Ricoh Aficio MP C3501 Security Target - Page 60

Page 59 of 93 Table 24 : List of Security Attributes for Each User That Shall Be Maintained Users Normal user Supervisor MFP administrator RC Gate List of Security Attributes - Login user name of normal user - User role - Available function list - User role - Login user name of MFP administrator - User role - User role FIA_SOS.1 Verification of secrets Hierarchical to: No other components. Dependencies: No dependencies. FIA_SOS.1.1 The TSF shall provide a mechanism to verify that secrets (refinement: secrets used in Basic Authentication) meet [assignment: the following quality metrics]. (1) Usable character and types: Upper-case letters: [A-Z] (26 letters) Lower-case letters: [a-z] (26 letters) Numbers: [0-9] (ten digits) Symbols: SP (spaces 33 symbols) (2) Registrable password length: For normal users: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 128 characters. For MFP administrators and a supervisor: No fewer than the minimum character number specified by MFP administrator (8-32 characters) and no more than 32 characters. (3) Rule: Passwords that are composed of a combination of characters based on the password complexity setting specified by the MFP administrator can be registered. The MFP administrator specifies either Level 1 or Level 2 for password complexity setting. FIA_UAU.1(a) Timing of authentication Hierarchical to: No other components. Dependencies: FIA_UID.1 Timing of identification FIA_UAU.1.1(a) The TSF shall allow [assignment: the viewing of the list of user jobs, Web Image Monitor Help from a Web browser, system status, counter and information of inquiries, execution of fax reception, and repair request notification] on behalf of the user to be performed before the user is authenticated (refinement: authentication with Basic Authentication). Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.