Network Security - Canon imagePRESS V1000 Customer Expectation Document

Canon

2.10.5 Network Security

The imagePRESS V1000 secures network communications by using IP Address
filters using the imagePRESS server, and encryption and authentication.
• IP Address Filters – IP Address Filter performs a function similar to many
firewalls. It permits or rejects incoming packets from an IP address or ranges of
IP addresses.
• Encryption and Authentication – TLS (Transport Layer Security) protects data
transferred over the network by encrypting file names and formats. The System
Administrator can also add IPSec capabilities to secure Internet Protocol (IP)
communications from lower layer protocols, such as TCP (Transmission Control
Protocol) and UDP (User Datagram Protocol) by authenticating and encrypting
each IP packet of a data stream across the Internet.
Additionally, the imagePRESS V1000 supports IEEE 802.1X, which provides
port-based authentication. Authentication involves communications between a
supplicant, authenticator, and authentication server. The supplicant is
authentication software on a client device. The client device (the imagePRESS
V1000) needs the supplicant to provide credentials, such as user
names/passwords or digital certificates, to the authenticator (a wireless access
point). The authenticator then forwards the credentials to the authentication
server (generally a RADIUS database) for verification. If the credentials are valid
in the authentication server database, the client device is allowed to access
resources located on the protected side of the network.
Revision 4 imagePRESS V1000 Customer Expectations Document
imagePRESS V1000 Customer Expectations Document
Page 30