Ricoh Aficio MP C7501SP Security Policy

Ricoh Aficio MP C7501SP Manual

Get Ricoh Aficio MP C7501SP PDF manuals and user guides View all Ricoh Aficio MP C7501SP manuals
Add to My Manuals
Save this manual to your list of manuals

Ricoh Aficio MP C7501SP manual content summary:

  • Ricoh Aficio MP C7501SP | Security Policy - Page 1
    /C7501 series Security Target Author : RICOH COMPANY, LTD. Date : 2011-09-15 Version : 1.00 Portions of imagio MP C6001/C7501 series Security Target are reprinted with written permission from IEEE, 445 Hoes Lane, Piscataway, New Jersey 08855, from IEEE 2600.1, Protection Profile for
  • Ricoh Aficio MP C7501SP | Security Policy - Page 2
    Page 1 of 89 Version 1.00 Date 2011-09-15 Revision History Author RICOH COMPANY, LTD. Detail Publication version. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 3
    1.4.3 Definition of Users 15 1.4.3.1. Direct User...15 1.4.3.2. Indirect User...16 1.4.4 Logical Functions 20 1.4.5 Protected Assets...22 1.4.5.1. User Data...22 1.4.5.2. TSF Data...23 1.4.5.3. in PP 28 2.4.2 Consistency Claim with Security Problems and Security Objectives in PP .........28 2.4.3
  • Ricoh Aficio MP C7501SP | Security Policy - Page 4
    Class FAU: Security audit 45 6.1.2 Class FCS: Cryptographic support 48 6.1.3 Class FDP: User data protection 49 6.1.4 Class FIA: Identification and authentication 54 Audit Function ...76 7.2 Identification and Authentication Function 78 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 5
    Data Overwrite Function 83 7.7 Stored Data Protection Function 84 7.8 Security Management Function 84 7.9 Software Verification Function 89 7.10 Fax Line Separation Function 89 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 6
    : Definition of Users ...15 Table 3 : List of Administrative Roles ...15 Table 4 : Definition of User Data ...22 Table Table 22 : User Roles for Security Attributes (a 58 Table 23 : User Roles for Security Each User Role 79 Table 33 : Stored Documents Access Control Rules for Normal Users 81
  • Ricoh Aficio MP C7501SP | Security Policy - Page 7
    Page 6 of 89 Table 36 : Management of TSF Data ...85 Table 37 : List of Static Initialisation for Security Attributes of Document Access Control SFP 88 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 8
    information of the TOE. Table 1 : Identification Information of TOE Names - Ricoh imagio MP C6001 SP - Ricoh imagio MP C7501 SP MFPs Versions Software System/Copy Network Support Scanner Printer Fax RemoteFax Web Support Web Uapl NetworkDocBox animation RPCS RPCS Font 1.03 9.62 01.05 1.03
  • Ricoh Aficio MP C7501SP | Security Policy - Page 9
    03 GWFCU3-18(WW) Data Erase Opt 02.00.00 1.01x Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax 1.3 TOE Overview This section defines TOE Type, TOE Usage and Major Security outlined in this section. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 10
    and telephone lines, as shown in Figure 1. Users can operate the TOE from the Operation Panel The MFP is connected to the office LAN, and users can perform the following operations from the Operation Panel and network transmission of paper documents, - Print, fax, network transmission, and deletion of
  • Ricoh Aficio MP C7501SP | Security Policy - Page 11
    printing of documents using the printer driver installed on the client computer, - Storage and faxing of documents using the fax driver is applied. The TOE identifies and authenticates the user by communicating with the external authentication server via LAN RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 12
    1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE, and Protected Assets. 1.4.1 Physical Boundary of TOE The physical , USB Port, SD Card Slot, and SD Card. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 13
    TSF data for configuring MFP operations is stored. - Ic Key A security chip that has the functions of random number generation, cryptographic key generation Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 14
    Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl is an output device to print and eject paper documents, Printer Engine according to instructions from the MFP user names and login passwords of normal users. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 15
    a client computer to the TOE for printing directly from the client computer. During MP C7501/C6001 series Quick guide D081-7645 - App2Me Start Guide D085-7902 - Notes for Users D081-7614A - Operating Instructions Drivers&Utilities imagio MP C6001/C6001SP/C7501/C7501SP
  • Ricoh Aficio MP C7501SP | Security Policy - Page 16
