lexma XS955 Manual

Hide thumbs

Table Of Contents

Table of Contents

Quick Links

Download this manual

Lexmark Multi-Function Printers Security Target

Lexmark X548, XS548, X748, X792, XS796,

X925, XS925, X950, X952, X954, XS955 and

6500e Scanner (with T650, T652, or T654

Printer) Multi-Function Printers

Security Target

Version 1.11

September 22, 2014

Lexmark International, Inc.

740 New Circle Road

Lexington, KY 40550

Table of Contents

Need help?

Do you have a question about the XS955 and is the answer not in the manual?

Questions and answers

Summary of Contents for lexma XS955

Page 1 Lexmark Multi-Function Printers Security Target Lexmark X548, XS548, X748, X792, XS796, X925, XS925, X950, X952, X954, XS955 and 6500e Scanner (with T650, T652, or T654 Printer) Multi-Function Printers Security Target Version 1.11 September 22, 2014 Lexmark International, Inc. 740 New Circle Road...
Page 2 This document provides the basis for an evaluation of a specific Target of Evaluation (TOE), the Lexmark X548, XS548, X748, X792, XS796, X925, XS925, X950, X952, X954, XS955 and 6500e Scanner (with T650, T652, or T654 Printer) Multi-Function Printers. This Security Target...
Page 3: Table Of Contents
Lexmark Multi-Function Printers Security Target TABLE OF CONTENTS 1. SECURITY TARGET INTRODUCTION ..............9 1.1 Security Target Reference ..................9 1.2 TOE Reference ......................9 1.3 Evaluation Assurance Level ..................9 1.4 Keywords ........................9 1.5 TOE Overview ......................9 1.5.1 Usage and Major Security Features ................
Page 4 Lexmark Multi-Function Printers Security Target 3.4 Organisational Security Policies ................26 4. SECURITY OBJECTIVES..................27 4.1 Security Objectives for the TOE ................27 4.2 Security Objectives for the Operational Environment .......... 27 5. EXTENDED COMPONENTS DEFINITION ............29 5.1 Extended Security Functional Components ............29 5.1.1 FPT_FDI_EXP Restricted forwarding of data to external interfaces ......
Page 5 Lexmark Multi-Function Printers Security Target 6.3 CC Component Hierarchies and Dependencies ............. 44 7. TOE SUMMARY SPECIFICATION ............... 46 7.1 Security Functions ....................46 7.1.1 Audit Generation ...................... 46 7.1.2 Identification and Authentication ................47 7.1.2.1 Backup Password ....................48 7.1.3 Access Control ......................
Page 6 Lexmark Multi-Function Printers Security Target LIST OF FIGURES Figure 1 - TOE Model ....................12 LIST OF TABLES Table 1 - Technical Characteristics of the MFP Models ..........11 Table 2 - Technical Characteristics of the Integrated Printer Models ......11 Table 3 - Notational prefix conventions ...............
Page 7 Lexmark Multi-Function Printers Security Target Table 29 - Security Menu TSF Data ................55 Table 30 - General Settings Menu TSF Data ............. 58 Table 31 - Fax Settings Menu TSF Data ..............58 Table 32 - Email Settings Menu TSF Data ..............59 Table 33 - Print Settings/Setup Settings Menu TSF Data ..........
Page 8 Lexmark Multi-Function Printers Security Target MFP ....................Multi-Function Printer NTP....................Network Time Protocol OSP ................... Organizational Security Policy PIV ..................Personal Identity Verification PJL ....................Printer Job Language PKI ................... Public Key Infrastructure PP ......................Protection Profile RFC ....................Request For Comments SASL.............
Page 9: Security Target Introduction
This Security Target (ST) describes the objectives, requirements and rationale for the Lexmark X548, XS548, X748, X792, XS796, X925, XS925, X950, X952, X954, XS955 and 6500e Scanner (with T650, T652, or T654 Printer) Multi-Function Printers. The language used in this Security Target is consistent with the Common Criteria for Information Technology Security Evaluation, Version 3.1 and all international interpretations through March 17, 2011.
Page 10: Toe Type
Lexmark Multi-Function Printers Security Target 5. TSF Data, of which unauthorized disclosure threatens operational security, are protected from unauthorized disclosure. 6. TSF Data, of which unauthorized alteration threatens operational security, are protected from unauthorized alteration. 7. Document processing and security-relevant system events are recorded, and such records are protected from disclosure or alteration by anyone except for authorized personnel.
