Home > Ricoh > All in One Printer > Ricoh Mp 3351 User Guide

Ricoh Mp 3351 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Ricoh Mp 3351 User Guide. The Ricoh manuals for All in One Printer are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 61

    Page 61 Page 61 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. TOE security functional requirements Dependencies claimed by CC Dependencies satisfied in ST Dependencies not satisfied in ST FDP_IFC.1 FDP_IFF.1 FDP_IFF.1 None FDP_IFF.1 FDP_IFC.1 FMT_MSA.3 FDP_IFC.1 FMT_MSA.3 None FIA_AFL.1 FIA_UAU.1 FIA_UAU.2 FIA_UAU.1 FIA_ATD.1 None None None FIA_SOS.1 None None None FIA_UAU.2 FIA_UID.1 FIA_UID.2 FIA_UID.1 FIA_UAU.7 FIA_UAU.1 FIA_UAU.2 FIA_UAU.1 FIA_UID.2 None None None FIA_USB.1 FIA_ATD.1... 
      Page 61 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. TOE security functional requirements Dependencies claimed by CC Dependencies satisfied in ST Dependencies not satisfied in ST FDP_IFC.1 FDP_IFF.1 FDP_IFF.1 None FDP_IFF.1 FDP_IFC.1 
FMT_MSA.3 FDP_IFC.1 
FMT_MSA.3 None FIA_AFL.1 FIA_UAU.1 FIA_UAU.2 FIA_UAU.1 FIA_ATD.1 None None None FIA_SOS.1 None None None FIA_UAU.2 FIA_UID.1 FIA_UID.2 FIA_UID.1 FIA_UAU.7 FIA_UAU.1 FIA_UAU.2 FIA_UAU.1 FIA_UID.2 None None None FIA_USB.1 FIA_ATD.1...

    Page 62

    Page 62 Page 62 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. Rationale for Removing Dependencies on FIA_UID.1 Since this TOE employs FIA_UID.2, which is hierarchical to FIA_UID.1, the dependency on FIA_UID.1 is satisfied by FIA_UAU.2 and FMR_SMR.1. 6.3.4 Security Assurance Requirements Rationale This TOE is a commercially available product. It is assumed that it will be used in general offices, and that the possibility of basic security attacks on this TOE exists. Architectural... 
      Page 62 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  Rationale for Removing Dependencies on FIA_UID.1 
Since this TOE employs FIA_UID.2, which is hierarchical to FIA_UID.1, the dependency on FIA_UID.1 is 
satisfied by FIA_UAU.2 and FMR_SMR.1. 
6.3.4 Security Assurance Requirements Rationale 
This TOE is a commercially available product. It is assumed that it will be used in general offices, and that 
the possibility of basic security attacks on this TOE exists. Architectural...

    Page 63

    Page 63 Page 63 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. 7 TOE Summary Specification This section provides a specification summary of the Security Functions of this TOE. 7.1 TOE Security Function The TOE provides the following TOE Security Functions to satisfy the security functional requirements described in Section 6.1. SF.AUDIT Audit Function SF.I&A User Identification and Authentication Function SF.DOC_ACC Document Data Access Control Function SF.SEC_MNG Security... 
      Page 63 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  7 TOE Summary Specification 
This section provides a specification summary of the Security Functions of this TOE. 
7.1 TOE Security Function 
The TOE provides the following TOE Security Functions to satisfy the security functional requirements 
described in Section 6.1. 
SF.AUDIT  Audit Function 
SF.I&A  User Identification and Authentication Function 
SF.DOC_ACC  Document Data Access Control Function 
SF.SEC_MNG  Security...

    Page 64

    Page 64 Page 64 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. SF.AUDIT SF.I&A SF.DOC_ACC SF.SEC_MNG SF.CE_OPE_LOCK SF.CIPHER SF.NET_PROT SF.FAX_LINE SF.GENUINE FDP_IFC.1 v FDP_IFF.1 v FIA_AFL.1 v v FIA_ATD.1 v FIA_SOS.1 v FIA_UAU.2 v FIA_UAU.7 v FIA_UID.2 v FIA_USB.1 v v FMT_MSA.1 v FMT_MSA.3 v FMT_MTD.1 v v v v FMT_SMF.1 v v FMT_SMR.1 v v FPT_STM.1 v FPT_TST.1... 
      Page 64 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  SF.AUDIT
 
SF.I&A
 
SF.DOC_ACC
 
SF.SEC_MNG
 
SF.CE_OPE_LOCK
 
SF.CIPHER
 
SF.NET_PROT
 
SF.FAX_LINE
 
SF.GENUINE
 FDP_IFC.1        v  FDP_IFF.1        v  FIA_AFL.1  v  v      FIA_ATD.1  v        FIA_SOS.1  v        FIA_UAU.2  v        FIA_UAU.7  v        FIA_UID.2  v        FIA_USB.1  v  v      FMT_MSA.1    v      FMT_MSA.3    v      FMT_MTD.1 v   v v v    FMT_SMF.1  v  v      FMT_SMR.1  v  v      FPT_STM.1 v         FPT_TST.1...

