Imagio MP 7501/6001 Series, Aficio MP 9001/8001/7001/6001 .

3y ago

35 Views

2 Downloads

2.34 MB

83 Pages

Last View : 15d ago

Last Download : 3m ago

Upload by : Joanna Keil

Report this link

Download PDF

Transcription

Page 2 of 82Table of Contents1ST Introduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71.1ST Reference. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71.2TOE Reference. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71.3TOE Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91.3.1TOE Type.91.3.2TOE Usage and Major Security Features of TOE.91.3.3Environment for TOE Usage and Non-TOE Configuration Items.101.4TOE Description. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .121.4.1Physical Boundary of TOE.121.4.2Guidance Documents.151.4.3User Roles. 171.4.3.1Responsible Manager of .4.3.4General User.181.4.3.5Customer Engineer.181.4.41.4.4.1Basic Functions.191.4.4.2Security Functions.211.4.523Logical Boundaries of TOE.18Protected Assets.251.4.5.1Document Data.251.4.5.2Print Data.25Conformance Claim . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .262.1CC Conformance Claim. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .262.2PP Claims, Package Claims. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .262.3Conformance Rationale. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .26Security Problem Definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 273.1Threats. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .273.2Organisational Security Policies. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .27Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 3 of 823.34Assumptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .28Security Objectives. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .294.1Security Objectives for TOE. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .294.2Security Objectives of Operational Environment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .304.3Security Objectives Rationale. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .304.3.1Tracing.304.3.2Tracing Justification.315Extended Components Definition. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .346Security Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .356.17Security Functional Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .356.1.1Class FAU: Security audit.356.1.2Class FCS: Cryptographic support.406.1.3Class FDP: User data protection. 416.1.4Class FIA: Identification and authentication .446.1.5Class FMT: Security management.466.1.6Class FPT: Protection of the TSF. 536.1.7Class FTP: Trusted path/channels.536.2Security Assurance Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .556.3Security Requirements Rationale. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .566.3.1Tracing.566.3.2Justification of Traceability.576.3.3Dependency Analysis.616.3.4Security Assurance Requirements Rationale.63TOE Summary Specification. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 647.1TOE Security Function . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .647.1.1SF.AUDIT Audit Function.657.1.1.1Generation of Audit Logs.667.1.1.2Reading Audit Logs.677.1.1.3Protection of Audit Logs.677.1.1.4Time Stamps.677.1.2SF.I&A User Identification and Authentication Function.677.1.2.1User Identification and Authentication .687.1.2.2Actions in Event of Identification and Authentication Failure.68Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 4 of 827.1.2.3Password Feedback Area Protection .697.1.2.4Password Registration.697.1.3SF.DOC ACC Document Data Access Control Function.707.1.3.1General User Operations on Document Data.707.1.3.2File Administrator Operations on Document Data. 717.1.4SF.SEC MNG Security Management Function.717.1.4.1Management of Document Data ACL.717.1.4.2Management of Administrator Information.727.1.4.3Management of Supervisor or Information.737.1.4.4Management of General User Information.737.1.4.5Management of Machine Control Data.747.1.5SF.CE OPE LOCK Service Mode Lock Function .757.1.6SF.CIPHER Encryption Function.757.1.6.17.1.78Encryption of Document Data.75SF.NET PROT Network Communication Data Protection Function.767.1.7.1Use of Web Service Function from Client Computer.767.1.7.2Printing and Faxing from Client Computer.767.1.7.3Sending by E-mail from TOE.767.1.7.4Delivering to Folders from TOE.777.1.8SF.FAX LINE Protection Function for Intrusion via Telephone Line.777.1.9SF.GENUINE MFP Control Software Verification Function.77Appendix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .788.1Definitions of Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 788.2References. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .82Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 5 of 82List of FiguresFigure 1: Example of TOE environment.11Figure 2: Hardware configuration of TOE.13Figure 3: Logical boundaries of TOE.19List of TablesTable 1: MFP names for each series.7Table 2: List of administrator roles .17Table 3: Correspondence between operations authorised by permissions to process document data andoperations p ossible on document data.23Table 4: Relationship between security environment and security objectives.31Table 5: List of auditable events .35Table 6: List of cryptographic key generation.40Table 7: List of cryptographic operations.41Table 8: List of subjects, objects, and operations among subjects and objects.41Table 9: Subjects, objects and security attributes.41Table 10: Rules governing access.42Table 11: Rules governing access explicitly .42Table 12: List of subjects, information and operation.43Table 13: Security attributes corresponding to subjects or information.43Table 14: List of authentication events.44Table 15: Lockout release actions.44Table 16: Rules for initial association of attributes.46Table 17: Management roles of security attributes.47Table 18: Characteristics of static attribute initialisation .48Table 19: List of TSF data management.48Table 20: List of specifications of Management Functions.50Table 21: Services requiring trusted paths.54Table 22: TOE Security assurance requirements (EAL3).55Table 23: Relationship between security objectives and functional requirements.56Table 24: Correspondence of dependencies of TOE security functional requirements.61Table 25: Relationship between TOE security functional requirements and TOE Security Functions.64Table 26: Auditable events and auditable information .66Table 27: User roles and authentication methods.68Table 28: Unlocking administrators for each user role .69Table 29: Default value for document data ACL .71Table 30: Operations on document data ACL and authorised users.71Table 31: Access to administrator information.72Table 32: Authorised operations on general user information.73Table 33: Administrators authorised to specify machine control data.74Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 7 of 821 ST IntroductionThis section describes the ST reference, TOE reference, TOE overview, and TOE description.1.1ST ReferenceThe following are the identification information of this ST.1.2Title: imagio MP 7501/6001 series, Aficio MP 9001/8001/7001/6001 seriesSecurity TargetVersion: 1.00Date: 2010-08-31Author: RICOH COMPANY, LTD.TOE ReferenceThis TOE is a digital multi function product (hereafter called "MFP") with an optional product, FaxController Unit (hereafter called "FCU"). The MFP is identified by the product name of the MFP (hereaftercalled "MFP name"), MFP model, and version of software/hardware, and the FCU is identified by theproduct name of the FCU (hereafter called "FCU name") and the version of FCU. The following are theidentification information for the TOE.Manufacturer : RICOH COMPANY, LTD.MFP Name:Table 1 shows the MFP names for the Japanese version "Ricoh imagio MP 7501/6001 series" and theEnglish version "Ricoh Aficio MP 9001/8001/7001/6001 series".Table 1: MFP names for each seriesName of seriesRicoh imagio MP 7501/6001 seriesMFP name-Ricoh imagio MP 6001Ricoh imagio MP 7501Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 8 of 82Ricoh Aficio MP 9001/8001/7001/6001 seriesMFP Model-Ricoh Aficio MP 6001Ricoh Aficio MP 7001Ricoh Aficio MP 8001Ricoh Aficio MP 9001Savin 9060Savin 9070Savin 9080Savin 9090Lanier LD360Lanier LD370Lanier LD380Lanier LD390Lanier MP 6001Lanier MP 7001Lanier MP 8001Lanier MP 9001Gestetner MP 6001Gestetner MP 7001Gestetner MP 8001Gestetner MP 9001nashuatec MP 6001nashuatec MP 7001nashuatec MP 8001nashuatec MP 9001Rex-Rotary MP 6001Rex-Rotary MP 7001Rex-Rotary MP 8001Rex-Rotary MP 9001infotec MP 6001infotec MP 7001infotec MP 8001infotec MP 9001: SPMFP Version :SoftwareSystem/CopyNetwork SupportScannerPrinterFaxWeb Support1.158.6501.191.1502.00.001.09Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.