Page 11: Table 1 - Technical Characteristics Of The Mfp Models
The TOE includes the hardware and firmware in both the scanner and printer units. All of the other models included in the evaluation (X548, XS548, X748, X792, XS796, X925, XS925, X950, X952, X954, and XS955) are complete MFPs in a single unit.
Page 12: Users
Lexmark Multi-Function Printers Security Target Figure 1 - TOE Model Common MFP Functions Input User Data TSF Data Output Channel Channel User User Document Function Protected Confidential Data Data Data Print Scan Copy Shared Medium Functions Functions Functions Functions Functions The following prefixes are used to indicate different entity types: Table 3 - Notational prefix conventions Prefix...
Page 13: Objects (Assets)
Lexmark Multi-Function Printers Security Target Table 4 - Users Designation Definition U.USER Any authorized User. U.NORMAL A User who is authorized to perform User Document Data processing functions of the TOE. In the remainder of this document, the term “Normal User” is used interchangeably with U.NORMAL.
Page 14: Tsf Data
Lexmark Multi-Function Printers Security Target Designation Definition D.FUNC User Function Data are the information about a user’s document or job to be processed by the TOE. For this TOE, D.FUNC includes: Job information for network print jobs Job information for scanned data to be printed (copying) Job information for scanned data to be faxed Job information for scanned data to be emailed Job information for user data in received faxes...
Page 15: Operations
Lexmark Multi-Function Printers Security Target 1.6.3 Operations Operations are a specific type of action performed by a Subject on an Object. Five types of operations are addressed: those that result in disclosure of information (Read), those that result in alteration of information (Create, Modify, Delete), and those that invoke a function (Execute). 1.6.4 Channels Channels are the mechanisms through which data can be transferred into and out of the TOE.
Page 16: Management
Lexmark Multi-Function Printers Security Target 1.8.4 Management Through web browser sessions, authorized administrators may configure access controls and perform other TOE management functions. 1.8.5 Operator Panel Lockout Authorized users may lock and unlock the touch panel. When the touch panel is locked, print jobs are still accepted but they are queued on the disk drive until the touch panel is unlocked.
Page 17 Lexmark Multi-Function Printers Security Target Item Description D.CONF D.PROT Analog Fax - Driver to Specifies whether driver fax jobs are treated as PS jobs and printed or sent as faxes. Analog Fax - Enable Specifies whether incoming faxes may be received. Fax Receive Analog Fax - Fax Specifies whether fax forwarding of incoming faxes to a...
Page 18 Lexmark Multi-Function Printers Security Target Item Description D.CONF D.PROT Job Waiting Specifies whether a print job may be placed in the Held Jobs queue if the required resources (e.g. paper type) are not currently available, enabling subsequent print jobs to be processed immediately LDAP Certificate Specifies what verification (if any) should be done on the...
Page 19: Authentication Data
Lexmark Multi-Function Printers Security Target Item Description D.CONF D.PROT Security Reset Specifies the behavior of the TOE when a position change Jumper of the Security Rest Jumper is detected. No Effect indicates the jumper should be ignored. “No Security” preserves all of the building blocks and templates that a user has defined, but resets each access control to its factory default security level.
Page 20: User Data
Lexmark Multi-Function Printers Security Target Table 10 - Security Attributes Item Description Group Memberships The set of group memberships associated with the current session as the result of successful I&A. Username The username specified during a successful I&A interaction. 1.9.4 User Data All the items described in the following table have both a D.DOC and D.FUNC component.
Page 21 Lexmark Multi-Function Printers Security Target 7. All network communication is required to use IPSec with ESP to protect the confidentiality and integrity of the information exchanged, including management sessions that exchange D.CONF and D.PROT. Certificates presented by remote IT systems are validated. 8.
Page 22: Rationale For Non-Bypassability And Separation
