Ricoh Aficio MP C3501 Security Target - Page 65

Page 64 of 93 FMT_MSA.3.2(a) The TSF shall allow the [assignment: authorised identified roles shown in Table 28] to specify alternative initial values to override the default values when an object or information is created. Table 28 : Authorised Identified Roles Allowed to Override Default Values Objects Document data Document data [when document data attribute is (+DSR)] Document data [when document data attributes are (+PRT), (+SCN), (+CPY), (+FAXIN), and (+FAXOUT)] User job Security Attributes Document data attribute Document user list Document user list Login user name of normal user Authorised Identified Roles - No authorised identified roles - MFP administrator - Normal user who stored the applicable document data - No authorised identified roles - No authorised identified roles FMT_MSA.3(b) Static attribute initialisation Hierarchical to: No other components. Dependencies: FMT_MSA.1 Management of security attributes FMT_SMR.1 Security roles FMT_MSA.3.1(b)The TSF shall enforce the [assignment: TOE function access control SFP] to provide [selection: [assignment: the permissive to the available function list, restrictive to the function type, restrictive to the user role]] default values for security attributes that are used to enforce the SFP. FMT_MSA.3.2(b)The TSF shall allow the [assignment: MFP administrator for the available function list, no authorised identified roles for the function type, no authorised identified roles for the user role] to specify alternative initial values to override the default values when an object or information is created. FMT_MTD.1 Management of TSF data Hierarchical to: No other components. Dependencies: FMT_SMR.1 Security roles FMT_SMF.1 Specification of Management Functions Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.