Device Security; Verify System At Startup; Siem (Security Information And Event Management) Integration; Mcafee Embedded Control - Canon imageRUNNER ADVANCE DX C3800 Series Service Manual

Canon
B. Device Security
The imageRUNNER ADVANCE DX C3800 Series offers several ways to
protect and secure the device, as described below.
1.

Verify System at Startup

Verify System at Startup is a process that protects the device's BIOS,
firmware, and MEAP applications from unauthorized modifications.
NOTE
• This process is performed at every device reboot.
• Verify System at Startup is disabled by default and, when activated,
may increase the device warm-up time by 20 to 40 seconds, depending
on the model.
2.

SIEM (Security Information and Event Management) Integration

Enables the device to automatically send audit logs to SIEM systems for
analysis and detection of security violations. Examples of the audit logs
sent via the Syslog protocol (RFC5424 and RFC5426) include those for
user authentication, mailbox operation, network authentication, and print
jobs. Sending audit logs via TLS encryption (RFC5425) is also supported.
3.

McAfee Embedded Control

Protects the machine's firmware, programs, and operating system from
potential threats and malware. All firmware and applications are checked
against a whitelist that enables only trusted firmware and applications to
launch. This helps to prevent malware, and mitigates zero-day attacks.
NOTE
This function is set to 'Off' by default, and must be set to 'On' within the
device settings. In addition, Verify System at Startup must be set to 'On'
within the device settings.
imageRUNNER ADVANCE DX C3800 Series Service Guide
Revision 4
imageRUNNER ADVANCE DX C3800 Series Service Guide
March 2023
Page 21