![Samsung X4220 Instruction Manual Download Page 9](http://html1.mh-extra.com/html/samsung/x4220/x4220_instruction-manual_4279515009.webp)
Samsung Multifunction MultiXpress X4220, X4250, X4300, X401, K4250, K4300, K4350, K401 Series
9
Copyright
2014 SAMSUNG ELECTRONICS Co., Ltd., All rights reserved
The TOE provides a trusted channel between itself and another trusted IT product to protect
user data or TSF data that are transmitted or received over network.
1.4
TOE Description
This section provides detailed information for the TOE evaluator and latent customer about TOE
security functions. It includes descriptions of the physical scope and logical scope of the TOE.
1.4.1
TOE Operational Environment
In general, the TOE can be used in a wide variety of environments, which means each environment
may place a different value on the assets, make different assumptions about security-relevant factors,
face threats of differing approaches, and be subject to different policy requirements.
The TOE is operated in an internal network protected by a firewall. U.USER is connected to the TOE
and may perform jobs that are allowed.
Figure 1: Operational Environment of the TOE
The TOE is intended to operate in a network environment that is protected by a firewall from external
malicious attacks, and with reliable PCs and authenticated servers. U.USER is able to access the TOE
by using local user interface (LUI) or remote user interface (RUI). The LUI is designed to be accessed
by U.USER. The U.USER can operate copy, scan, and fax functions through the LUI. In the case of a
scanning job, U.USER can operate the scanning job using the LUI and transfer the scanned data to a
certain destination by email addresses and servers. U.USER can also use their PCs to print out
documents or to access the TOE through the internal network. U.ADMINISTRATOR can
enable/disable Automatic Image Overwrite; start/stop Manual Image Overwrite, and change a
Password via the LUI. U.ADMINISTRATOR can access TOE through the RUI using a web browser
through IPSec protocol. If IPSec is not configured in the TOE, all of network connection would be
blocked. From there, U.ADMINISTRATOR can add/change/delete user accounts, change the
U.ADMINISTRATOR’s ID and password, review the security audit service, and download the