Ricoh Aficio MP C305 Security Target - Page 88

Security Management Function

Get Ricoh Aficio MP C305 PDF manuals and user guides View all Ricoh Aficio MP C305 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 88 highlights

Page 87 of 91 Table 38 : List of Cryptographic Operations for Stored Data Protection Encryption-triggering Operations Writing data to HDD Reading data from HDD Cryptographic Operations Encrypt Decrypt Standard FIPS197 Cryptographic Algorithm AES Key Size 256 bits Following operations by the MFP administrator, the TOE generates a cryptographic key. If a login user is the MFP administrator, the screen to generate an HDD cryptographic key is provided from the Operation Panel. If the MFP administrator gives instructions to generate an HDD cryptographic key from the Operation Panel, the TOE uses a genuine random number generator and generates random numbers that conform to the standard BSI-AIS31. 7.8 Security Management Function The Security Management Function consists of functions to 1) control operations for TSF data, 2) maintain user roles assigned to normal users, MFP administrator, or supervisor to operate the Security Management Function, and 3) set appropriate default values to security attributes, all of which accord with user role privileges or user privileges that are assigned to normal users, MFP administrator, or supervisor. FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1 The TOE allows operations for TSF data according to the rules described in Table 39. Table 39 : Management of TSF Data TSF Data Operation Interface Login user names of normal users when Basic Authentication is applied Operation Panel, Web browser Login user names of normal users when External Authentication is applied (*1) Login user name of supervisor Login user name of MFP administrator Operation Panel, Web browser Operation Panel, Web browser Operation Panel, Web browser Operations Newly create, query, modify, delete Query Newly create, query, modify, delete Query, modify Newly create Query, modify Users MFP administrator Applicable normal user MFP administrator Supervisor MFP administrator Applicable MFP administrator Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
Page 87 of
91
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
Table 38 : List of Cryptographic Operations for Stored Data Protection
Encryption-triggering
Operations
Cryptographic
Operations
Standard
Cryptographic
Algorithm
Key
Size
Writing data to HDD
Encrypt
Reading data from HDD
Decrypt
FIPS197
AES
256 bits
Following operations by the MFP administrator, the TOE generates a cryptographic key. If a login user is the
MFP administrator, the screen to generate an HDD cryptographic key is provided from the Operation Panel.
If the MFP administrator gives instructions to generate an HDD cryptographic key from the Operation Panel,
the TOE uses a genuine random number generator and generates random numbers that conform to the
standard BSI-AIS31.
7.8
Security Management Function
The Security Management Function consists of functions to 1) control operations for TSF data, 2) maintain
user roles assigned to normal users, MFP administrator, or supervisor to operate the Security Management
Function, and 3) set appropriate default values to security attributes, all of which accord with user role
privileges or user privileges that are assigned to normal users, MFP administrator, or supervisor.
FMT_MSA.1(a), FMT_MSA.1(b), FMT_MSA.3(a), FMT_MTD.1, FMT_SMF.1 and FMT_SMR.1
The TOE allows operations for TSF data according to the rules described in Table 39.
Table 39 : Management of TSF Data
TSF Data
Operation
Interface
Operations
Users
Newly create,
query,
modify,
delete
MFP administrator
Login user names of normal users
when Basic Authentication is
applied
Operation Panel,
Web browser
Query
Applicable normal
user
Login user names of normal users
when External Authentication is
applied (*1)
Operation Panel,
Web browser
Newly create,
query,
modify,
delete
MFP administrator
Login user name of supervisor
Operation Panel,
Web browser
Query,
modify
Supervisor
Newly create
MFP administrator
Login user name of MFP
administrator
Operation Panel,
Web browser
Query,
modify
Applicable MFP
administrator