1 Introduction Purpose The purpose of this document is to disclose information for the Xerox ® Office Class printers and multi- function products (hereinafter called as “the product” or “the system”) with respect to product security. Product Security, for this paper, is defined as how image data is stored and transmitted, how the product behaves in a network environment, and how the product may be accessed both locally and remotely.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® 2 Product Description Physical Components AltaLink® and VersaLink® products consist of an input document handler and scanner, marking engine, controller, and user interface. A typical configuration is depicted below. Please note that options including finishers, paper trays, document handers, etc.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® User Interface The user interface detects soft and hard button actuations and provides text and graphical prompts to the user. The user interface is sometimes referred to as the Graphical User Interface (GUI) or Local UI (LUI) to distinguish it from the remote web server interface (WebUI).
NFC functionality requires a software plugin that can be obtained from Xerox sales and support. NFC functionality is supported via optional touch screen user interface or optional dedicated NFC USB dongle.
Xerox products protect user data being processed by employing strong encryption. When the data is no longer needed, the Image Overwrite (IIO) feature automatically erases and overwrites the data on magnetic media, rendering it unrecoverable.
Inbound User Data Print Job Submission In addition to supporting network level encryption including IPSec and WPA Xerox products also support encryption of print job data at the time of submission. This can be used to securely transmit print jobs over unencrypted connections or to enhance existing network level security controls.
Add on Apps- Cloud, Google, DropBox, and others The Xerox App Gallery® contains several additional applications that extend the capabilities of Xerox products. Discussion of App security is beyond the scope of this document. Xerox Apps utilize the security framework provided by the 3 party vendor.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® 4 Network Security Xerox products are designed to offer a high degree of security and flexibility in almost any network environment. This section describes several aspects of the product related to network security.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® CIFS 500 & 4500 IPSec 1900 SSDP 3702 WSD (Discovery) 5353 mDNS 9100 Raw IP (also known as JetDirect, AppSocket or PDL-datastream) 5909-5999 Remote Access to local display panel. Port is randomly selected and communications encrypted with TLS 1.2.
Wireless 802.11 Wi-Fi Protected Access (WPA) Products equipped with WiFi support WPA2 Personal, WPA2 Enterprise, and Mixed Mode compliant with IEEE 802.11i. The wireless network adapters used in Xerox products are certified by the Wi-Fi Alliance. AltaLink® Multifunction VersaLink® VersaLink® Printers...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Public Key Encryption (PKI) A digital certificate is a file that contains data used to verify the identity of the client or server in a network transaction. A certificate also contains a public key used to create and verify digital signatures. To prove identity to another product, a product presents a certificate trusted by the other product.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® SFTP Supported (Not currently supported) (Not Applicable) Trusted Certificates Public certificates may be imported to the product’s certificate store for validation of trusted external products. The following categories are supported: •...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Certificate Validation AltaLink® and VersaLink® devices support certificate validation with configurable checks for OSCP and CRL. Validation checks include: Validation of certificate path Certificate expiration Validation of trusted CA ...
ISE under product families, such as AltaLink® and VersaLink®, enabling Cisco ISE to automatically detect and profile new Xerox products from the day they are released. Customers who use Cisco ISE find that including Xerox products in their security policies is simpler and requires minimal effort.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Prevent impersonation (aka spoofing) of a printer/MFP Automatically prevent connection of non-approved print products Smart rules-based policies to govern user interaction with network printing products Provide simplified implementation of security policies for printers and MFPs by:...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Stateful Firewall Supported (Not currently supported) (Not currently supported) IP Whitelist Supported Supported Supported IP Whitelisting (IP Address Filtering) VersaLink® products support IP Whitelisting only. When enabled all traffic is prohibited regardless of interface (wired/wireless) unless enabled by IP filter rule.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® 5 Device Security: BIOS, Firmware, OS, Runtime, and Operational security controls AltaLink® and VersaLink® products have robust security features that are designed to protect the system from a wide range of threats. Below is a summary of some of the key security controls.
Unlike open operating systems such as servers and user workstations in which software may be installed by users, Xerox products are based on embedded systems and the contents are managed by Xerox. The only means of modifying the contents of a device is by applying a firmware update package.
Firmware Restrictions The list below describes supported firmware delivery methods and applicable access controls. Local Firmware Upgrade via USB port: Xerox service technicians can update product firmware using a USB port and specially configured USB November 2018 Page 23...