    to manage the TOE. An administrator performs management operations, which include issuing login names to normal users. An IT device connected to networks. RC Gate performs the @Remote Service Function of the TOE via RC Gate communication interface. Copy Function, Fax Function, Scanner Function
  • Ricoh Aficio MP C7501SP | Security Policy - Page 17
    manage stored documents. This privilege allows access management of stored documents. 1.4.3.2. Indirect User Responsible manager of MFP The responsible manager of MFP is a person who is of installation, setup, and maintenance of the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 18
    and other editorial jobs can be applied to the copy image. It can also be stored on the HDD as a Document Server document. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 19
    users from the printer driver. The printing methods include direct print, Document Server storage, locked print, stored print, hold print, and sample print. For direct print, documents received by the TOE will be printed can be ensured. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 20
    using the Operation Panel, while they can be printed, deleted and downloaded from a Web browser. According to the guidance document, users first install the specified fax driver on their own client computers, and then use this function. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 21
    . From the Operation Panel, users can store, print and delete Document Server documents. Also, users can print and delete fax documents. From a Web browser, users can print and delete Document Server documents, fax, print, download, and delete fax documents. Also, users can send scanner documents to
  • Ricoh Aficio MP C7501SP | Security Policy - Page 22
    driver, a user will be required to enter his or her login user name and login password received from the printer or fax drivers, so that the user can be verified as a normal user. To use the @Remote Service user role and the operation permissions for each user using the printer driver to specify
  • Ricoh Aficio MP C7501SP | Security Policy - Page 23
    is used, the protection function can be enabled using the fax driver to specify encrypted communication. When communicating with RC Gate, encrypted the TOE. Jobs specified by users. In this ST, a "user job" is referred to as a "job". Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved
  • Ricoh Aficio MP C7501SP | Security Policy - Page 24
    , Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, RPCS, RPCS Font, LANG0, LANG1 and Data Erase Opt. An identifier assigned to each normal user, MFP administrator, and supervisor. The TOE identifies users by this identifier. Copyright (c) 2011 RICOH COMPANY, LTD. All rights
  • Ricoh Aficio MP C7501SP | Security Policy - Page 25
    , such as +PRT, +SCN, +CPY, +FAXOUT, +FAXIN, and +DSR. One of the document data attributes. Documents printed from the client computer, or documents stored in the TOE by locked print, hold print, and sample print using the client computer. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 26
    to IT devices by e-mail or sent to folders, or downloaded on the client computer from the MFP. For these operations the printed with Document Server printing or stored print from the client computer, One of the security attributes of document data. A list of the login user names of the normal users
  • Ricoh Aficio MP C7501SP | Security Policy - Page 27
    driver on client computer. Sometimes referred to as "PC FAX". General term for remote diagnosis maintenance services for the TOE. Also called @Remote Service. The facility where the centre server of @Remote is located. A function for users Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 28
    .2. The selected SFR Packages from the PP are: 2600.1-PRT conformant 2600.1-SCN conformant 2600.1-CPY conformant 2600.1-FAX conformant 2600.1-DSR conformant Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 29
    of the scanner device and print device, and have the interface Problems and Security Objectives in PP Defining all security problems problem problems and security the security problem definitions to security problems and security do not affect any security problems and security objectives defined in
  • Ricoh Aficio MP C7501SP | Security Policy - Page 30
    the security problems and For authentication of normal users of this TOE, APPLICATION NOTE 35, the authentications of users are assumed to be executed by and authentication methods for normal users or administrator, FIA_UAU.2 and authentication method for normal users or administrator and the
  • Ricoh Aficio MP C7501SP | Security Policy - Page 31
    the intended user. This user jobs, this ST rejects supervisor and RC Gate to operate document data and user users for this TOE. This indicates that the PP does not allow users to operate the TOE, unless they are identified as the users of document data and user the PP allows users with administrator