Lexmark Multi-Function Printers Security Target 22. All network print jobs are held until released via the touch panel. Every network print job must include a PJL SET USERNAME statement to identify the userid of the owner of the print job. Held print jobs may only be released by an authenticated user with the same userid as specified in the print job.
Page 23 Lexmark Multi-Function Printers Security Target ensure that all enforcement functions complete successfully before allowing the user invoked action to proceed. Security supporting interfaces ensure that the TSF cannot be interfered with via those interfaces (i.e., they are isolated from the TSF). Multiple simultaneous users are supported, and the TOE enforces separate domains for each process/user to ensure the appropriate attributes and privileges are associated with each process/user.
Page 24: Conformance Claims
Lexmark Multi-Function Printers Security Target 2. Conformance Claims 2.1 Common Criteria Conformance Common Criteria version: Version 3.1 Revision 3 Common Criteria conformance: Part 2 extended and Part 3 conformant 2.2 Protection Profile Conformance PP Identification: U.S. Government Protection Profile for Hardcopy Devices (IEEE Std. 2600.2™-2009), dated February 26, 2010, version 1.0, including the augmentations specified by Attachment A of CCEVS Policy Letter #20 dated 15 November 2010.
Page 25: Security Problem Definition
Lexmark Multi-Function Printers Security Target 3. Security Problem Definition 3.1 Introduction This chapter defines the nature and scope of the security needs to be addressed by the TOE. Specifically this chapter identifies: assumptions about the environment, threats to the assets and organisational security policies.
Page 26: Organisational Security Policies
Lexmark Multi-Function Printers Security Target 3.4 Organisational Security Policies This section describes the Organizational Security Policies (OSPs) that apply to the TOE. OSPs are used to provide a basis for security objectives that are commonly desired by TOE Owners in this operational environment but for which it is not practical to universally define the assets being protected or the threats to those assets.
Page 27: Security Objectives
Lexmark Multi-Function Printers Security Target 4. Security Objectives This section identifies the security objectives of the TOE and the TOE’s Operational Environment. The security objectives identify the responsibilities of the TOE and the TOE’s Operational Environment in meeting the security needs. Objectives of the TOE are identified as O.objective.
Page 28 Lexmark Multi-Function Printers Security Target OE.Type Operational Environment Security Objective OE.AUDIT_ACCESS.AU If audit records generated by the TOE are exported from the TOE to THORIZED another trusted IT product, the TOE Owner shall ensure that those records can be accessed in order to detect potential security violations, and only by authorized persons.
Page 29: Extended Components Definition
Lexmark Multi-Function Printers Security Target 5. Extended Components Definition 5.1 Extended Security Functional Components 5.1.1 FPT_FDI_EXP Restricted forwarding of data to external interfaces Family behaviour: This family defines requirements for the TSF to restrict direct forwarding of information from one external interface to another external interface. Many products receive information on specific external interfaces and are intended to transform and process this information before it is transmitted on another external interface.
Page 30: Fpt_Fdi_Exp.1
Lexmark Multi-Function Printers Security Target Quite often, a TOE is supposed to perform specific checks and process data received on one external interface before such (processed) data are allowed to be transferred to another external interface. Examples are firewall systems but also other systems that require a specific work flow for the incoming data before it can be transferred.
Page 31: Security Requirements
Lexmark Multi-Function Printers Security Target 6. Security Requirements This section contains the functional requirements that are provided by the TOE. These requirements consist of functional components from Part 2 of the CC. The CC defines operations on security requirements. The font conventions listed below state the conventions used in this ST to identify the operations.
Page 32: Users
Lexmark Multi-Function Printers Security Target Auditable event Relevant Audit level Additional Information Job Completed FDP_ACF.1 Not specified Job identifier Job Canceled FDP_ACF.1 Not specified Job identifier Print Job Flushed (because no userid was FDP_ACF.1 Not specified None specified) Expired held job deleted (because it was not FDP_ACF.1 Not specified Userid specified in...
