Ricoh Aficio MP C305 Security Target - Page 61

Page 60 of 91 FMT_SMR.1 Security roles FMT_SMF.1 Specification of Management Function FMT_MSA.1.1(a) The TSF shall enforce the [assignment: document access control SFP] to restrict the ability to [selection: query, modify, delete, [assignment: newly create]] the security attributes [assignment: security attributes in Table 25] to [assignment: the user roles with operation permission in Table 25]. Table 25 : User Roles for Security Attributes (a) Security Attributes Operations Login user name of normal user for Basic Authentication Login user name of normal user for External Authentication Login user name of supervisor Login user name of MFP administrator Document data attribute Document user list [when document data attributes are (+PRT), (+SCN), (+CPY), and (+FAXOUT)] Document user list [when document data attribute is (+DSR)] Document user list [when document data attribute is (+FAXIN)] Query, modify, delete, newly create Query Query, modify, delete, newly create Query, modify Newly create Query, modify Query No operation permitted No operation permitted Query, modify Query, modify User Roles with Operation Permission MFP administrator Normal user who owns the applicable login user name MFP administrator Supervisor MFP administrator MFP administrator who owns the applicable login user name Supervisor None None MFP administrator, applicable normal user who stored the document data MFP administrator FMT_MSA.1(b)Management of security attributes Hierarchical to: No other components. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.