  • Ricoh Aficio MP C7501SP | Security Policy - Page 32
    TOE allows the MFP administrator to delete document data and user jobs (document access control SFP, FDP_ACC.1(a) and FDP_ACF.1(a)), and accessed when receiving from a telephone line, is regarded as a user with administrator privileges. Therefore, FDP_ACF.1.3(b) in this ST satisfies FDP_ACF.1.3(b) in
  • Ricoh Aficio MP C7501SP | Security Policy - Page 33
    Problem user name, or to persons with a login user user name, or by persons with a login user name but without an access permission to the document. T.FUNC.ALT User job alteration User login user name, or by persons with a login user name but login user name, or to persons with a login user name
  • Ricoh Aficio MP C7501SP | Security Policy - Page 34
    shall be reviewed by authorised persons User training The responsible manager of MFP trains users according to the guidance document and users are aware of the security policies and procedures of their organisation and are competent to follow those policies and procedures. Copyright (c) 2011 RICOH
  • Ricoh Aficio MP C7501SP | Security Policy - Page 35
    The responsible manager of MFP selects administrators who do not use their privileged access rights for malicious purposes according to the guidance document. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 36
    login user name, or by persons with a login user user job alteration The TOE shall protect user jobs from unauthorised alteration by persons without a login user name, or by persons with a login user login user name, or by persons with a login user name user name, or by persons with a login user
  • Ricoh Aficio MP C7501SP | Security Policy - Page 37
    and authentication The TOE shall require identification and authentication of users and shall ensure that users are authorised in accordance with security policies before allowing them security violations, and only by authorised persons. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 38
    the TOE by unauthorised persons. OE.USER.AUTHORIZED Assignment of user authority The responsible manager of MFP shall give users the authority to use the TOE document. OE.AUDIT.REVIEWED Log audit The responsible manager of MFP shall ensure that audit logs are reviewed at appropriate intervals
  • Ricoh Aficio MP C7501SP | Security Policy - Page 39
    USER.AUTHORIZED OE.USER.AUTHORIZED O.SOFTWARE.VERIFIED O.AUDIT.LOGGED OE.AUDIT_STORAGE.PROTCTED OE.AUDIT_ACCESS_AUTHORIZED OE.AUDIT.REVIEWED O.INTERFACE.MANAGED OE.PHYSICAL.MANAGED OE.INTERFACE.MANAGED O.STORAGE.ENCRYPTED O.RCGATE.COMM.PROTECT OE.ADMIN.TRAINED OE.ADMIN.TRUSTED OE.USER P.USER.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 40
    organisation. By O.USER.AUTHORIZED, the TOE requires identification and authentication of users, and users are authorised in accordance with the security policies before being allowed to use the TOE. By O.PROT.NO_ALT, the TOE protects the TSF protected Copyright (c) 2011 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP C7501SP | Security Policy - Page 41
    protects the TSF confidential data from unauthorised disclosure by persons without a login user name, or by persons with a login user name but without an access permission to the TSF confidential data. T.CONF is enforced by this objective. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 42
    MFP and prevents its unauthorised disclosure or alteration. By OE.AUDIT.REVIEWED, the responsible manager of MFP reviews audit logs at appropriate intervals for security violations or unusual patterns .TRAINING is upheld by OE.ADMIN.TRAINED. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 43
    manager of MFP instructs the users in accordance with the guidance documents to make them aware of the security policies and procedures of their organisation, and the users follow those policies and procedures. OE.USER.TRAINED is upheld by this objective. Copyright (c) 2011 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP C7501SP | Security Policy - Page 44
    checks and process data received on one external interface before such (processed) data are allowed to be transferred to another external interface. Examples Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 45
    decided to define an extended component to address this functionality. This extended component protects both user data and TSF data, and it could therefore be placed in either the FDP or the [assignment: the LAN and telephone line]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 46
