Ricoh Aficio MP C2800 Security Target - Page 72

Management of Machine Control Data, SF.CE_OPE_LOCK, Service Mode Lock Function

Get Ricoh Aficio MP C2800 PDF manuals and user guides View all Ricoh Aficio MP C2800 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 72 highlights

Page 72 of 80 7.1.4.5 Management of Machine Control Data Management of machine control data allows setting of machine control data by specified users only. The TOE allows only specified users to use the functions that set the machine control data from specified operation interfaces. Table 32 shows for each item of machine control data, the range of values that can be set, the operations available, the authorised setter, and the operation interfaces allowed by the TOE. The TOE also allows the user administrator and general users to query the destination information when using the Deliver to Folder function. Table 32: Administrators authorised to specify machine control data Machine control data items Number of Attempts before Lockout Setting for Lockout Release Timer Lockout time Minimum Password Length Password Complexity Setting Date and time of system clock Range of setting value An integer 1-5 (times) Active or Inactive 1-9999 (minutes) An integer 8-32 (digits) Level 1 or Level 2 Date, time (hour, minute, second) Operations Query, modify Query, modify Query, modify Query, modify Query, modify Query, modify Query Lockout Flag for general users Lockout Flag for administrators Lockout Flag for supervisor Inactive Inactive Inactive Query, modify Query, modify Query, modify Authorised setter Machine administrators Machine administrators Machine administrators User administrators User administrators Machine administrators General users, user administrators, network administrators, file administrators, supervisor User administrators Supervisor Machine administrators Operation interfaces Web Service Function Web Service Function Web Service Function Operation Panel Operation Panel Operation Panel, Web Service Function Web Service Function Web Service Function Web Service Function By the above, FIA_AFL.1 (Authentication failure handling), FMT_MTD.1 (Management of TSF data), FMT_SMF.1 (Specification of management function), and FMT_SMR.1 (Security roles) are satisfied. 7.1.5 SF.CE_OPE_LOCK Service Mode Lock Function The Service Mode Lock Function restricts use of the Maintenance Functions to CEs only, based on the Service Mode Lock Function setting specified by the machine administrator. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
Page 72 of 80
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
7.1.4.5
Management of Machine Control Data
Management of machine control data allows setting of machine control data by specified users only.
The TOE allows only specified users to use the functions that set the machine control data from specified
operation interfaces. Table 32 shows for each item of machine control data, the range of values that can be
set, the operations available, the authorised setter, and the operation interfaces allowed by the TOE.
The TOE also allows the user administrator and general users to query the destination information when
using the Deliver to Folder function.
Table 32: Administrators authorised to specify machine control data
Machine control
data items
Range of setting
value
Operations
Authorised setter
Operation
interfaces
Number of Attempts
before Lockout
An integer 1-5
(times)
Query,
modify
Machine
administrators
Web Service
Function
Setting for Lockout
Release Timer
Active or Inactive
Query,
modify
Machine
administrators
Web Service
Function
Lockout time
1-9999 (minutes)
Query,
modify
Machine
administrators
Web Service
Function
Minimum Password
Length
An integer 8-32
(digits)
Query,
modify
User administrators
Operation
Panel
Password Complexity
Setting
Level 1 or Level
2
Query,
modify
User administrators
Operation
Panel
Query,
modify
Machine
administrators
Date and time of
system clock
Date, time (hour,
minute, second)
Query
General users,
user administrators,
network
administrators,
file administrators,
supervisor
Operation
Panel,
Web Service
Function
Lockout Flag for
general users
Inactive
Query,
modify
User administrators
Web Service
Function
Lockout Flag for
administrators
Inactive
Query,
modify
Supervisor
Web Service
Function
Lockout Flag for
supervisor
Inactive
Query,
modify
Machine
administrators
Web Service
Function
By the above, FIA_AFL.1 (Authentication failure handling), FMT_MTD.1 (Management of TSF data),
FMT_SMF.1 (Specification of management function), and FMT_SMR.1 (Security roles) are satisfied.
7.1.5
SF.CE_OPE_LOCK
Service Mode Lock Function
The Service Mode Lock Function restricts use of the Maintenance Functions to CEs only, based on the
Service Mode Lock Function setting specified by the machine administrator.