Ricoh Aficio MP C305 Security Target - Page 87

Residual Data Overwrite Function, Stored Data Protection Function

Get Ricoh Aficio MP C305 PDF manuals and user guides View all Ricoh Aficio MP C305 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 87 highlights

FTP server SMB server SMTP server IPSec IPSec S/MIME Page 86 of 91 AES(128bits, 192bits, 256bits), 3DES(168bits) AES(128bits, 192bits, 256bits), 3DES(168bits) 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is to overwrite specific patterns on the HDD and disable the reusing of the residual data included in the deleted documents, temporary documents and their fragments on the HDD. FDP_RIP.1 Methods to delete the HDD area through overwriting include sequential overwriting and batch overwriting. For sequential overwriting, the TOE constantly monitors the information on a residual data area, and overwrites the area if any existing residual data is discovered. If the user deletes document data, the TOE applies the method specified by the MFP administrator and overwrites the area on the HDD where the digital image data of the document data is stored. Also, when a user job is complete, the TOE applies the method specified by the MFP administrator and overwrites the area on the HDD where temporary documents that are created while a user job is executed or the fragments of those temporary documents are stored. For batch overwriting, the TOE collectively overwrites the HDD with the method specified by the MFP administrator. Overwriting methods include NSA method, DoD method, and random number method. NSA method overwrites twice by random numbers and once by Null(0). The DoD method overwrites once by a certain value, once by its complement, and further by random numbers to be verified afterwards. Random number method overwrites for three to nine times by random numbers. The MFP administrator specifies the number of times to overwrite when the TOE is installed. Since the Residual Data Overwrite Function is used in combination with Stored Data Protection Function in this ST, all values that overwrite the HDD will be encrypted. 7.7 Stored Data Protection Function The Stored Data Protection Function is to encrypt the data on the HDD and protect the data so that data leakage can be prevented. FCS_CKM.1 and FCS_COP.1 The TOE encrypts data before writing it on the HDD, and decrypts the encrypted data after reading it from the HDD. This process is applied to all data written on and read from the HDD. Detailed cryptographic operations are shown in Table 38. Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
Page 86 of
91
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
FTP server
IPSec
AES(128bits, 192bits, 256bits), 3DES(168bits)
SMB server
IPSec
AES(128bits, 192bits, 256bits), 3DES(168bits)
SMTP server
S/MIME
3DES(168bits)
7.6
Residual Data Overwrite Function
The Residual Data Overwrite Function is to overwrite specific patterns on the HDD and disable the reusing
of the residual data included in the deleted documents, temporary documents and their fragments on the
HDD.
FDP_RIP.1
Methods to delete the HDD area through overwriting include sequential overwriting and batch overwriting.
For sequential overwriting, the TOE constantly monitors the information on a residual data area, and
overwrites the area if any existing residual data is discovered. If the user deletes document data, the TOE
applies the method specified by the MFP administrator and overwrites the area on the HDD where the digital
image data of the document data is stored. Also, when a user job is complete, the TOE applies the method
specified by the MFP administrator and overwrites the area on the HDD where temporary documents that are
created while a user job is executed or the fragments of those temporary documents are stored.
For batch overwriting, the TOE collectively overwrites the HDD with the method specified by the MFP
administrator.
Overwriting methods include NSA method, DoD method, and random number method. NSA method
overwrites twice by random numbers and once by Null(0). The DoD method overwrites once by a certain
value, once by its complement, and further by random numbers to be verified afterwards. Random number
method overwrites for three to nine times by random numbers. The MFP administrator specifies the number
of times to overwrite when the TOE is installed. Since the Residual Data Overwrite Function is used in
combination with Stored Data Protection Function in this ST, all values that overwrite the HDD will be
encrypted.
7.7
Stored Data Protection Function
The Stored Data Protection Function is to encrypt the data on the HDD and protect the data so that data
leakage can be prevented.
FCS_CKM.1 and FCS_COP.1
The TOE encrypts data before writing it on the HDD, and decrypts the encrypted data after reading it from
the HDD. This process is applied to all data written on and read from the HDD. Detailed cryptographic
operations are shown in Table 38.