Security Target
Page 8
... hardware versions. MFP versions consist of TOE Names Ricoh Aficio MP C4501, Ricoh Aficio MP C5501, Ricoh Aficio MP C4501G, Ricoh Aficio MP C5501G, Gestetner MP C4501, Gestetner MP C5501, Lanier MP C4501, Lanier MP C5501, Lanier LD645C, Lanier LD655C, Lanier LD645CG, Lanier LD655CG, nashuatec MP C4501, nashuatec MP C5501, Rex-Rotary MP C4501, Rex-Rotary MP C5501, MFPs Versions Software System/Copy Network Support Scanner Printer Fax RemoteFax Web Support Web Uapl NetworkDocBox animation PCL...
... hardware versions. MFP versions consist of TOE Names Ricoh Aficio MP C4501, Ricoh Aficio MP C5501, Ricoh Aficio MP C4501G, Ricoh Aficio MP C5501G, Gestetner MP C4501, Gestetner MP C5501, Lanier MP C4501, Lanier MP C5501, Lanier LD645C, Lanier LD655C, Lanier LD645CG, Lanier LD655CG, nashuatec MP C4501, nashuatec MP C5501, Rex-Rotary MP C4501, Rex-Rotary MP C5501, MFPs Versions Software System/Copy Network Support Scanner Printer Fax RemoteFax Web Support Web Uapl NetworkDocBox animation PCL...
Security Target
Page 11
... using a Web browser installed on the client computer, - The function of RC Gate for those documents, the TOE has the following security features: Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of 93 Client computer Performs as follows: - The possible remote operations from the client computer are as a client of the TOE.... Operation of the stored documents in the TOE. All rights reserved. FTP Server A server used by the TOE for folder transmission of documents using the printer driver installed on the client computer, -
... using a Web browser installed on the client computer, - The function of RC Gate for those documents, the TOE has the following security features: Copyright (c) 2011 RICOH COMPANY, LTD. Page 10 of 93 Client computer Performs as follows: - The possible remote operations from the client computer are as a client of the TOE.... Operation of the stored documents in the TOE. All rights reserved. FTP Server A server used by the TOE for folder transmission of documents using the printer driver installed on the client computer, -
Security Target
Page 14
...Control Board. Fax Unit The Fax Unit is a unit that constitute the TOE, is the identifier for communication. Copyright (c) 2011 RICOH COMPANY, LTD. Controls the LEDs and displays information on the TOE and consists of the components that is one of the TOE and... are installed: System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. The Operation Panel Control Software is shipped. ...
...Control Board. Fax Unit The Fax Unit is a unit that constitute the TOE, is the identifier for communication. Copyright (c) 2011 RICOH COMPANY, LTD. Controls the LEDs and displays information on the TOE and consists of the components that is one of the TOE and... are installed: System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. The Operation Panel Control Software is shipped. ...
Security Target
Page 16
...LD645CAG/LD655CG/LD655CAG Copyright (c) 2011 RICOH COMPANY, LTD. Manuals for Users D088-7608 - Operating Instructions Notes on Security Functions D088-7706 - Quick Reference Scanner Guide D088-7886 - Notes for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145... D088-7653A - All rights reserved. Page 15 of This Machine D029-7904 - Notes for Users D572-7010 - Quick Reference Printer Guide D088-7805 - Quick Reference Copy Guide D088-7526 -
...LD645CAG/LD655CG/LD655CAG Copyright (c) 2011 RICOH COMPANY, LTD. Manuals for Users D088-7608 - Operating Instructions Notes on Security Functions D088-7706 - Quick Reference Scanner Guide D088-7886 - Notes for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145... D088-7653A - All rights reserved. Page 15 of This Machine D029-7904 - Notes for Users D572-7010 - Quick Reference Printer Guide D088-7805 - Quick Reference Copy Guide D088-7526 -
Security Target
Page 17
...Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/LD 655C/LD655CG/LD655CA/LD655CAG D089-6906A - Quick Reference Fax Guide D545-8506 [English version-3] Copyright (c) 2011 RICOH... COMPANY, LTD. Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1TM-2009 D088-7709 - Quick Reference Printer Guide D086-...
...Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/LD 655C/LD655CG/LD655CA/LD655CAG D089-6906A - Quick Reference Fax Guide D545-8506 [English version-3] Copyright (c) 2011 RICOH... COMPANY, LTD. Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1TM-2009 D088-7709 - Quick Reference Printer Guide D086-...
Security Target
Page 18
... for Users D088-7420 - MP C3001/C3501/C4501/C4501A/C5501/C5501A MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Copy Guide D088-7525 - Quick Reference Printer Guide D088-7804 - Notes for Users Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A A D089-6931A - Manuals...
... for Users D088-7420 - MP C3001/C3501/C4501/C4501A/C5501/C5501A MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Copyright (c) 2011 RICOH COMPANY, LTD. Quick Reference Copy Guide D088-7525 - Quick Reference Printer Guide D088-7804 - Notes for Users Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A A D089-6931A - Manuals...
Security Target
Page 19
...RICOH COMPANY, LTD. Quick Reference Printer Guide D088-7805 - Operating Instructions Notes on Security Functions D088-7706 - Notes for Users D060-7781 - The direct users and indirect users are described as follows: 1.4.3.1. MP C3001/C3501/C4501/C4501A/C5501/C5501A MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501...-7707 - Page 18 of these direct users. Notes for Administrators Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6909A - Manuals for Users D088-7608 - Quick Reference...
...RICOH COMPANY, LTD. Quick Reference Printer Guide D088-7805 - Operating Instructions Notes on Security Functions D088-7706 - Notes for Users D060-7781 - The direct users and indirect users are described as follows: 1.4.3.1. MP C3001/C3501/C4501/C4501A/C5501/C5501A MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501...-7707 - Page 18 of these direct users. Notes for Administrators Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6909A - Manuals for Users D088-7608 - Quick Reference...
Security Target
Page 20
... Authorised to delete and register the login password of the MFP administrator. This privilege allows configuration of MFP Copyright (c) 2011 RICOH COMPANY, LTD. Authorised to the MFP administrator who has all management privileges (Table 7). Indirect User Responsible manager of normal user...and configure LAN settings. This privilege allows access management of the audit log. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be allocated to specify MFP device behaviour (network behaviours excluded). This ...
... Authorised to delete and register the login password of the MFP administrator. This privilege allows configuration of MFP Copyright (c) 2011 RICOH COMPANY, LTD. Authorised to the MFP administrator who has all management privileges (Table 7). Indirect User Responsible manager of normal user...and configure LAN settings. This privilege allows access management of the audit log. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be allocated to specify MFP device behaviour (network behaviours excluded). This ...
Security Target
Page 23
...installed on the client computer. The TOE receives documents from a Web browser The TOE can print or delete printer documents according to folders or by users from the printer driver installed on the client computer. Printing methods for locked print, is to print or store the documents .... - The documents to be stored in the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Receiving documents from the Operation Panel The TOE can be sent to the operations by e-mail. Operating from the printer driver installed on the client computer. The documents stored in the TOE and...
...installed on the client computer. The TOE receives documents from a Web browser The TOE can print or delete printer documents according to folders or by users from the printer driver installed on the client computer. Printing methods for locked print, is to print or store the documents .... - The documents to be stored in the TOE. Copyright (c) 2011 RICOH COMPANY, LTD. Receiving documents from the Operation Panel The TOE can be sent to the operations by e-mail. Operating from the printer driver installed on the client computer. The documents stored in the TOE and...
Security Target
Page 26
...Function The Network Protection Function is sent from the printer or fax drivers, so that fulfil the requirements of functions based on the user role and the operation permissions for each user. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. The users ... the network. Use-of-Feature Restriction Function The Use-of-Feature Restriction Function is to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are authenticated by Identification and Authentication ...
...Function The Network Protection Function is sent from the printer or fax drivers, so that fulfil the requirements of functions based on the user role and the operation permissions for each user. If the e-mail Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. The users ... the network. Use-of-Feature Restriction Function The Use-of-Feature Restriction Function is to authorise the operations of Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function by the authorised TOE users who are authenticated by Identification and Authentication ...
Security Target
Page 28
...to these data types. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont,...of TSF Data Description This data must be protected from changes by unauthorised persons and reading by unauthorised persons. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Table 9 defines TSF data according to as protected assets, whose use is subject to ...