The CSE (Customer Service Engineer) Access Restriction allows customers to create an additional password that is independent of existing administrator passwords. This password must be supplied to allow service of the product. This password is not accessible to Xerox support and cannot be reset by Xerox service personnel.
Xerox Device Manager and Xerox CentreWare® Web (available as a free download) centrally manage Xerox Devices. Additionally, AltaLink® products come with McAfee built in and can be managed with McAfee ePO™ providing an enhanced security posture supporting proactive monitoring, threat detection, and remediation capabilities.
The local user database stores user credential information. The printer uses this information for local authentication and authorization, and for Xerox ® Standard Accounting. When you configure local authentication, the printer checks the credentials that a user provides against the information in the user database.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Network Authentication When configured for network authentication, user credentials are validated by a remote authentication server. AltaLink® VersaLink® VersaLink® Printers Multifunction Multifunction B8045, B8055, B8065, B8075, B405, B605, B615, B7025,...
Control Lists) are stored in the local user database. Authorization privileges (referred to as permissions) can be assigned on a per user or group basis. Please note that Xerox products are designed to be customizable and support various workflows as well as security needs. User permissions include security-related permissions and non-security related workflow permissions (e.g.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® 8 Additional Information & Resources Security @ Xerox® Xerox maintains an evergreen public web page that contains the latest security information pertaining to its products. Please see http://www.xerox.com/security. Responses to Known Vulnerabilities Xerox has created a document which details the Xerox Vulnerability Management and Disclosure Policy used in discovery and remediation of vulnerabilities in Xerox software and hardware.
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Appendix A: Product Security Profiles This appendix describes specific details of each AltaLink® and VersaLink® product. November 2018 Page 30...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® AltaLink® B8045/B8055/B8065/B8075/B8090 Physical Overview Locking Caster Upper Rear Cover Tray 5 Lower Rear Cover Left Side Door USB Memory Port, for service only USB Port USB Memory Card Connections Document Cover...
Page 34
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Controller Non-Volatile Storage SD Card Optional Required Contains User Data (E.g. Print, Scan, Fax) Encryption Support Configurable Always-On NIST 800-171 Overwrite Support Contains Configuration Settings Encryption Support Configurable Always-On Factory...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® VersaLink® B400, B405 Physical Overview Upper Paper Tray 10. Lower Paper Tray Special Paper Feed 11. Optional SSD Install Location Front Bezel 12. SSD Install Location Cover USB 2.0 (A) 13.
Page 42
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Controller Non-Volatile Storage SD Card Required Optional Contains User Data (E.g. Print, Scan, Fax) Encryption Support Always-On NIST 800-171 Overwrite Support Contains Configuration Settings Encryption Support Always-On Always-On Factory Factory...
Page 43
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® VersaLink® C400, C405 Physical Overview Upper Paper Tray Lower Paper Tray Special Paper Feed 10. Service Panel Front Bezel 11. RJ-11 Fax and Telephone Connector USB 2.0 (A) 12. RJ-11 Fax and Telephone Connector Touch Screen User Interface, Power Button 13.
Page 44
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Controller Non-Volatile Storage SD Card Required Optional Contains User Data (E.g. Print, Scan, Fax) Encryption Support Always-On NIST 800-171 Overwrite Support Contains Configuration Settings Encryption Support Always-On Always-On Factory Factory...
Connection of optional equipment such as NFC or CAC readers. Note: This port can be disabled completely by a system administrator. Product Service Port Used only by Xerox service technicians. Port is covered by a metal plate. Encryption and Overwrite...
Page 50
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Controller Non-Volatile Storage SD Card Optional Required Contains User Data (E.g. Print, Scan, Fax) Encryption Support Always-On Always-On NIST 800-171 Overwrite Support Contains Configuration Settings Encryption Support Always-On Always-On Factory...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Appendix B: Security Events Xerox AltaLink® Security Events Event Description System startup Device name Device serial number System shutdown Device name Device serial number Manual ODIO Standard started Device name...
Page 52
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Email job Job name User Name Completion Status IIO status Accounting User ID Accounting Account ID total-number-of-smtp-recipients smtp-recipients Audit Log Disabled Device name Device serial number Audit Log Enabled Device name...