    PP/ST, [assignment: types of job for FDP_ACF.1(a), all login user names that attempted the user identification for FIA_UID.1, communication direction of Web Function, communication IP and the corresponding auditable events of the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 47
    c) Detailed: All TSF mediated actions performed before authentication of the user. Original: - Start and end operation of storing document data. - Start and end operation of printing document data. - Start and end operation of downloading document data. - Start and end operation of faxing document
  • Ricoh Aficio MP C7501SP | Security Policy - Page 48
    a) Minimal: Settings of Year-Month-Day and Hour-Minute a) Minimal: Termination of session by auto logout. a) Minimal: Failure of communication with trusted channel. FAU_GEN.2 User identity association Hierarchical to: No other components. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 49
    review FAU_SAR.2.1 The TSF shall prohibit all users read access to the audit records, except those users that have been granted explicit read-access. 6.1.2 Class FCS: Cryptographic support key generation algorithm in Table 9] and Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 50
    on HDD - Decryption when reading the data from HDD 6.1.3 Class FDP: User data protection FDP_ACC.1(a) Subset access control Hierarchical to: No other components. Dependencies: , and operations among subjects and objects in Table 11]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 51
    13]. Table 13 : Subjects, Objects and Security Attributes (a) Category Subject Subjects or Objects Normal user process Subject MFP administrator process Security Attributes - Login user name of normal user - User role - User role Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 52
    Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process that created the document data. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 53
    user process with login user name of normal user registered on document user list for document data. Not allowed. However, it is allowed for normal user process with login user name of normal user registered on document user operations on the document data and user jobs in case of supervisor process
  • Ricoh Aficio MP C7501SP | Security Policy - Page 54
    TSF shall ensure that any previous information content of a resource is made unavailable upon the [selection: deallocation of the resource from] the following objects: [assignment: user documents]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 55
    User authentication using the Operation Panel User authentication using the TOE from client computer Web browser User authentication when printing from the client computer User users: [assignment: the security attributes listed in Table 20 for each user in Table 20]. Copyright (c) 2011 RICOH
  • Ricoh Aficio MP C7501SP | Security Policy - Page 56
    status, counter and information of inquiries, execution of fax reception, and repair request notification] on behalf of the user to be performed before the user is authenticated (refinement: authentication with Basic Authentication). Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 57
    user. the list of user jobs, Web Image user to be performed before the user user that user. user the list of user jobs, Web user to be performed before the user is identified (refinement: identification with Basic Authentication). FIA_UID.1.2(a) The TSF shall require each user list of user jobs, Web
  • Ricoh Aficio MP C7501SP | Security Policy - Page 58
    . FIA_UID.2.1 The TSF shall require each user to be successfully identified (refinement: identification Users Subjects User Security Attributes Normal user Normal user process - Login user name of normal user - User role - Available function list Supervisor Supervisor process - User
  • Ricoh Aficio MP C7501SP | Security Policy - Page 59
    owns the applicable login user name Supervisor - No operation permitted - Query, modify Query, modify MFP administrator, applicable normal user who stored the document data MFP administrator -: No user roles are permitted for operations by the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP C7501SP | Security Policy - Page 60
    User Roles for Security Attributes (b) Security Attributes Login user name of normal user for Basic Authentication Login user name of normal user for External Authentication Available function list Function type User to enforce the SFP. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 61
    to the available function list, restrictive to the function type, restrictive to the user role]] default values for security attributes that are used to enforce the SFP. of TSF data in Table 25] to [assignment: the user roles in Table 25]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 62
