Page 8 of 17
© Copyright 2006 Lexmark International Inc.
This document may be freely reproduced and distributed whole and intact including this Copyright Notice.
Service
Description
Input
Output
CSP
Type of Access
to CSP
Uninstall Uninstall
the
firmware
Command Uninstalled
module
None --
Monitor
Configure of the
module
Command Module
setting
None
--
Run Self-
Test
Perform the self-test
on demand
Command Status
output
Integrity
Check
Key
Read
Show Status
Call a show status
from the printer status
menu (HTTP) which
has an LPC log page
Command Status
output
None
--
Table 3 – Crypto Officer Services, Descriptions, CSPs
User Role
Users utilize the cryptographic functionalities of the PrintCryption, and they
communicate with the module via network port only.
Service descriptions and inputs/outputs are listed in the following table:
Service
Role
Input
Output
CSP
Type of Access
to CSP
Public Key
request
Users request for
printers public key.
The module generates
a key pair if needed
Public Key
Request (PKR)
at network port
9150.
X.509
certificate
RSA public key
Read/Write
Secure
Printing
AES encrypted
printing program;
Decrypts and prints
the print job data
using the supplied
AES Session key
Encrypted
print job at
TCP/IP port
9152.
Status output
AES session key
Read/Write
Table 4 – User Services, Descriptions, Inputs and Outputs
Physical Security
In FIPS terminology, the firmware module is defined as a multi-chip standalone
cryptographic module. The module runs on Lexmark printers listed in
Module
Specification
section. The printers are made of all production-grade components
and are enclosed in a strong plastic and steel case, which surrounds all of the
module’s internal components, including all hardware and firmware.
While purely a firmware module, the FIPS 140-2 evaluated platforms must have
been tested for and meet applicable FCC EMI and EMC requirements for business
use as defined by 47 Code of Federal Regulations, Part15, Subpart B.