.1. Basic Functions	20
1.4.4.2. Security Functions	23
1.4.5 Protected Assets	24
1.4.5.1. User Data	24
1.4.5.2. TSF Data	25
1.4.5.3. Functions	25
1.5 Glossary	25
1.5.1 Glossary for This ST	25
2 Conformance Claim	28
2.1 CC Conformance Claim	28
2.2 PP Claims	28
2.3 Package Claims	28
2.4 Conformance Claim Rationale	29
2.4.1 Consistency Claim with TOE Type in PP	29
2.4.2 Consistency Claim with Security Problems and Security Objectives in PP	29
2.4.3 Consistency Claim with Security Requirements in PP	29
3 Security Problem Definitions	32
3.1 Threats	32
3.2 Organisational Security Policies	33
3.3 Assumptions	33
4 Security Objectives	35
4.1 Security Objectives for TOE	35
4.2 Security Objectives of Operational Environment	36
4.2.1 IT Environment	36
4.2.2 Non-IT Environment	37
	37
4.3 Security Objectives Rationale	38
4.3.1 Correspondence Table of Security Objectives	38
4.3.2 Security Objectives Descriptions	39
5 Extended Components Definition	43
5.1 Restricted forwarding of data to external interfaces (FPT_FDI_EXP)	43
6 Security Requirements	45
6.1 Security Functional Requirements	45
6.1.1 Class FAU: Security audit	45
6.1.2 Class FCS: Cryptographic support	48
6.1.3 Class FDP: User data protection	49
6.1.4 Class FIA: Identification and authentication	53
6.1.5 Class FMT: Security management	56
6.1.6 Class FPT: Protection of the TSF	62
6.1.7 Class FTA: TOE access	62
6.1.8 Class FTP: Trusted path/channels	63
6.2 Security Assurance Requirements	63
6.3 Security Requirements Rationale	64
6.3.1 Tracing	64
6.3.2 Justification of Traceability	65
6.3.3 Dependency Analysis	71
6.3.4 Security Assurance Requirements Rationale	73

Ricoh Aficio MP 6001 SP Security Target - Page 51

Table 18: Rules on User Documents, Subject, Object, Rules Governing Access

Page 51 highlights