1.4.5
Protected Assets
Assets to be protected by the TOE are user data, TSF data, and functions.
1.4.5.1.
User Data
The user data is classified into two types: document data and function data. Table 8 defines user data
according to these data types.
Type
Document data
Function data
1.4.5.2.
TSF Data
The TSF data is classified into two types: protected data and confidential data. Table 9 defines TSF data
according to these data types.
Type
Protected data
Confidential data
1.4.5.3.
Functions
The MFP applications (Copy Function, Document Server Function, Printer Function, Scanner Function, and
Fax Function) that are for management of the document data of user data are classified as protected assets,
whose use is subject to restrictions.
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
Table 8 : Definition of User Data
Digitised documents, deleted documents, temporary documents and their
fragments, which are managed by the TOE.
Jobs specified by users. In this ST, a "user job" is referred to as a "job".
Table 9 : Definition of TSF Data
This data must be protected from changes by unauthorised persons. No security
threat will occur even this data is exposed to the public. In this ST, "protected
data", listed below, is referred to as "TSF protected data".
Login user name, Number of Attempts before Lockout, settings for Lockout
Release Timer, lockout time, date settings (year/month/day), time settings,
Minimum Character No., Password Complexity Setting, auto logout time of the
Operation Panel, S/MIME user information, destination folder, Stored Reception
File User, document user list, available function list, user authentication method,
IPSec setting information, @Remote setting information, and Device Certificate.
This data must be protected from changes by unauthorised persons and reading by
users without viewing permissions. In this ST, "confidential data", listed below, is
referred to as "TSF confidential data".
Login password, audit log, and HDD cryptographic key.
Description
Description
Page 25 of 93