Table 9: Rules Governing Access; Table 10: Rules Governing Access Explicitly - Ricoh Aficio MP C2800 Manual
Aficio mp c2800/c3300 series with fax option type c5000 security target
Hide thumbs
Also See for Aficio MP C2800:
- Operating instructions manual (368 pages) ,
- Specification (8 pages) ,
- Function manual (1044 pages)
Table of Contents
Advertisement
Subject
Operations on objects
General
user
Storing document data
process
Reading document data
Deleting document data
FDP_ACF.1.3 The TSF shall explicitly authorise access of subjects to objects based on the following
additional rules: [assignment: rules that explicitly grant subject's operations on objects
shown in
Subject
Operations on object
Administrator
Deleting document data
process
FDP_ACF.1.4 The TSF shall explicitly deny access of subjects to objects based on the [assignment: no
rules, based on security attributes that explicitly deny access of subjects to objects].
FDP_IFC.1
Subset information flow control
Hierarchical to:
Dependencies:
FDP_IFC.1.1
The TSF shall enforce the [assignment: telephone line information flow SFP] on
[assignment: subjects, information, and an operation listed in
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
Table 9: Rules governing access
General users can store document data. When the document
data is stored, the document data default ACL associated with
the general user process is copied to the document data ACL
associated with the document data.
A general user process has permission to read document data
if the general user ID associated with the general user process
matches either the document file owner ID or the document
file user ID in the document data ACL associated with the
document data, and if the matched ID has viewing, editing,
editing/deleting, or full control permission.
A general user process has permission to delete document
data if the general user ID associated with the general user
process matches either the document file owner ID or a
document file user ID in the document data ACL associated
with the document data, and if the matched ID has permission
for editing/deleting or full control permission.
Table 10].
Table 10: Rules governing access explicitly
When the file administrator is included in administrator roles
that are associated with administrator process, the
administrator process has permission to delete all document
data stored in the D-BOX.
No other components.
FDP_IFF.1 Simple security attributes.
Page 40 of 80
Rules governing access
Rules governing access
Table 11].
Hide quick links:
Advertisement
Table of Contents