Page 33: Fau_Gen.2 User Identity Association
Lexmark Multi-Function Printers Security Target 6.1.1.2 FAU_GEN.2 User Identity Association FAU_GEN.2.1 For audit events resulting from actions of identified users, the TSF shall be able to associate each auditable event with the identity of the user that caused the event. 6.1.2 Cryptographic Support (FCS) 6.1.2.1 FCS_CKM.1 Cryptographic Key Generation FCS_CKM.1.1(A) The TSF shall generate cryptographic keys in accordance with a specified...
Page 34: User Data Protection (Fdp)
Lexmark Multi-Function Printers Security Target Operations Key Size in Algorithm Standards Bits PRNG (CAVP cert. #957) Random number generation ANSI X9.31 6.1.3 User Data Protection (FDP) 6.1.3.1 FDP_ACC.1 Subset Access Control FDP_ACC.1.1(A) The TSF shall enforce the Common Access Control SFP on 1.
Page 35: Table 20 - Common Access Control Sfp Rules
Lexmark Multi-Function Printers Security Target Table 20 - Common Access Control SFP Rules Operation Create View Modify Release Delete Object Copy Job Allowed if the user is a Allowed Allowed for jobs member of an authorized for jobs allowed owned by the group of the security owned by user...
Page 36 Lexmark Multi-Function Printers Security Target Operation Create View Modify Release Delete Object The job owner is the authenticated user of the touch panel. Scanned Job to Allowed if the user is a Allowed Allowed for jobs be Faxed member of an authorized for jobs Allowed owned by the...
Page 37: Fdp_Rip.1 Subset Residual Information Protection
Lexmark Multi-Function Printers Security Target 1. Lock – A user may lock the Touch Panel if the Operator Panel Lock access control is restricted and that user is a member of an authorized group. 2. Unlock – A user may unlock the Touch Panel if the Operator Panel Lock access control is restricted and that user is a member of an authorized group.
Page 38: Fia_Uau.7 Protected Authentication Feedback
Lexmark Multi-Function Printers Security Target Application Note: The TOE only performs the authentication for users using Internal Accounts or the Backup Password. When I&A uses LDAP+GSSAPI or PKI, authentication is under the control of the LDAP server (and CAC/PIV) in the operational environment.
Page 39: Security Management (Fmt)
Lexmark Multi-Function Printers Security Target 6.1.5 Security Management (FMT) 6.1.5.1 FMT_MOF.1 Management of Security Functions Behaviour FMT_MOF.1.1 The TSF shall restrict the ability to determine the behaviour of, disable, enable, modify the behaviour of the functions listed in the following table to administrators that pass the access control check for the authorization item specified for the listed functions.
Page 40: Table 22 - Tsf Data
Lexmark Multi-Function Printers Security Target Application Note: The user permission for each TSF data item to determine “authorized identified roles” is identified in the following table. Table 22 - TSF Data Item Authorization Menu Item Operations Access Control Security Menu at the Device, Query, Modify Authorizations Security Menu Remotely...
Page 41: Fmt_Smf.1 Specification Of Management Functions
Lexmark Multi-Function Printers Security Target Item Authorization Menu Item Operations Internal Accounts Security Menu at the Device, Query, Modify Required User Credentials Security Menu Remotely Job Waiting Settings Menu at the Device, Query, Modify Settings Menu Remotely LDAP Certificate Security Menu at the Device, Query, Modify Verification Security Menu Remotely...
Page 42: Table 23 - Fmt_Smr.1 Detail
Lexmark Multi-Function Printers Security Target Table 23 - FMT_SMR.1 Detail Item Description Administrators Only? Copy Function Control’s a user’s access to the Copy functionality E-mail Function Control’s a user’s access to the Email functionality (scan to email) Fax Function Control’s a user’s ability to perform a scan to fax job When “Disabled”, all analog faxing (scan send, receive, and driver send) and the fax server are disabled.
Page 43: Protection Of The Tsf (Fpt)
Lexmark Multi-Function Printers Security Target 6.1.6 Protection of the TSF (FPT) 6.1.6.1 FPT_FDI_EXP.1 Restricted forwarding of data to external interfaces FPT_FDI_EXP.1.1 The TSF shall provide the capability to restrict data received on any external Interface from being forwarded without further processing by the TSF to any Shared- medium Interface.
Page 44: Lexmark Multi-Function Printers Security Target
