Security - Sharp MX-7000N Manual

Security

High-tech security is never out of the news, with reports
of information theft and hacking making headlines. By the
very nature of their development, network printers and
MFPs are security risks if not managed correctly.
Advanced network connectivity options open ports to
hackers. Industry-standard Java and Web browser design
elements are vulnerable to virus attack. Large hard drives store a latent
copy of every document flowing through the device data for years. Devices
link directly to core network components such as the LDAP address list or
the central file server. Plus, fast communication options let insiders send
information to the outside with no method of being traced.
Security and data compliance buzzwords and regulations such as Com-
mon Criteria certification, HIPAA, Sarbanes-Oxley, Gramm Leach Bliley,
FERPA, SEC, FSMA, and the Patriot Act look to safeguard information
and force companies to conform to best practices in document and data
security management.
Safeguarding Data
Most MFPs now offer a standard or optional hard drive. Any company
dealing in critical, sensitive information should determine if it needs a data
overwrite capability that has passed Common Criteria (CC) certification.
Data overwrite deletes information on the hard drive by writing a series
of random ones and zeros over the sectors storing data, usually multiple
times. The CC test relates to how data is deleted from a device's hard drive
after being used. CC certification carried out by a government-approved
test facility. Many manufacturers get CC certification to satisfy government
security requirements and it is a requisite for many government agencies
and contractors. Most MFP devices pass evaluation assurance level (EAL)
2, with some aiming higher at EAL 3. The higher the level, the more exten-
sive the testing, and the more secure the hard drive is deemed.
Controlling Access
One of the keys to security is limiting the initial access to the device, both
remotely and at the device itself. TCP/IP and MAC filtering allow the admin-
istrator to limit remote access the device. MAC filtering is more secure; the
TCP/IP address can be copied, but the MAC address is a fixed specifica-
tion that can not be changed.
IPv6 is now becoming commonplace on network devices. IPv6 makes
it harder to crack or hack into a PC address range by making the address
more complex.
Network authentication is now available on nearly every MFP and
printer, forcing users to enter a user name and password before access to
the device is granted. Most devices can verify a user by linking to Windows
Exchange user lists, Novell network user lists, and LDAP server lists.
There should also be password encryption at the point of the login pro-
cess through SSL or other encryption or other security technology (such as
Kerberos), preventing hackers from watching and capturing user names
and IDs as they travel over the network.
Copyright © 2006 MCA Internet, LLC dba BERTL. All Rights Reserved. The license under which this document is made available and applicable law prohibit any reproduction or further transmission of any
E x c e p t i o n a l
portion of this document. This document may only be viewed electronically through the www.BERTL.com Web site and may not be stored in electronic or hard copy format. Any reproduction of trademarks is
strictly prohibited. BERTL accepts no responsibility for any inaccuracies or omissions contained in this document.
Office
Sharp MX-7000N
page 0 • September 1, 006
Security Features Summary
Hard Drive Overwrite Optional
Removable Hard Drive No
Private Print Standard
Encrypted Print Yes
Secure Fax Yes
Encrypted PDF Send Yes
Network Authentication Yes
LDAP Authentication Yes
Kerberos Authentication Yes
SNMP v3.0 Yes
IPv6 No
SSL Yes
IP Filtering Yes
MAC Filtering Yes
Back to Contents