Page 9 of 82HardwareFCU NameWeb UaplNetwork Doc Box1.051.04Ic KeyIc Ctlr110003: Japanese version imagio FAX Unit Type 18: English version Fax Option Type 9001FCU Version :GWFCU3-16(WW)02.00.00Note: If an "e" is suffixed to the print er version (described as "X.YY"), the "e" identifies the language ofthe printer version (the English version is suffixed with an "e" and the Japanese version is not suffixed withan "e"). This suffix does not affect any Security Functions. "X.YY" is used for the identification of SecurityFunctions.Keywords1.3: Digital MFP, Documents, Copy, Print, Scanner, Fax, Network, OfficeTOE OverviewThis section defines the TOE type, TOE usage and major security features of the TOE, and the environmentfor the TOE usage and non-TOE configuration items.1.3.1TOE TypeThe TOE is an MFP, which is an IT device that provides the functions of a copier, scanner, printer, and fax(optional). These functions are for digitising paper documents and managing and printing them.1.3.2TOE Usage and Major Security Features of TOEThe TOE has functions for inputting paper and electronic documents into the TOE, storing the inputdocument data, and outputting it. Paper documents are input using the MFP's scanning device, andelectronic documents are input by receiving them from a client computer via a network, USB connection, orfax. The output function includes printing, Fax Transmission, and transferring to networked servers orclient computers. The TOE incorporates some of these functions and provides a Copy Function, ScannerFunction, Printer Function, and Fax Functio