Lexmark Multi-Function Printers Security Target Table 24 - EAL2+ Assurance Requirements Assurance Class Component ID Component Title Development ADV_ARC.1 Security architecture description ADV_FSP.2 Security-enforcing functional specification ADV_TDS.1 Basic design Guidance Documents AGD_OPE.1 Operational user guidance AGD_PRE.1 Preparative procedures Life-Cycle Support ALC_CMC.2 Use of a CM system ALC_CMS.2...
Page 45 Lexmark Multi-Function Printers Security Target Hierarchical To Dependency Rationale FMT_SMR.1 Satisfied FMT_MSA.1 No other components. [FDP_ACC.1 Satisfied or FDP_IFC.1], FMT_SMF.1 Satisfied FMT_SMR.1 Satisfied FMT_MSA.3 No other components. FMT_MSA.1, Satisfied FMT_SMR.1 Satisfied FMT_MTD.1 No other components. FMT_SMF.1, Satisfied FMT_SMR.1 Satisfied FMT_SMF.1 No other components.
Page 46: Toe Summary Specification
Lexmark Multi-Function Printers Security Target 7. TOE Summary Specification 7.1 Security Functions 7.1.1 Audit Generation The TOE generates audit event records for security-relevant events. A severity level is associated with each type of auditable event; only events at or below the severity level configured by an administrator are generated.
Page 47: Identification And Authentication
Lexmark Multi-Function Printers Security Target 7.1.2 Identification and Authentication Users are required to successfully complete the I&A process before they are permitted to access any restricted functionality. The set of restricted user functionality is under the control of the administrators, with the exception of submission of network print jobs which is always allowed. Users are permitted to access any TOE functionality that has a corresponding access control (see section 7.1.3 below) configured for “no security”.
Page 48: Backup Password
Lexmark Multi-Function Printers Security Target maintained across a restart of the TOE. Note that for LDAP+GSSAPI validations, the server may also be enforcing limits on authentication failures. These mechanisms operate independently and are not required to be comparably configured. In the case of failed validations, an error message is displayed via the touch panel or browser session, and then the display returns to the previous screen for further user action.
Page 49: Table 26 - Access Control Items
Lexmark Multi-Function Printers Security Target Table 26 - Access Control Items Item Description Comment Address Book Controls access to the Search Address Any authorization option may be Book button that appears as part of the configured E-mail, FTP, and Fax functions that are available from the panel’s Home screen Cancel Jobs at the device Controls access to the functionality to...
Page 50 Lexmark Multi-Function Printers Security Target Item Description Comment the fax server are disabled. The fax icon is removed and the device does not answer incoming calls nor print driver faxes. However, the panel menus still display fax-related settings as though fax were enabled.
Page 51 Lexmark Multi-Function Printers Security Target Item Description Comment PictBridge Printing Controls access to PictBridge printing Must be disabled in the evaluated functionality. configuration PJL Device Setting When “Disabled”, prohibits any changes Must be disabled in the evaluated Changes to system settings via PJL operators configuration Release Held Faxes Controls access to the Held Faxes button...
Page 52: Internal Account Building Blocks
Lexmark Multi-Function Printers Security Target Item Description Comment Web Import/Export Protects the Import/Export link in the Must be disabled in the evaluated Settings Settings section of the AIO’s Web page configuration and all links beneath the Import/Export link Authorization is restricted by associating a security template with an item. The security template assigned to each item may be the same or different as the security template(s) assigned to other items.
Page 53: Function Access Control
Lexmark Multi-Function Printers Security Target 7.1.3.4 Function Access Control The following table summarizes the access controls and configuration parameters used by the TOE to control user access to the MFP functions provided by the TOE. Additional details for each function are provided in subsequent sections. Table 27 - TOE Function Access Control SFP Rules Object Access Control Rules...
Page 54: Postscript Access Control
Lexmark Multi-Function Printers Security Target Object Access Control Rules Configuration Parameter Rules access control allowed the function 7.1.3.4.1 Printing Submission of print jobs from users on the network is always permitted. Jobs that do not contain a PJL SET USERNAME statement are discarded. Submitted jobs are always held on the TOE until released or deleted by a user authorized for the appropriate access control and whose userid matches the username specified when the job was submitted.