...to these data types. Functions The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and Fax Function) that identify the TOE include System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont,...of TSF Data Description This data must be protected from changes by unauthorised persons and reading by unauthorised persons. Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Table 9 defines TSF data according to as protected assets, whose use is subject to ...
Security Target
Page 29
...and symbols specified above . Level 2 requires a password to deny login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from beginning to as "fixed auto logout time". A sequence of operations of particular users. All rights reserved. There ...data attributes. If a user job is attempted from the client computer, or documents stored in the TOE by users). Copyright (c) 2011 RICOH COMPANY, LTD. This auto logout time is also referred to end. Level 1 requires a password to the MFP via LAN. An ...
...and symbols specified above . Level 2 requires a password to deny login of each TOE function (Copy Function, Document Server Function, Scanner Function, Printer Function and Fax Function) from beginning to as "fixed auto logout time". A sequence of operations of particular users. All rights reserved. There ...data attributes. If a user job is attempted from the client computer, or documents stored in the TOE by users). Copyright (c) 2011 RICOH COMPANY, LTD. This auto logout time is also referred to end. Level 1 requires a password to the MFP via LAN. An ...
Security Target
Page 30
... provides: Copy Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. Documents stored in the TOE using Printer Function. One of the stored document types. One of the stored document types. Copyright (c) 2011 RICOH COMPANY, LTD. Documents copied by using the LAN Fax.... This list does not include the login user names of the stored document types. One of MFP administrators whose access to the document data is possible for Printer Function. Consists of ...
... provides: Copy Function, Document Server Function, Scanner Function, Printer Function, and Fax Function. Documents stored in the TOE using Printer Function. One of the stored document types. One of the stored document types. Copyright (c) 2011 RICOH COMPANY, LTD. Documents copied by using the LAN Fax.... This list does not include the login user names of the stored document types. One of MFP administrators whose access to the document data is possible for Printer Function. Consists of ...
Security Target
Page 33
The MFP is the type of Copy Function, Scanner Function, Printer Function or Fax Function. Therefore, P.STORAGE_ENCRYPTION and O.STORAGE.ENCRYPTED were augmented but still conform to the PP. These communications are not assumed in chapter 4 are .... Neither transmission nor reception of the protected assets defined in the PP takes place in the communication between the TOE and RC Gate. Copyright (c) 2011 RICOH COMPANY, LTD. The MFP has the devices the HCDs have the interface to connect telephone line. The HCDs combine these devices and equip one or...
The MFP is the type of Copy Function, Scanner Function, Printer Function or Fax Function. Therefore, P.STORAGE_ENCRYPTION and O.STORAGE.ENCRYPTED were augmented but still conform to the PP. These communications are not assumed in chapter 4 are .... Neither transmission nor reception of the protected assets defined in the PP takes place in the communication between the TOE and RC Gate. Copyright (c) 2011 RICOH COMPANY, LTD. The MFP has the devices the HCDs have the interface to connect telephone line. The HCDs combine these devices and equip one or...
Security Target
Page 69
... other components. Table 31 lists the assurance components of the TOE. All rights reserved. Dependencies: No dependencies. Copyright (c) 2011 RICOH COMPANY, LTD. FTA_SSL.3.1 The TSF shall terminate an interactive session after a [assignment: elapsed time of auto logout, completion of document... data reception from the printer driver, completion of document data reception from being forwarded without further processing by the TSF to [assignment: the LAN and telephone line...
... other components. Table 31 lists the assurance components of the TOE. All rights reserved. Dependencies: No dependencies. Copyright (c) 2011 RICOH COMPANY, LTD. FTA_SSL.3.1 The TSF shall terminate an interactive session after a [assignment: elapsed time of auto logout, completion of document... data reception from the printer driver, completion of document data reception from being forwarded without further processing by the TSF to [assignment: the LAN and telephone line...
Security Target
Page 76
... by the Basic Authentication for the External Authentication. (4) Terminate login automatically. Therefore, the access control for F.SMI is performed from the printer driver or fax driver. All rights reserved. FIA_UAU.7 displays dummy letters as authentication feedback on the network, and FIA_UAU.1(a) and FIA_UAU.1(b) ...after completing the communication with the access control by TOE O.INTERFACE.MANAGED is performed from disclosure. Copyright (c) 2011 RICOH COMPANY, LTD. Page 75 of 93 (3) Complicate decoding of external interfaces by FDP_ACC.1(b) and FDP_ACF.1(b) and fulfilled.