Manufacturer : RICOH COMPANY, LTD. MFP Name : Table 1 shows the MFP names for the Japanese version "Ricoh imagio MP 7501/6001 series" and the English version "Ricoh Aficio MP 9001/8001/7001/6001 series". Table 1: MFP names for each series Name of series MFP name Ricoh imagio MP 7501/6001 series - Ricoh imagio MP 6001

Related Documents:

BRILLIANT EverGlow - COLTENE

6001 9705 Bleach Translucent (BL Trans) BRILLIANT EverGlow Refills Tips (20 0.2 g) 6001 9746 Opaque Bleach (OBL) 6001 9747 Opaque A1 (OA1) 6001 9748 Opaque A3 (OA3) 6001 9706 Bleach (BL) 6001 9707 A1 / B1 6001 9708 A2 / B2 6001 9709 A3 / D3 6001 9710 A3.5 / B3 6001 9716 C2 / C3 6001 9717 A4 / C4 6001 9718 Translucent (Trans)

13 Views

2y ago

imagio MP 4000/5000 series, Aficio MP 4000/5000 series ...

Ricoh Aficio MP 4000/5000 series Refer to Table 1 about product names for "Ricoh imagio MP 4000/5000 series" and "Ricoh Aficio MP 4000/5000 series". TOE Version : "Ricoh imagio MP 4000/5000 series" and "Ricoh Aficio MP 4000/5000 series" are identified by following software and hardware. Software System/Copy 1.09 Network Support 7.23

72 Views

3y ago

imagio MP 2550/3350 series, Aficio MP 2550/3350 …

TOE Version : "Ricoh imagio MP 2550/3350 series" and "Ricoh Aficio MP 2550/3350 series" are identified by following software and hardware. Software System/Copy 1.14 Network Support 7.23 Scanner 1.11 Printer 1.05 Fax 05.00.00

115 Views

2y ago

NI USB-6001/6002/6003 OEM User Guide - National Instruments

NI USB-6001/6002/6003 OEM This document provides information about the dimensions, pinouts, connectors, LEDs, and mounting holes of the National Instruments USB-6001/6002/6003 OEM device. For more information about the device, refer to the NI USB-6001/6002/6003 User Guide and

4 Views

1y ago

NI USB-6001/6002/6003 OEM User Guide

4 Views

1y ago

USER GUIDE NI USB-6001/6002/6003 - Syracuse University

Setting Up the NI USB-6001/6002/6003 Complete the following steps to get started with the NI USB-6001/6002/6003. Installing the Software 1. Install the application software (if applicable), as described in the installation instructions that accompany your software. 2. Install NI-DAQmx. NI USB-6001/6002/6003 devi ces are supported by NI-DAQmx 9 .

4 Views

1y ago

USER GUIDE NI USB-6001/6002/6003 - Farnell

3 Views

1y ago

Basic Analysis: Introduction to Real Analysis

The book normally used for the class at UIUC is Bartle and Sherbert, Introduction to Real Analysis third edition [BS]. The structure of the beginning of the book somewhat follows the standard syllabus of UIUC Math 444 and therefore has some similarities with [BS]. A major difference is that we deﬁne the Riemann integral using Darboux sums and not tagged partitions. The Darboux approach is .

92 Views

3y ago

Recent Views

Vietnamese Insurance Market Report - Ditp

Insurance agents TOTAL INSURANCE AGENTS IN VIETNAMESE MARKET 6/2016 Until the end of June 2016, total insurance agents increased by 29.5% compared with same period last year to 437,738 agents. Prudential took the lead with 181,808 agents, followed by Bao Viet life with 94,129 agents and Dai-ichi Life with 53,811 agents. e. The number of new .

1y ago

167 Views

Attorney Registration - Certificates of Insurance Upload for Insurance .

Certificate of Insurance ("COI") upload feature Loginfor insurance agents and insurers. Summary: After self-registering for a username and password, agents and insurers will have access to a portal for the upload of Certificates of Insurance. This Guide is for: Insurance agents and insurers who are authorized to upload Certificates of Insurance

1y ago

179 Views

Insurance Act Insurance Agents Regulations - Prince Edward Island

Section 3 Insurance Act Insurance Agents Regulations Page 4 Updated August 1, 2005 t c Restricted life, accident and sickness insurance agents (3) Notwithstanding subsection (2), the Superintendent may, until July 1, 2006, issue a transitional restricted certificate of authority covering life, accident and sickness insurance to

1y ago

131 Views

Insurance Act 1978 - Bermuda Laws

INSURANCE MANAGERS, BROKERS, AGENTS, INSURANCE MARKETPLACE PROVIDERS AND SALESMEN Insurance managers, agents and insurance marketplace providers to maintain lists of insurers for which they act Insurance broker, agent, salesman or insurance marketplace provider deemed agent of insurer in cert

2y ago

280 Views

THE EFFECT OF INSURANCE AGENTS IN INSURANCE PENETRATION IN KENYA By D61 .

