Xerox WORK CENTRE 7525 Evaluator Manual page 14

Section 1: Evaluating Workgroup
Color Multifunction Printers
Security
What types of security requirements are critical to your office?
have the security features to meet such demands? Can device access be password
protected? Does the system remove latent images on its hard drive? Does the system
have features in place to protect confidential documents?
How the WorkCentre
®
7530 / 7535 / 7545 / 7556 mul-
tifunction printer exceeds the
security capabilities requirement
Integrated security
In today's business environment, security is a
critical competency. The technology you deploy
into your organization must have a complete
set of capabilities to help keep your confidential
information safe. The WorkCentre 7525 / 7530
/ 7535 / 7545 / 7556 delivers security features
that protect your confidential information at all
points of document vulnerability:
Document
• Secure fax — protect faxed documents
by requiring a PIN access code before the
received fax is printed.
• Secure print — holds print jobs at the MFP
until released by job owner at the device.
• Password protected PDF — turns scanned
documents into password-protected PDFs
directly from the front panel.
• 802.1X Support — Ensures devices
connected to the network are properly
authorized.
Device
• Audit Log — tracks printing, scanning and
network fax activities by user, time and date.
• User Authentication — restricts access to
device features and management settings
by validating user names and passwords,
with SMB, LDAP, LDAP+SSL, and Kerberos
integration.
14 Xerox WorkCentre 7525 / 7530 / 7535 / 7545 / 7556 Evaluator Guide
®
7525 /
• Xerox Secure Access Unified ID System
®
(optional) — magnetic card-based access
eases authentication and access to device
features.
• Smart Card Technology — supports the
smart identification card technology used by
U.S. government facilities for their Common
Access Card (CAC) system.
Hard drive
• Encrypted disk drive — applies 256-bit
encryption to data stored on the MFP hard
drive.
• Image Overwrite — electronically "shreds"
data stored on the MFP hard drive using an
algorithm specified by U.S. Department of
Defense Directive 5200.28-M.
Network
• Encrypted email — provides an additional
layer of security against unauthorized users
(via CAC system).
• IEEE 802.1X protocol — ensures devices
connected to the network are properly
authenticated.
• IPsec — encrypts print jobs sent to the MFP
utilizing IPsec.
• IPv6 support — built-in support for networks
utilizing the IPv6 standard.
• Secure data protocols — secures network
communications with industry standards
including HTTPS (SSL), SNMP v3.0, and IPsec.
Does the device
Common Criteria certification
®
The National Information Assurance
Partnership (NIAP) is a U.S. government initia-
tive to meet the security testing of Common
Criteria, and is a collaboration between the
National Institute of Standards and Technology
(NIST) and the National Security Agency (NSA).
Common Criteria for IT Security Evaluation is an
internationally recognized methodology (ISO
15408) for evaluating the security claims of
hardware and software vendors. The five major
elements of Common Criteria are availability,
integrity, confidentiality, accountability and
non-repudiation. Xerox submits its products,
along with highly structured statements
describing the products' information security
capabilities, for validation by an independent,
government-sponsored laboratory for test-
ing and certification. Certification is a costly,
rigorous and time-consuming process — the
WorkCentre 7500 series has achieved Common
Criteria EAL2+ conformant with 2600.2 protec-
tion profile for hardcopy devices.
Check the Xerox
Security pages (www.xerox.
®
com/security) or the Common Criteria Portal
(www.niap-ccevs.org), for more up-to-date
information. Xerox currently has more MFP
products certified than any other vendor in
the industry.