    of normal user for Basic user information Destination information for folder transmission Users for stored and received documents User User Roles MFP administrator Normal user , normal user MFP administrator operation of query on user certificate is not allowed user MFP administrator Normal user
  • Ricoh Aficio MP C7501SP | Security Policy - Page 63
    of date and time by supervisor Query of date and time by normal user Query and deletion of audit logs by MFP administrator New creation of HDD deletion of S/MIME user information by MFP administrator Query of S/MIME user information by normal user Copyright (c) 2011 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP C7501SP | Security Policy - Page 64
    the MFP Control Software, FCU Control Software]]. FPT_TST.1.2 The TSF shall provide authorised users with the capability to verify the integrity of [selection: [assignment: the audit log TSF to [assignment: the LAN and telephone line]. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 65
    from the printer driver, completion of document data reception from the fax driver, and termination of documents ALC: Life-cycle support ADV_ARC.1 ADV_FSP.3 ADV_TDS user guidance Preparative procedures Authorisation controls Implementation representation CM coverage Copyright (c) 2011 RICOH
  • Ricoh Aficio MP C7501SP | Security Policy - Page 66
    definition ST introduction Security objectives Derived security requirements Security problem definition TOE summary specification Analysis of coverage Testing: basic functional requirement fulfils at least one TOE security objective. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 67
    NO_ALT O.FUNC.NO_ALT O.PROT.NO_ALT O.CONF.NO_DIS O.CONF.NO_ALT O.USER.AUTHORIZED O.INTERFACE.MANAGED O.SOFTWARE.VERIFIED O.AUDIT.LOGGED O.STORAGE.ENCRYPTED FMT_MSA.3(a) X XX X X X X X X X X X X X X X X X X X X X X X X X X X X X X X Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 68
    of the security attributes. FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login user name, and available operations (query and modify) on the document user list, and a specified user Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 69
    are not allowed to delete user jobs. Deletion is the only modification operation on this TOE's user jobs. (2) Use trusted channels for sending or receiving user jobs. The user jobs sent and received by the TOE via the LAN are protected by FTP_ITC.1. Copyright (c) 2011 RICOH COMPANY, LTD. All rights
  • Ricoh Aficio MP C7501SP | Security Policy - Page 70
    of TSF protected data alteration O.PROT.NO_ALT is the security objective to allow only users who can maintain the security to alter the TSF protected data. To fulfil this security for these countermeasures, O.CONF.NO_DIS is fulfilled. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 71
    browser of client computer, documents are printed by using the client computer, and faxed by LAN fax from the client computer. To fulfil this security objective, it is required to implement the following countermeasures. (1) Identify and authenticate the users prior to the TOE use. FIA_UID.1(a) and
  • Ricoh Aficio MP C7501SP | Security Policy - Page 72
    or fax driver. The TOE terminates the session with RC Gate after completing the communication with RC Gate. (5) Management of the security attributes. According to FMT_MSA.1(b), the login user name and available function list of normal user are managed by the MFP administrator, and users are not
  • Ricoh Aficio MP C7501SP | Security Policy - Page 73
    the data to be written into the HDD is encrypted. To fulfil this security objective, it is required to implement the following countermeasures. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 74
    for Security Function. (5) Specification of the roles. FMT_SMR.1 maintains the users who have the privileges. By satisfying FCS_CKM.1, FCS_COP.1, FMT_MTD.1, FMT_SMF.1 and .1 Dependencies Not Satisfied in ST None None None None None None Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 75
    .4 FCS_CKM.4 None None None None None None None None None None None None None None None None None None None None None None Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 76
    procedure (ALC_FLR.2). Based on the terms and costs of the evaluation, the evaluation assurance level of EAL3+ALC_FLR.2 is appropriate for this TOE. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 77
    the recorded audit log in a legible fashion for users to audit (audit log review). The recorded audit log can be viewed and provides the audit logs in a text format when the MFP administrator instructs the TOE to read the audit logs. FAU_STG.4 The TOE writes RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 78