Insurance agents sell exclusively the products of a certain insurance company whereas insurance brokers are legally independent from insurance companies. Insurance brokers are often referred to as the insured's agent (Kogi & Maragia, 2011).

1y ago

182 Views

Personal insurance - Car & Business insurance King Price Insurance

The king's insurance options 5 Things you need to know 7 The stuff you need to do 14 How to claim 16 Our commitment to you 20 Car insurance 22 Car warranty 37 Shortfall cover 45 Scratch and dent 46 Tyre and rim 48 Motorbike insurance 53 Trailer and caravan insurance 64 Watercraft insurance 68 Home contents insurance 77 Buildings insurance 89

1y ago

673 Views

CODE OF CONDUCT FOR LICENSED INSURANCE AGENTS - ia

insurance agents when carrying on regulated activities. Secondly, the Code of Conduct supplements the duties and obligations which licensed insurance agents owe their principals (arising from their principal-agent relationship) by providing that agents should comply with the requirements set out by their

1y ago

130 Views

All about auto insurance - Option Consommateurs

of insurance companies with which they have agreements. Insurance agents: agents work for a specific insurance company. Before you decide to do business with either a broker or an agent, check out prices, the products being proposed and the quality of the service. Buying auto insurance 4 All about auto insurance

1y ago

230 Views

Gold Tier - MAPFRE Insurance

Foy Insurance of MA, LLC 198 Frank Consolati Insurance Agency, Inc. 198 County Insurance Agency, Inc. 198 Woodrow W Cross Agency 214 Woodland Insurance Agency, Inc. 214 Tegeler Insurance Services of CT, Inc. 214 Pantano/VonKahle Insurance Agency, Inc. 214 . Hanson Insurance Agency, Inc. 287 J.H. Slattery Insurance Agency, Inc. 287

1y ago

565 Views

Independent Insurance Agents & Brokers of Louisiana - IIABL

Independent Insurance Agents & Brokers of Louisiana Frequently Requested Louisiana Insurance Statutes Independent Insurance Agents & Brokers of Louisiana 9818 Bluebonnet Blvd. Baton Rouge, La 70810 (225) 819-8007 www.IIABL.com

1y ago

109 Views

Insurance and Indemnification Guidelines for State of .

the Contractor's insurance company issues the required insurance policies or endorses existing policies to match the insurance requirements of the contract. As proof of coverage, most insurance agents and brokers will provide a document called a certificate of insurance. While a certificate is evidence that the Contractor has an insurance policy,

1y ago

151 Views

SPECIAL REPORT Young Agents Survey - Insurance Journal

agents and agency owners in particular — better get ready to step up. This is good news for young professionals working in independent agencies today — those 40 years old and younger. According to Insurance Journal's Young Agents Survey 2015, 82.7 percent of young agents feel very optimistic or optimistic

1y ago

119 Views

Brokers and Agents and Health Insurance Exchanges A

National Association of Insurance Commissioners distinguishes their roles as follows: Brokers act on behalf of the consumer. They can be compensated by the consumer or receive compensation from an insurance company. Agents are loyal to an insurance company and sell, solicit, or negotiate insurance on behalf of the insurer.

1y ago

129 Views

Consumer Guide to Auto Insurance - csimt.gov

consumer guide to auto insurance contents introduction to auto insurance 1 understanding your auto insurance policy 2 required auto insurance 3 optional types of auto insurance 4-5 getting the right coverage 6 accidents and violations 7 how to shop for auto insurance 8 shopping tips 9 frequently asked questions 10-11 insurance complaints/when you have a problem 12

2y ago

805 Views

Industry Observations Insurance Industry

Jun 30, 2019 · 6/17/2019 Commercial Insurance Branch of Extraco Banks, N.A. Higginbotham Insurance Group, Inc. Insurance Brokers NA 6/13/2019 Links Insurance Services, LLC World Insurance Associates LLC Property and Casualty Insurance NA 6/13/2019 Abram Interstate Insurance Services, Inc. Risk Placement Services,

2y ago

619 Views

Imagio MP 7501/6001 Series, Aficio MP 9001/8001/7001/6001 .

It looks like you're using an ad-blocker