Ricoh Aficio MP 7001 SP Manual page 66
With dataoverwritesecurity unit type h security target
Hide thumbs
Also See for Aficio MP 7001 SP:
- Control panel use manual (1 page) ,
- Service manual (1351 pages) ,
- Troubleshooting manual (160 pages)
Table of Contents
Advertisement
(2) Prevent reading the deleted documents, temporary documents and their fragments.
Deleted documents, temporary documents and their fragments are prevented from being read by
FDP_RIP.1.
(3) Use trusted channels for sending or receiving user documents.
The user documents sent and received from the LAN interface are protected by FTP_ITC.1.
(4) Management of the security attributes.
FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login
user name, and available operations (query and modify) on the document user list, and a specified user
is thus restricted to perform each operation.
FMT_MSA.3(a) sets the defined default value to the document user list and document type which are
the security attributes of the user document (object) when the user document is generated.
By
satisfying
FMT_MSA.3(a), which are the security functional requirements for these countermeasures, O.DOC.NO_DIS
is fulfilled.
O.DOC.NO_ALT Protection of document alteration
O.DOC.NO_ALT is the security objective to prevent the documents from unauthorised alteration by persons
without a login user name, or by persons with a login user name but without an access permission to the
document. To fulfil this security objective, it is required to implement the following countermeasures.
(1) Specify and implement the access control to user document.
FDP_ACC.1(a) and FDP_ACF.1(a) restrict the deletion (there is no "editing operation" of user
documents) of user document by the user role. Additionally, the normal users are restricted to delete the
user document by the operation permission granted to them. To normal users, the available document
type of user document is restricted by the executing MFP application, and the normal user can delete
only user document for which the deleting permission is granted. The MFP administrator is allowed to
delete the user documents. The supervisor is not allowed to delete the user documents.
(2) Prevent deleting the deleted documents, temporary documents and their fragments.
Deleted documents, temporary documents and their fragments are prevented from being used by
FDP_RIP.1.
(3) Use trusted channels for sending or receiving user documents.
The user documents sent and received from the LAN interface are protected by FTP_ITC.1.
(4) Management of the security attributes.
FMT_MSA.1(a) specifies the available operations (newly create, query, modify and delete) on the login
user name, and available operations (query and modify) on the document user list, and a specified user
is thus restricted to perform each operation.
FMT_MSA.3(a) sets the defined default value to the document user list and document type which are
the security attributes of the user document (object) when the user document is generated.
By
satisfying
FMT_MSA.3(a), which
O.DOC.NO_ALT is fulfilled.
Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved.
FDP_ACC.1(a),
FDP_ACF.1(a),
FDP_ACC.1(a),
FDP_ACF.1(a),
are
the
security
FDP_RIP.1,
FTP_ITC.1,
FDP_RIP.1,
FTP_ITC.1,
functional
requirements for
Page 65 of 87
FMT_MSA.1(a)
and
FMT_MSA.1(a)
and
these
countermeasures,
Advertisement
Table of Contents