    Page 65

    Page 65 Page 65 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. recorded when any kind of auditable event occurs. Expanded audit information is data recorded for the generation of auditable events that require additional information for audit. Table 25 shows the audit information for each auditable event. If there is insufficient space in the audit log files to append new audit log files, older audit logs (identifiable by their time and date details) are overwritten with newer audit... 
      Page 65 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  recorded when any kind of auditable event occurs. Expanded audit information is data recorded for the 
generation of auditable events that require additional information for audit. Table 25 shows the audit 
information for each auditable event. 
If there is insufficient space in the audit log files to append new audit log files, older audit logs (identifiable 
by their time and date details) are overwritten with newer audit...

    Page 66

    Page 66 Page 66 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. *1: The starting of Audit Function is substituted with the event of the TOE startup. This TOE does not record the ending of Audit Function. The starting and ending of Audit Function audit the state of inactivity of Audit Function. Since Audit Function works as long as the TOE works and it is not necessary to audit the state of inactivity of Audit Function, it is appropriate not to record the ending of Audit Function. *2:... 
      Page 66 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  *1: The starting of Audit Function is substituted with the event of the TOE startup. This TOE does not record 
the ending of Audit Function. The starting and ending of Audit Function audit the state of inactivity of Audit 
Function. Since Audit Function works as long as the TOE works and it is not necessary to audit the state of 
inactivity of Audit Function, it is appropriate not to record the ending of Audit Function. 
*2:...

    Page 67

    Page 67 Page 67 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. 7.1.2.1 User Identification and Authentication The TOE displays a login window when users attempt to use the TOE Security Functions from the Operation Panel or the Web Service Function. This window requires the user to enter their ID and password, and then identifies and authenticates the user based on the entered user IDs and passwords. The TOE also identifies and authenticates the user based on the user ID and password... 
      Page 67 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  7.1.2.1 User Identification and Authentication 
The TOE displays a login window when users attempt to use the TOE Security Functions from the Operation 
Panel or the Web Service Function. This window requires the user to enter their ID and password, and then 
identifies and authenticates the user based on the entered user IDs and passwords. 
The TOE also identifies and authenticates the user based on the user ID and password...

    Page 68

    Page 68 Page 68 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. (1) Auto Lockout Release If the user fails to authenticate after making the number of attempts specified to initiate lockout, and the lockout time has elapsed, then lockout will be released upon the first successful identification and authentication by the locked-out user. The machine administrator specifies the lockout time between 1 and 9999 minutes. If the machine administrator sets the lockout time to indefinite,... 
      Page 68 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  (1) Auto Lockout Release 
If the user fails to authenticate after making the number of attempts specified to initiate lockout, and the 
lockout time has elapsed, then lockout will be released upon the first successful identification and 
authentication by the locked-out user. The machine administrator specifies the lockout time between 1 
and 9999 minutes. If the machine administrator sets the lockout time to indefinite,...

    Page 69

    Page 69 Page 69 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. No fewer than the Minimum Password Length specified by the user administrator (8-32 characters) and no more than 128 characters. Administrators and supervisors No fewer than the Minimum Password Length specified by the user administrator (8-32 characters) and no more than 32 characters. (3) Rule: Passwords that are composed of a combination of characters based on the Password Complexity Setting specified by the user... 
      Page 69 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  No fewer than the Minimum Password Length specified by the user administrator (8-32 
characters) and no more than 128 characters. 
Administrators and supervisors 
No fewer than the Minimum Password Length specified by the user administrator (8-32 
characters) and no more than 32 characters. 
(3) Rule: 
Passwords that are composed of a combination of characters based on the Password Complexity 
Setting specified by the user...

    Page 70

    Page 70 Page 70 of 81 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved. 7.1.3.2 File Administrator Operations on Document Data If the logged-in user from the Operation Panel or Web Service Function is a file administrator, the TOE allows that user to display a list of document data and to delete the document data in the list individually or all at once. By the above, FDP_ACC.1 (Subset access control) and FDP_ACF.1 (Security attribute based access control) are satisfied. 7.1.4 SF.SEC_MNG... 
      Page 70 of 81 
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.  7.1.3.2 File Administrator Operations on Document Data 
If the logged-in user from the Operation Panel or Web Service Function is a file administrator, the TOE 
allows that user to display a list of document data and to delete the document data in the list individually or 
all at once. 
By the above, FDP_ACC.1 (Subset access control) and FDP_ACF.1 (Security attribute based access control) 
are satisfied. 
7.1.4 SF.SEC_MNG...
    Start reading Ricoh Mp 3351 User Guide

    Related Manuals for Ricoh Mp 3351 User Guide

    All Ricoh manuals