FIA_USB.1.3
The TSF shall enforce the following rules governing changes to the user security attributes
associated with subjects acting on the behalf of users: [assignment: none].
6.1.5
Class FMT: Security management
FMT_MSA.1(a) Management of security attributes
Hierarchical to:
No other components.
Dependencies:
[FDP_ACC.1 Subset access control, or
FDP_IFC.1 Subset information flow control]
FMT_SMR.1 Security roles
FMT_SMF.1 Specification of Management Function
FMT_MSA.1.1(a) The TSF shall enforce the [assignment: document access control SFP] to restrict the ability to
[selection: query, modify, delete, [assignment: newly create]] the security attributes
[assignment: security attributes in Table 26] to [assignment: the user roles with operation
permission in Table 26].
Security Attributes
Login user name of normal user
for Basic Authentication
Login user name of normal user
for External Authentication
Login user name of supervisor
Login user name of MFP administrator
Document data attribute
Document user list
[when document data attributes are
(+PRT), (+SCN), (+CPY), and
(+FAXOUT)]
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
Table 26 : User Roles for Security Attributes (a)
Query,
modify,
delete,
newly create
Query
Query,
modify,
delete,
newly create
Query,
modify
Newly create
Query,
modify
Query
No operation permitted
No operation permitted
Operations
MFP administrator
Normal user who owns the applicable
login user name
MFP administrator
Supervisor
MFP administrator
MFP administrator who owns the
applicable login user name
Supervisor
None
None
Page 61 of 93
User Roles
with Operation Permission