1. Manuals
  2. Brands
  3. Canon Manuals
  4. All in One Printer
  5. imageRUNNER ADVANCE System V3.13
  6. Service manual

Protection Of Encryption Keys, Certificates And Passwords; Security Information Structure - Canon imageRUNNER ADVANCE System V3.13 Service Manual

Hide thumbs
Table of Contents

Advertisement

Protection of Encryption Keys, Certificates and Passwords

The Main Controller PCB of this machine has TPM installed. "TPM" stands for "Trusted Platform Module" and has a functionality
to generate and store encryption keys as well as the public-key encryption arithmetic function.
TPM protects security data (passwords, certificates and encryption keys) stored in the Flash. It does not protect non-security data
such as setting, registered, or saved data.
Security data are encrypted/decrypted using the TPM key inside TPM.
It is very difficult to eject a TPM key, and the Main machine security information is safe in the following situations.
• When taking out Main machine internal storage or Main Controller PCB and inserting it into MFPs with other serial numbers
(The TPM retains the model information when the TPM settings are enabled.))
• When the machine's system is hacked via network
To enable this feature, set the following setting to [ON]. (Default: OFF)
• [Execute Management Settings] > [Data Management] > [TPM Settings] > [ON]

Security information structure

The operation of the security function differs depending on the TPM setting on the UI.
There are 2 types of TPM settings, and the flow of security information with each of these TPM settings is explained below.
When TPM settings are enabled, the TPM key becomes valid, so three-stage keys can be used. Therefore, the security information
of each machine is securely protected.
The security information in this setting is composed of 3 keys and a plurality of password information stored in the FLASH PCB.
Each piece of information is stored in the specified storage location. (Enclosed with a blue line in the above diagram)
TPM
TPM
Root Key
TPM Key
Memory area
Memory area
Password
Password
Data Storing Key
Data Storing Key
Public Key Pair for
Public Key Pair for
Encryption Key
Encryption Key
SSL Communication
SSL Communication
All information is encrypted and stored by the
TPM key which was encrypted by root key.
TPM Key
TPM
Public Key
Common
Key
Password
Password
Image diagram when the TPM settings are enabled
Since the TPM key is safely
stored using the root key in
the TPM chip, high security
is maintained.
User Certificate
User Certificate
USB flash drive
Backup Key
for TPM failure
Flash PCB
22
3. Security Function

Advertisement

Table of Contents
loading

Related Manuals for Canon imageRUNNER ADVANCE System V3.13

Related Content for Canon imageRUNNER ADVANCE System V3.13

Table of Contents