Ricoh Aficio MP C3501 Security Target - Page 88

Network Protection Function, Residual Data Overwrite Function

Get Ricoh Aficio MP C3501 PDF manuals and user guides View all Ricoh Aficio MP C3501 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 88 highlights

Page 87 of 93 FDP_ACC.1(b) and FDP_ACF.1(b) The TOE verifies the role for an authorised TOE user who attempts to start operating Copy Function, Printer Function, Scanner Function, Document Server Function, and Fax Function. If the role is that of normal user, the user can operate only functions that are included in the available function list set for each normal user. If the role is that of MFP administrator, the user can operate Fax Reception Function that corresponds to MFP management. If the role is that of supervisor and RC Gate, using any functions is not allowed. 7.5 Network Protection Function The Network Protection Function is to provide network monitoring to prevent information leakage when LAN is used and to detect data tampering. FTP_ITC.1 The encrypted communications provided by the TOE differ depending on communicating devices. Table 38 shows the encrypted communications provided by the TOE. Table 38 : Encrypted Communications Provided by the TOE Communicating Encrypted communications provided by the TOE Devices Protocols Cryptographic Algorithms Client computer TLS1.0 AES(128bits, 256bits), 3DES(168bits) External Kerberos AES(128bits, 256bits), 3DES(168bits) authentication server RC Gate SSL3.0, TLS1.0 AES(128bits, 256bits), 3DES(168bits) FTP server IPSec AES(128bits, 192bits, 256bits), 3DES(168bits) SMB server IPSec AES(128bits, 192bits, 256bits), 3DES(168bits) SMTP server S/MIME 3DES(168bits) 7.6 Residual Data Overwrite Function The Residual Data Overwrite Function is to overwrite specific patterns on the HDD and disable the reusing of the residual data included in the deleted documents, temporary documents and their fragments on the HDD. FDP_RIP.1 Methods to delete the HDD area through overwriting include sequential overwriting and batch overwriting. For sequential overwriting, the TOE constantly monitors the information on a residual data area, and overwrites the area if any existing residual data is discovered. If the user deletes document data, the TOE Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
Page 87 of
93
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
FDP_ACC.1(b) and FDP_ACF.1(b)
The TOE verifies the role for an authorised TOE user who attempts to start operating Copy Function, Printer
Function, Scanner Function, Document Server Function, and Fax Function.
If the role is that of normal user, the user can operate only functions that are included in the available
function list set for each normal user.
If the role is that of MFP administrator, the user can operate Fax Reception Function that corresponds to
MFP management.
If the role is that of supervisor and RC Gate, using any functions is not allowed.
7.5
Network Protection Function
The Network Protection Function is to provide network monitoring to prevent information leakage when
LAN is used and to detect data tampering.
FTP_ITC.1
The encrypted communications provided by the TOE differ depending on communicating devices. Table 38
shows the encrypted communications provided by the TOE.
Table 38 : Encrypted Communications Provided by the TOE
Encrypted communications provided by the TOE
Communicating
Devices
Protocols
Cryptographic Algorithms
Client computer
TLS1.0
AES(128bits, 256bits), 3DES(168bits)
External
authentication server
Kerberos
AES(128bits, 256bits), 3DES(168bits)
RC Gate
SSL3.0, TLS1.0
AES(128bits, 256bits), 3DES(168bits)
FTP server
IPSec
AES(128bits, 192bits, 256bits), 3DES(168bits)
SMB server
IPSec
AES(128bits, 192bits, 256bits), 3DES(168bits)
SMTP server
S/MIME
3DES(168bits)
7.6
Residual Data Overwrite Function
The Residual Data Overwrite Function is to overwrite specific patterns on the HDD and disable the reusing
of the residual data included in the deleted documents, temporary documents and their fragments on the
HDD.
FDP_RIP.1
Methods to delete the HDD area through overwriting include sequential overwriting and batch overwriting.
For sequential overwriting, the TOE constantly monitors the information on a residual data area, and
overwrites the area if any existing residual data is discovered. If the user deletes document data, the TOE