Ricoh Aficio MP C2800 Security Target - Page 74

Use of Web Service Function from Client Computer

Get Ricoh Aficio MP C2800 PDF manuals and user guides View all Ricoh Aficio MP C2800 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 74 highlights

7.1.7 SF.NET_PROT Network Communication Data Protection Function Page 74 of 80 This protects document data and print data in transit on internal networks from leakage, and also detects attempts at tampering. Following are explanations of each functional item in " SF.NET_PROT Network Communication Data Protection Function" and their corresponding security functional requirements. 7.1.7.1 Use of Web Service Function from Client Computer Wheneverit receives a request from a client computer for use of the Web Service Function, the TOE communicates with the client computer using the SSL protocol to create a trusted path. By the above, FTP_TRP.1 (Trusted path) is satisfied. 7.1.7.2 Printing and Faxing from Client Computer Whenever it receives a request from a client computer for printing or transmitting faxes, the TOE communicates with the client computer using the SSL protocol to create a trusted path. By the above, FTP_TRP.1 (Trusted path) is satisfied. 7.1.7.3 Sending by E-mail from TOE When sending document data by e-mail to a client computer, the TOE attaches the document data to e-mail and sends the e -mail using S/MIME. The S/MIME destination information is registered as S/MIME user information within general user information. Users can send e-mail referring to the registered destination details only. By the above, FTP_TRP.1 (Trusted path) is satisfied. 7.1.7.4 Delivering to Folders from TOE When sending (delivering) data to folderson SMB or FTP server, the TOE connect s to the server using the IPSec protocol to create a trusted channel. The destination information for the Deliver to Folders function is registered in advance and managed by the TOE as machine control data. Users can send files referring to the registered folder information only. By the above, FTP_ITC.1 (Inter-TSF trusted channel) is satisfied. 7.1.8 SF.FAX_LINE Protection Function for Intrusion via Telephone Line When it receives fax data from the telephone line, the TOE passes the data to the Controller Board. If the received data is not fax data, the TOE discards it. By the above, FDP_IFC.1 (Subset information flow control) and FDP_IFF.1 (Simple security attributes) are satisfied. 7.1.9 SF.GENUINE MFP Control Software Verification Function At every TOE start -up, th e MFP Control Software Verification Function verifies the integrity of the MFP Control Software that is installed in the FlashROM. Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
Page 74 of 80
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
7.1.7
SF.NET_PROT
Network Communication Data Protection Function
This protects document data and print data in transit on internal networks from leakage, and also detects
attempts at tampering.
Following are explanations of each functional item in " SF.NET_PROT
Network
Communication
Data Protection Function" and their corresponding security functional requirements.
7.1.7.1
Use of Web Service Function from Client Computer
Whenever it receives a request from a client computer for use of the Web Service Function, the TOE
communicates with the client computer using the SSL protocol to create a trusted path.
By the above, FTP_TRP.1 (Trusted path) is satisfied.
7.1.7.2
Printing and Faxing from Client Computer
Whenever it receives a request from a client computer for printing or transmitting faxes, the TOE
communicates with the client computer using the SSL protocol to create a trusted path.
By the above, FTP_TRP.1 (Trusted path) is satisfied.
7.1.7.3
Sending by E-mail from TOE
When sending document data by e-mail to a client computer, the TOE attaches the document data to e-mail
and sends the e -mail using S/MIME. The S/MIME destination information is registered as S/MIME user
information within general user information. Users can send e-mail referring to the registered destination
details only.
By the above, FTP_TRP.1 (Trusted path) is satisfied.
7.1.7.4
Delivering to Folders from TOE
When sending (delivering) data to folderson SMB or FTP server, the TOE connect s to the server using the
IPSec protocol to create a trusted channel. The destination information for the Deliver to Folders function is
registered in advance and managed by the TOE as machine control data. Users can send files referring to the
registered folder information only.
By the above, FTP_ITC.1 (Inter-TSF trusted channel) is satisfied.
7.1.8
SF.FAX_LINE
Protection Function for Intrusion via Telephone Line
When it receives fax data from the telephone line, the TOE passes the data to the Controller Board. If the
received data is not fax data, the TOE discards it.
By the above, FDP_IFC.1 (Subset information flow control) and FDP_IFF.1 (Simple security attributes) are
satisfied.
7.1.9
SF.GENUINE
MFP Control Software Verification Function
At every TOE start -up, the MFP Control Software Verification Function verifies the integrity of the MFP
Control Software that is installed
in the FlashROM.