Ricoh Aficio MP C2800 Security Target - Page 48

Table 19: List of specifications of Management Functions Page 48 of 80 Functional requirements FAU_GEN.1 FAU_SAR.1 FAU_SAR.2 FAU_STG.1 FAU_STG.4 FCS_CKM.1 FCS_COP.1 FDP_ACC.1 FDP_ACF.1 FDP_IFC.1 FDP_IFF.1 FIA_AFL.1 FIA_ATD.1 FIA_SOS.1 FIA_UAU.2 Management requirements Management items None a) Maintenance (deletion, modification, addition) of the group of users with read access right to the audit records. None None a) Maintenance (deletion, modification, addition) of actions to be taken in case of audit storage failure. None None None a) Managing the attributes used to make explicit access or denial based decisions. None a) Managing the attributes used to make explicit access based decisions. a) Management of the threshold for unsuccessful authentication attempts. b) Management of actions to be taken in the event of an authentication failure. a) If so indicated in the assignment, the authorised administrator might be able to define additional security attributes for users. a) Management of the metric used to verify the secrets. a) Management of the authentication data by an administrator, b) Management of the authentication data by the user associated with this a) Management of the machine administrator from administrator roles. None: Actions are fixed and not an object of management. a) Management of the file administrator from administrator roles. None: Attributes (data type) used to make explicit access-based decisions are fixed and there are no interfaces to change. a) Security Management Function (management of machine control data): management of the Number of Attempts before Lockout by machine administrator. b) Management of unlocking administrators and Lockout release operations for locked-out users. None: No functions for defining additional security attributes for users. Security Management Function (management of machine control data): The user administrator manages the following settings of the machine control data: - Minimum Password Length - Password Complexity Setting - Security Management Function (management of general user information): management of authentication information of general Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.