... by the Basic Authentication for the External Authentication. (4) Terminate login automatically. Therefore, the access control for F.SMI is performed from the printer driver or fax driver. All rights reserved. FIA_UAU.7 displays dummy letters as authentication feedback on the network, and FIA_UAU.1(a) and FIA_UAU.1(b) ...after completing the communication with the access control by TOE O.INTERFACE.MANAGED is performed from disclosure. Copyright (c) 2011 RICOH COMPANY, LTD. Page 75 of 93 (3) Complicate decoding of external interfaces by FDP_ACC.1(b) and FDP_ACF.1(b) and fulfilled.
Security Target
Page 83
...will be displayed until the entry of the login user name and login password is installed. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from each driver by Basic Authentication and External ...of MFP administrator or supervisor, the TOE checks if the entered login password matches with the one pre-registered by a user. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(b) and FIA_UID.1(b): Application of External Authentication The TOE identifies and authenticates a user by checking the login user name and ...
...will be displayed until the entry of the login user name and login password is installed. When the TOE is used from the printer driver or fax driver, the TOE receives the login user name and login password entered from each driver by Basic Authentication and External ...of MFP administrator or supervisor, the TOE checks if the entered login password matches with the one pre-registered by a user. Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.1(b) and FIA_UID.1(b): Application of External Authentication The TOE identifies and authenticates a user by checking the login user name and ...
Security Target
Page 84
...in Table 36 and specified for Each User Role User Roles (Locked out Users) Normal user Unlocking Administrators MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.7 Regarding login passwords entered by the MFP administrator elapses after receiving the transmission information from the Operation Panel or ...is activated if the auto logout time (60 - 999 seconds) specified by a person who logs on to the TOE from the printer driver. The TOE logs out immediately after the communication with that consecutively result in failure using the login user name of a normal user...
...in Table 36 and specified for Each User Role User Roles (Locked out Users) Normal user Unlocking Administrators MFP administrator Copyright (c) 2011 RICOH COMPANY, LTD. FIA_UAU.7 Regarding login passwords entered by the MFP administrator elapses after receiving the transmission information from the Operation Panel or ...is activated if the auto logout time (60 - 999 seconds) specified by a person who logs on to the TOE from the printer driver. The TOE logs out immediately after the communication with that consecutively result in failure using the login user name of a normal user...
Security Target
Page 86
...Delete Print Delete Print Delete E-mail transmission Folder transmission Delete Fax transmission Folder transmission Print Delete Print Delete Copyright (c) 2011 RICOH COMPANY, LTD. When the MFP administrator logs in to the rules shown in "7.8 Security Management Function". They will be... Operation Panel Operation Panel Operation Panel Operation Panel Operation Panel Available Functions for Users Document Server Function Document Server Function Printer Function Scanner Function Fax Function Fax Function Types of Stored Documents displayed in from the Operation Panel or a Web ...
...Delete Print Delete Print Delete E-mail transmission Folder transmission Delete Fax transmission Folder transmission Print Delete Print Delete Copyright (c) 2011 RICOH COMPANY, LTD. When the MFP administrator logs in to the rules shown in "7.8 Security Management Function". They will be... Operation Panel Operation Panel Operation Panel Operation Panel Operation Panel Available Functions for Users Document Server Function Document Server Function Printer Function Scanner Function Fax Function Fax Function Types of Stored Documents displayed in from the Operation Panel or a Web ...
Security Target
Page 87
Copyright (c) 2011 RICOH COMPANY, LTD. However, if the document data operated by the cancelled user job is a stored document, the data will be deleted and remain stored in ... Download Delete (Operations above are authorised only if normal users are not allowed to operate user jobs. Other users are privileged to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of a user...
Copyright (c) 2011 RICOH COMPANY, LTD. However, if the document data operated by the cancelled user job is a stored document, the data will be deleted and remain stored in ... Download Delete (Operations above are authorised only if normal users are not allowed to operate user jobs. Other users are privileged to use Copy Function, Printer Function, Scanner Function, Document Server Function and Fax Function in from the Operation Panel is a user job owner or MFP administrator and a cancellation of a user...