Page 55: Management
Lexmark Multi-Function Printers Security Target 7.1.4 Management The TOE provides the ability for authorized administrators to manage TSF data from remote IT systems via a browser session or locally via the touch panel. Authorization is granular, enabling different administrators to be granted access to different TSF data. When an administrator modifies TSF data, an audit record is generated.
Page 56 Lexmark Multi-Function Printers Security Target Item Description Comments Edit Backup Password - Specifies the Backup Password The TOE requires passwords to be a Password minimum of 8 characters, with no composition rules. Operational guidance directs administrators to use the following composition rules when specifying passwords: at least one upper case letter, one lower case letter, and one non-...
Page 57 Lexmark Multi-Function Printers Security Target Item Description Comments Login Restrictions The “Login failures” value determines Any configuration options may be how many failed authentications (local configured. The lockout function is always OR remote) are allowed within the enabled and any settings within the allowed “Failure time frame”...
Page 58: Settings Menu
Lexmark Multi-Function Printers Security Target Item Description Comments Held Print Job Expiration Specifies the maximum amount of Any configuration option may be Timer time a print job is held while waiting configured. for a user to release it for printing 1 hour 4 hours 24 hours...
Page 59: Security Reset Jumper
Lexmark Multi-Function Printers Security Target Item Description Comments Driver to fax Yes (*) “No” must be specified in the evaluated configuration When “No”, driver fax jobs are treated as PS jobs. This is the only way to disable “Driver to fax” Enable Fax Receive Specifies whether incoming faxes may Any configuration option may be specified,...
Page 60: Operator Panel Lockout
Lexmark Multi-Function Printers Security Target • erase all security templates, building blocks, and access controls that a user has defined (i.e. the factory default configuration); OR • force the value of each function access control to “No Security” (all security templates and building blocks are preserved but not applied to any function).
Page 61: Hard Disk Encryption
Lexmark Multi-Function Printers Security Target an outgoing fax connection (in the evaluated configuration) is a document that was scanned for faxing. In the evaluated configuration, the USB ports capable of being used for document input are disabled and the ability to submit jobs via the network interface to be sent out the fax interface is disabled.
Page 62: Secure Communications
Lexmark Multi-Function Printers Security Target finally with a block of random data (supplied by the internal random number generator). Each time that the device wipes a different file, it selects a different block of random data. This method is compliant with NIST SP800-88 and the DSS "Clearing and Sanitization Matrix" (C&SM).
Page 63: Protection Profile Claims
Lexmark Multi-Function Printers Security Target 8. Protection Profile Claims This chapter provides detailed information in reference to the Protection Profile conformance identification that appears in Chapter 2. 8.1 TOE Type Consistency Both the PP and the TOE describe Hard Copy Devices. 8.2 Security Problem Definition Consistency This ST claims demonstrable conformance to the referenced PP as augmented by Attachment A of CCEVS Policy Letter #20 dated 15 November 2010.
Page 64: Security Assurance Requirements Consistency
Lexmark Multi-Function Printers Security Target 4. FDP_ACC.1(c) and FDP_ACF.1(c) have been added to the ST to address an access control function (touch panel locking) that is an addition to the security functionality required by the PP. 5. FIA_AFL.1 has been added to the ST to address to address authentication failure handling, which is an addition to the security functionality required by the PP.
Page 65: Rationale
Lexmark Multi-Function Printers Security Target 9. Rationale This chapter provides the rationale for the selection of the IT security requirements, objectives, assumptions and threats. It shows that the IT security requirements are suitable to meet the security objectives, Security Requirements, and TOE security functional. 9.1 Rationale for IT Security Objectives This section of the ST demonstrates that the identified security objectives are covering all aspects of the security needs.
