Ricoh Aficio MP C305 Security Target - Page 60

Table 24 : Rules for Initial Association of Attributes

Get Ricoh Aficio MP C305 PDF manuals and user guides View all Ricoh Aficio MP C305 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 60 highlights

Page 59 of 91 authentication of MFP administrator and supervisor with Basic Authentication, and identification of normal user with external authentication server). FIA_UID.1.2(b) The TSF shall require each user to be successfully identified before allowing other TSF-mediated actions on behalf of that user. FIA_UID.2 User identification before action Hierarchical to: FIA_UID.1Timing of identification Dependencies: No dependencies. FIA_UID.2.1 The TSF shall require each user to be successfully identified (refinement: identification of a person who intends to use the TOE from RC Gate communication interface) before allowing other TSF-mediated actions on behalf of that user. FIA_USB.1 User-subject binding Hierarchical to: No other components. Dependencies: FIA_ATD.1 User attribute definition FIA_USB.1.1 The TSF shall associate the following user security attributes with subjects acting on the behalf of that user: [assignment: login user name of normal user, login user name of MFP administrator, available function list, and user role]. FIA_USB.1.2 The TSF shall enforce the following rules on the initial association of user security attributes with subjects acting on the behalf of users: [assignment: rules for the initial association of attributes listed in Table 24]. Table 24 : Rules for Initial Association of Attributes Users Subjects User Security Attributes Normal user Normal user process - Login user name of normal user - User role - Available function list Supervisor Supervisor process - User role MFP administrator MFP administrator process - Login user name of MFP administrator - User role RC Gate RC Gate process - User role FIA_USB.1.3 The TSF shall enforce the following rules governing changes to the user security attributes associated with subjects acting on the behalf of users: [assignment: none]. 6.1.5 Class FMT: Security management FMT_MSA.1(a)Management of security attributes Hierarchical to: No other components. Dependencies: [FDP_ACC.1 Subset access control, or FDP_IFC.1 Subset information flow control] Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
Page 59 of
91
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
authentication of MFP administrator and supervisor with Basic Authentication, and
identification of normal user with external authentication server).
FIA_UID.1.2(b) The TSF shall require each user to be successfully identified before allowing other
TSF-mediated actions on behalf of that user.
FIA_UID.2
User identification before action
Hierarchical to:
FIA_UID.1Timing of identification
Dependencies:
No dependencies.
FIA_UID.2.1
The TSF shall require each user to be successfully identified (refinement: identification of a
person who intends to use the TOE from RC Gate communication interface) before allowing
other TSF-mediated actions on behalf of that user.
FIA_USB.1
User-subject binding
Hierarchical to:
No other components.
Dependencies:
FIA_ATD.1 User attribute definition
FIA_USB.1.1
The TSF shall associate the following user security attributes with subjects acting on the behalf
of that user:
[assignment: login user name of normal user, login user name of MFP
administrator, available function list, and user role]
.
FIA_USB.1.2
The TSF shall enforce the following rules on the initial association of user security attributes
with subjects acting on the behalf of users:
[assignment: rules for the initial association of
attributes listed in Table 24]
.
Table 24 : Rules for Initial Association of Attributes
Users
Subjects
User Security Attributes
Normal user
Normal user process
- Login user name of normal user
- User role
- Available function list
Supervisor
Supervisor process
- User role
MFP administrator
MFP administrator process
- Login user name of MFP administrator
- User role
RC Gate
RC Gate process
- User role
FIA_USB.1.3
The TSF shall enforce the following rules governing changes to the user security attributes
associated with subjects acting on the behalf of users:
[assignment: none]
.
6.1.5
Class FMT: Security management
FMT_MSA.1(a) Management of security attributes
Hierarchical to:
No other components.
Dependencies:
[FDP_ACC.1 Subset access control, or
FDP_IFC.1 Subset information flow control]