    print, download, fax transmission, e-mail transmission, and folder transmission) Deleting document data Success and failure of creation, modification, and deletion of S/MIME user User or TOE identity for an audit event caused by the user - Folder transmission - Printing via networks - LAN
  • Ricoh Aficio MP C7501SP | Security Policy - Page 79
    password is complete. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from each driver by a user. When the entered login user name is the login user name of MFP administrator or supervisor, the TOE checks if the entered
  • Ricoh Aficio MP C7501SP | Security Policy - Page 80
    minutes by default) elapses after the final operation from a Web browser by the user who logs on to the TOE from a Web browser. The TOE logs out immediately after receiving the print data from the printer driver. The TOE logs out immediately after receiving the transmission information from the fax
  • Ricoh Aficio MP C7501SP | Security Policy - Page 81
    . FDP_ACC.1(a) and FDP_ACF.1(a) The TOE controls user operations for document data and user jobs in accordance with (1) access control rule on document data and (2) access control rule on user jobs. (1) Access control rule on document data Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 82
    Page 81 of 89 The TOE provides users with the interface for stored documents to be printed, downloaded to the client computers, sent by fax, sent by e-mail, sent to folders, and deleted. The interface enables users to delete all the stored documents. Users authorised to operate stored documents are
  • Ricoh Aficio MP C7501SP | Security Policy - Page 83
    Download Print Delete (Operations above are authorised only if normal users are privileged to use Fax Function) Print Delete Print Download Delete (Operations above are authorised only if normal users data operated by the cancelled user job is a stored document is to authorise TOE users to use Copy
  • Ricoh Aficio MP C7501SP | Security Policy - Page 84
    sequential overwriting, the TOE constantly monitors the information on a residual data area, and overwrites the area if any existing residual data is discovered. If the user deletes document data, the TOE Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • Ricoh Aficio MP C7501SP | Security Policy - Page 85
    user is the MFP administrator, the screen to generate an HDD cryptographic key is provided from the Operation Panel. If the MFP administrator gives instructions with user role privileges or user privileges that are assigned to normal users, MFP administrator, or supervisor. Copyright (c) 2011 RICOH
  • Ricoh Aficio MP C7501SP | Security Policy - Page 86
    (with stored print) Document user list Stored document type is fax received document(*2) Default values of the document user list Available function MFP administrator, applicable normal user who stored the documents MFP administrator Applicable normal user Copyright (c) 2011 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP C7501SP | Security Policy - Page 87
    normal users when Operation panel Web browser Operation panel S/MIME user information Operation Panel, Web browser Query, modify 89 - MFP administrator Applicable normal user Supervisor Supervisor MFP administrator Applicable MFP administrator user MFP administrator Supervisor, normal user MFP
  • Ricoh Aficio MP C7501SP | Security Policy - Page 88
    user MFP administrator MFP administrator -: No user roles whose operations are allowed by the TOE (*1): The login user name of a normal user that will be modified to the values of the stored and received document users. FMT_MSA.3(a) and FMT_MSA.3(b) The TOE sets default values for objects and
  • Ricoh Aficio MP C7501SP | Security Policy - Page 89
    Documents printed using Document Server printing or stored print from the client computer. Default values of a document user list assigned to each user. Document user list Login user name of a normal user who stored the document data. Document user list Login user name of a normal user included
  • Ricoh Aficio MP C7501SP | Security Policy - Page 90
    is disconnected. Since the TOE is set to prohibit forwarding of received fax data during installation, received fax data will not be forwarded. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
imagio MP C6001/C7501 series
Security Target
Author : RICOH COMPANY, LTD.
Date
: 2011-09-15
Version : 1.00
Portions of imagio MP C6001/C7501 series Security Target are reprinted with
written permission from IEEE, 445 Hoes Lane, Piscataway, New Jersey
08855, from IEEE 2600.1, Protection Profile for Hardcopy Devices,
Operational Environment A, Copyright © 2009 IEEE. All rights reserved.
This document is a translation of the evaluated and certified security target
written in Japanese.