Page 66: Rationale Showing Policies To Security Objectives
Lexmark Multi-Function Printers Security Target Table 35 - Threats to Security Objectives Rationale T.TYPE Security Objectives Rationale T.CONF.ALT O.CONF.NO_ALT – The objective addresses the threat by requiring the TOE to protect against unauthorized alteration of TSF Confidential Data. O.I&A and OE.I&A – The objectives help address the threat by requiring I&A mechanisms so that appropriate authorizations may be associated with users.
Page 67: Rationale Showing Assumptions To Environment Security Objectives
Lexmark Multi-Function Printers Security Target Table 36 - Policies to Security Objectives Rationale P.TYPE Security Objectives Rationale P.AUDIT.LOGGING O.AUDIT.LOGGED – The objective addresses the first part of the policy by requiring the TOE to generate audit records for TOE usage and security- relevant events, and to protect these records while they are inside the TSC.
Page 68: Security Requirements Rationale
Lexmark Multi-Function Printers Security Target 9.2 Security Requirements Rationale 9.2.1 Rationale for Security Functional Requirements of the TOE Objectives This section provides rationale for the Security Functional Requirements demonstrating that the SFRs are suitable to address the security objectives. The following table identifies for each TOE security objective, the SFR(s) that address it. Table 38 - SFRs to Security Objectives Mapping FAU_GEN.1 FAU_GEN.2...
Page 69: Table 39 - Security Objectives To Sfr Rationale
Lexmark Multi-Function Printers Security Target Table 39 - Security Objectives to SFR Rationale Security SFR and Rationale Objective O.AUDIT.LOGGED FAU_GEN.1 addresses the objective by requiring the TOE to generate audit records for TOE usage and security relevant events. FAU_GEN.2 helps address the objective by requiring the audit records to include information associating a user with each event (if applicable).
Page 70 Lexmark Multi-Function Printers Security Target Security SFR and Rationale Objective channels for the exchange of D.DOC across the network. O.FUNC.NO_ALT FCS_CKM.1, FCS_CKM.4 and FCS_COP.1 support the objective by requiring the TOE to provide key management and cryptographic functions to protect the function data while transferred across the network.
Page 71: Security Assurance Requirements Rationale
Lexmark Multi-Function Printers Security Target Security SFR and Rationale Objective channels for the exchange of management traffic across the network. O.SOFTWARE.VER FPT_TST.1 addresses the objective by requiring the TOE to validate the TSF IFIED data for security templates and building blocks. O.TIME_STAMP FPT_STM.1 requires the TOE to provide a reliable time source when time is configured to be supplied internally.
Page 72: Table 41 - Sfr To Sf Rationale
Lexmark Multi-Function Printers Security Target FCS_CKM.1(B) FCS_CKM.4 FCS_COP.1 FDP_ACC.1(A) FDP_ACC.1(B) FDP_ACC.1(C) FDP_ACF.1(A) FDP_ACF.1(B) FDP_ACF.1(C) FDP_RIP.1 FIA_AFL.1 FIA_ATD.1 FIA_UAU.1 FIA_UAU.7 FIA_UID.1 FIA_USB.1 FMT_MOF.1 FMT_MSA.1 FMT_MSA.3 FMT_MTD.1 FMT_SMF.1 FMT_SMR.1 FPT_FDI_EXP.1 FPT_STM.1 FPT_TST.1 FTA_SSL.3 FTP_ITC.1 Table 41 - SFR to SF Rationale SF and Rationale FAU_GEN.1 Audit Generation addresses the SFR by specifying the audit event records that are generated and the content of the records.
Page 73 Lexmark Multi-Function Printers Security Target SF and Rationale FCS_COP.1 Hard Disk Encryption uses the random number generator and AES to generate the key used to encrypt the files on the hard disk, and uses AES to perform the encryption and decryption. Disk Wiping uses the random number generator to obtain random data used during disk sanitization.
Page 74 Lexmark Multi-Function Printers Security Target SF and Rationale FMT_MSA.1 Management requires the TOE to provide the management capabilities for Usernames and Group memberships to the administrators that satisfy the access controls associated with the menus that control access to the data items.

lexma XS955 Manual

1 Security Target Introduction

2 Conformance Claims

3 Security Problem Definition

4 Security Objectives

5 Extended Components Definition

6 Security Requirements

7 Toe Summary Specification

8 Protection Profile Claims

9 Rationale

Quick Links

Need help?

Questions and answers

Related Manuals for lexma XS955

Summary of Contents for lexma XS955

Table of Contents