Ricoh Aficio MP C305 Security Target - Page 63

Page 62 of 91 Table 27 : Authorised Identified Roles Allowed to Override Default Values Objects Document data Document data [when document data attribute is (+DSR)] Document data [when document data attributes are (+PRT), (+SCN), (+CPY), (+FAXIN), and (+FAXOUT)] User job Security Attributes Document data attribute Document user list Document user list Authorised Identified Roles No authorised identified roles MFP administrator, Normal user who stored the applicable document data No authorised identified roles Login user name of normal user No authorised identified roles FMT_MSA.3(b) Static attribute initialisation Hierarchical to: No other components. Dependencies: FMT_MSA.1 Management of security attributes FMT_SMR.1 Security roles FMT_MSA.3.1(b)The TSF shall enforce the [assignment: TOE function access control SFP] to provide [selection: restrictive] default values for security attributes that are used to enforce the SFP. FMT_MSA.3.2(b)The TSF shall allow the [assignment: no authorised identified roles] to specify alternative initial values to override the default values when an object or information is created. FMT_MTD.1 Management of TSF data Hierarchical to: No other components. Dependencies: FMT_SMR.1 Security roles FMT_SMF.1 Specification of Management Functions FMT_MTD.1.1 The TSF shall restrict the ability to [selection: query, modify, delete, [assignment: newly create]] the [assignment: list of TSF data in Table 28] to [assignment: the user roles in Table 28]. Table 28 : List of TSF Data TSF Data Login password of normal user for Basic Authentication Operations Newly create, modify Modify Login password of supervisor Modify User Roles MFP administrator Normal user who owns the login password Supervisor Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.