Page 53
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Scan to Home UserName Device name Device serial number Completion Status (Enabled/Disabled) Scan to Home job Job name or Dir name User Name Completion Status (Normal/Error) IIO status Accounting User ID-Name...
Page 54
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® SA pin changed UserName Device name Device serial number Completion status Audit log Saved UserName Device name Device serial number Completion status UserName Device name Device serial number Completion Status (Enabled/Disabled/Terminated)
Page 55
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Smartcard (CAC/PIV) access UserName (if valid Card and Password are entered) Device name Device serial number Process Name Process terminated Device name Device serial number Process name ODIO scheduled Device name...
Page 56
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® IPv6 UserName Enable/Disable/Configure Device Name Device Serial Number Completion Status (Success/Failed) 802.1x UserName Enable/Disable/Configure Device Name Device Serial Number Completion Status (Success/Failed) Abnormal System Termination Device Name Device Serial Number...
Page 57
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Remote UI feature User Name Device Name Device Serial Number Completion Status (Enabled/Disabled/Configured) Remote UI session User Name Device Name Device Serial Number Completion Status (Initiated/Terminated) Remote Client IP Address...
Page 58
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® McAfee Security Event Device name NOTE: ColorQube 8900 ONLY Device serial number Type (Read / Modify / Execute / Deluge) McAfee message text McAfee Agent User name NOTE: ColorQube 8900 ONLY...
Page 59
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Network Connectivity Enable / UserName Disable Device name Device serial number Completion Status (Enable Wireless / Disable Wireless (Enable Wired /Disable Wired) Address Book Permissions UserName Machine Name Machine serial number...
Page 60
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Convenience Authentication UserName Enable/Disable/Configure Device name Device serial number Completion Status (Enabled/Disabled/Configured) Efax Passcode Length UserName (managing passcodes) Device name Device serial number Completion Status (Passcode Length Changed) Custom Authentication Login...
Page 61
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Scan to WebDAV Job name User Name Completion Status IIO status Accounting User ID-Name Accounting Account ID-Name WebDAV destination. Mopria Print UserName enable / disable Device name Device serial number...
Page 62
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Audit Log SFTP Transfer UserName Device Name Device serial number Destination server Completion Status (File Transmitted) Remote Software UserName Download Device name Enable Disable Device serial number Completion Status (Enable/Disable) Airprint &...
Page 63
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Backup-Restore File Name restore installed User name Device name Device IP address Interface (WebUI) Completion Status (Success or Failed) Google Cloud Services User name Device name Device serial number Completion Status-(Enabled / Disabled / Configured)
Page 64
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Remote Services Software Device Name Download Device Serial number File Name Restricted Admin Permission Role User name Device name Device serial number Restricted admin role name Completion status (Created / Deleted / Configured)
Page 65
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Job Data Removal Standard Device name complete Device serial number Completion Status (“Success” / “Failed”) Job Data Removal Full started Device name Device serial number Job Data Removal Full complete...
Page 66
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® User name (if available. “SYSTEM”, if executed as a Xerox Configuration Watchdog Remediation Complete scheduled event) Device name Device serial number Completion status (“Success” | “Failed”) ThinPrint Feature User Name...
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® VersaLink® Security Events Event Description Started normally (cold boot) Started normally (warm boot) Started (NVM initialized) Started (Hard Disk initialized) Shutdown requested Completion: (“Success” / “Failed”) Image Overwriting started Scheduled On Demand Completion: (“Success”...
Page 68
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® File Name Copy Action Details Scan Encrypted, Signed, Destination Name, Sender Name Action Details, Destination Name, Sender Name Mailbox Action Details Print Reports Job Flow Service Completion: (“Success” / “Failed”)
Page 69
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Auto Clear Timer Service Rep. Restricted Operation Print Reports Button External Code Integrity Check Authorization Access Method: (“Local” / “EWS” ) View Security Setting Host Name or IP Address Change Contract Type User name Completion: (“Success”...
Page 70
Xerox® Security Guide for Office Class Products: AltaLink® VersaLink® Category: (“Apps” / “Contacts” / “Connectivity”/ “Permissions”/ “System”) Import Cloning Data Completion: (“Replaced”) Important Parts Completion: (“Replaced” / “Installed” / “Removed”) Hard Disk Completion: (“Updated”) Software ROM Type: (“IOT” / “UI”/ “Controller”/ “FAX”)