Ricoh Aficio MP C305 Security Target - Page 84

Page 83 of 91 7.3 Document Access Control Function The Document Access Control Function is to allow authorised TOE users to operate document data and user jobs in accordance with the provided user role privilege or user privilege. FDP_ACC.1(a) and FDP_ACF.1(a) The TOE controls user operations for document data and user jobs in accordance with (1) access control rule on document data and (2) access control rule on user jobs. (1) Access control rule on document data The TOE provides users with the interface for stored documents to be printed, downloaded to the client computers, sent by fax, sent by e-mail as attachments, sent to folders, and deleted. The interface enables users to delete all the stored documents. Users authorised to operate stored documents are MFP administrator and normal users. The supervisor and RC Gate are not allowed to operate stored documents. When the MFP administrator or a normal user logs on to the TOE from the Operation Panel or to WIM from the client computer, the TOE displays a list of the stored documents whose operations are authorised and the menu for the authorised operations (printing, downloading to the client computers, sending by fax, sending by e-mail as attachments, sending to folders, deleting, and deleting all files). When the MFP administrator logs on to the TOE from the Operation Panel or to WIM from the client computer, the TOE displays a list of all the stored documents and the operation menu for deletion and deletion of all files. The MFP administrator can select and delete a document from the list of the stored documents or all documents. When a normal user logs on to the TOE from the Operation Panel or to WIM from the client computer, the TOE displays a list of the stored documents that register the login user names of the normal users who logged in to the document user list, and an operation menu. They will be displayed according to the rules shown in Table 36. The privileges that allow users to edit the document user list are shown in "7.8 Security Management Function". Also, the TOE allows only the user job owner to view and delete the document data handled as a user job while Copy Function, Printer Function, Scanner Function, Fax Function, or Document Server Function is being used. While no interface to change job owners is provided, an interface to cancel user jobs is provided. If a user job is cancelled, any document the cancelled job operates will be deleted. Table 36 : Stored Documents Access Control Rules for Normal Users I/F to be Used Operation Panel Operation Panel Available Functions for Users Document Server Function Document Server Function Types of Stored Documents displayed in the List Document Server documents Fax transmission documents Operations displayed on the Menu Print Delete Print Delete Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.