Sf.net_Prot Network Communication Data Protection Function; Use Of Web Service Function From Client Computer; Printing And Faxing From Client Computer; Sending By E-Mail From Toe - Ricoh Aficio MP 8001 Manual

generation algorithm (compliant with the BSI-AIS31 standard). When the TOE writes to or reads from the
HDD, it performs the encryption operations shown in Table 34.
Table 34: List of encryption operations on data stored on the HDD
Encryption-triggering
operation
Writing data to HDD
Reading data from HDD
The HDD encryption keys can also be printed. If the logged-in user is the machine administrator, the TOE
displays a screen on the Operation Panel that the administrator can use to print the HDD encryption keys.
The printed encryption keys are used to restore the encryption keys in the event of the encryption keys in
the TOE becoming unavailable.
In addition, the TOE verifies that the encryption function of the Ic Ctlr operates normally at start-up and
verifies the integrity of the HDD encryption keys. If the TOE is not able to verify the integrity of the HDD
encryption keys, it will show that the HDD encryption keys have changed.
By the above, FCS_CKM.1 (Cryptographic key generation), FCS_COP.1 (Cryptographic operation),
FMT_MTD.1 (Management of TSF data), and FPT_TST.1 (TSF testing) are satisfied.
7.1.7 SF.NET_PROT
This protects document data and print data in transit on internal networks from leakage, and also detects
attempts at tampering.
Following are explanations of each functional item in "SF.NET_PROT
Data Protection Function" and their corresponding security functional requirements.
7.1.7.1

Use of Web Service Function from Client Computer

Whenever it receives a request from a client computer for use of the Web Service Function, the TOE
communicates with the client computer using the SSL protocol to create a trusted path.
By the above, FTP_TRP.1 (Trusted path) is satisfied.
7.1.7.2

Printing and Faxing from Client Computer

Whenever it receives a request from a client computer for printing or transmitting faxes, the TOE
communicates with the client computer using the SSL protocol to create a trusted path.
By the above, FTP_TRP.1 (Trusted path) is satisfied.
7.1.7.3

Sending by E-mail from TOE

When sending document data by e-mail to a client computer, the TOE attaches the document data to e-mail
and sends the e-mail using S/MIME. The S/MIME destination information is registered as S/MIME user
information within general user information. Users can send e-mail referring to the registered destination
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
Encryption
operations
Encrypt
Decrypt
Network Communication Data Protection Function
Encryption
Standard
algorithm
FIPS197 AES
Network
Page 76 of 82
Key size
256 bits
Communication