manualshive.com logo in svg

Xerox WorkCentre 6400, Information Manual

The Xerox WorkCentre 6400 is a high-performance multifunction printer designed for professional environments. With its impressive specifications, this all-in-one device offers exceptional printing, scanning, and copying capabilities. You can easily access the comprehensive user manual, free for download from our website, to make the most of its features.

Share
Download
background image

XEROX WorkCentre 6400 Information Assurance Disclosure Paper 

 29 

Ver. 1.00, May 2010 

        

Page 

 29 of 44 

4.

 

Security Aspects of 

Selected Features 

4.1.

 

Audit Log 

The device maintains a security audit log.  Recording of security audit log data can be enabled or disabled by the SA.  
The audit log is implemented as a circular log containing a maximum of 15000 event entries, meaning that once the 
maximum number of entries is reached, the log will begin overwriting the earliest entry.  Only an SA will be authorized 
to download the log from the device.  The log may only be exported over an https: connection, so SSL must be set up 
before retrieving the log.  The log is exported in MS-Excel comma-separated file format.  The log does not clear when it 
is disabled, and will persist through power cycles. 

The following table lists the events that are recorded in the log: 

 

Event 

ID 

Event description 

Entry Data 

System startup 

 

Device name 
Device serial number 

System shutdown 

Device name 
Device serial number 

Manual ODIO Standard 
started 

Device name 
Device serial number 

Manual ODIO Standard 
complete 

Device name 
Device serial number 
Overwrite Status 

Print job 

Job name 
User Name 
Completion Status  
IIO status 
Accounting User ID 
Accounting Account ID 

Network scan job 

Job name 
User Name 
Completion Status  
IIO status 
Accounting User ID 
Accounting Account ID 
total-number-net-destination 
net-destination. 

Server fax job 

Job name 
User Name 
Completion Status  
IIO status 
Accounting User ID 
Accounting Account ID 
Total-fax-recipient-phone-numbers 
fax-recipient-phone-numbers 
net-destination. 

Summary of Contents for WorkCentre 6400

Page 1: ...Xerox WorkCentre 6400 Multifunction System Information Assurance Disclosure Paper Version 1 0 Prepared by Larry Kovnat Xerox Corporation 1350 Jefferson Road Rochester New York 14623...

Page 2: ...00 May 2010 Page 2 of 44 2010 Xerox Corporation All rights reserved Xerox and the sphere of connectivity design are trademarks of Xerox Corporation in the United States and or other counties Other com...

Page 3: ...Connections 10 2 2 4 USB Host Port 11 2 2 Fax Module 11 2 3 1 Purpose 11 2 3 2 Hardware 11 2 4 Scanner 12 2 4 1 Purpose 12 2 4 2 Hardware 12 2 5 Graphical User Interface GUI 12 2 5 1 Purpose 12 2 5 2...

Page 4: ...ics 27 3 4 1 Service All product configurations 27 3 4 2 tty Mode 27 3 4 3 Summary 28 4 SECURITY ASPECTS OF SELECTED FEATURES 29 4 1 Audit Log 29 4 2 Xerox Standard Accounting 33 4 3 Automatic Meter R...

Page 5: ...functions and features of the WorkCentre products relative to Information Assurance IA This document does NOT provide tutorial level information about security connectivity PDLs or WorkCentre product...

Page 6: ...er path controller and user interface Not shown in the picture below are optional additional paper trays and an optional finisher Figure 2 1 WorkCentre Multifunction System 2 1 Security relevant Subsy...

Page 7: ...Foreign Device Interface Scanner Interface Physical external Interfaces Power Button Button and TOE internal wiring proprietary Physical external Interface Figure 2 2 System functional block diagram 2...

Page 8: ...itmaps are then read from DRAM and sent to the Image Output Terminal IOT for marking on hardcopy output For long documents the production of hardcopy may begin before the entire original is scanned ac...

Page 9: ...agnostic for all areas and during normal operation spooling areas with Image Overwrite Network Disk Yes but not normal use 80GB min N with normal operation NC and UI Application SW NC and XUI paramete...

Page 10: ...age Scanner Proprietary connection between the scanner and controller USB Host Port Software upgrade module network logging and save restore machine settings during service Ethernet Network connectivi...

Page 11: ...ge data from the WorkCentre 6400 to a USB device 2 2 Fax Module 2 3 1 Purpose The embedded FAX service uses the installed embedded fax card to send and receive images over the telephone interface 2 3...

Page 12: ...of captured image Power Off System Additional Information All memory listed above contains code for execution and configuration information No user or job data is permanently stored in this location...

Page 13: ...execution and configuration information No user or job data is stored in this location 2 6 Marking Engine also known as the Image Output Terminal or IOT 2 6 1 Purpose The Marking Engine performs copy...

Page 14: ...ocation 2 7 System Software Structure 2 7 1 Open source components Open source components in the connectivity layer implement high level protocol services The security relevant connectivity layer comp...

Page 15: ...re Paper 15 Ver 1 00 May 2010 Page 15 of 44 Figure 2 4 Controller Operating System layer components 2 7 3 Network Protocols Figure 2 5 is an interface diagram depicting the protocol stacks supported b...

Page 16: ...XEROX WorkCentre 6400 Information Assurance Disclosure Paper 16 Ver 1 00 May 2010 Page 16 of 44 Figure 2 5 IPv4 Network Protocol Stack...

Page 17: ...and the device A shared secret is used to encrypt the traffic flowing through this tunnel SSL must be enabled in order to set up the shared secret When an IPSec tunnel is established between a client...

Page 18: ...L 515 TCP LPR 631 TCP IPP 1900 UDP SSDP 3003 TCP http SNMP reply 9100 TCP raw IP Please note that there is no ftp port in this list ftp is only used to export scanned images and to retrieve Scan Job T...

Page 19: ...when this is disabled IPP Port 631 is also disabled HTTP may be secured by enabling Secure Sockets Layer 2 8 2 4 1 Proxy Server The device can be configured to communicate through a proxy server Featu...

Page 20: ...ryption protocol in its network authentication feature is not subject to encryption restrictions based on Export Administration Regulations of the United States Bureau of Export Administration BXA Thi...

Page 21: ...self signed certificate In the first instance the device creates a Certificate Signing Request CSR that can be downloaded and forwarded to the well known CA for signing The signed device certificate i...

Page 22: ...disabled in the Properties tab of the device s web pages 2 8 3 IP Filtering The devices contain a static host based firewall that provides the ability to prevent unauthorized network access based on...

Page 23: ...Jobs Email Internet Fax Workflow Scanning Server Also users can be authorized to access one or any combination of the following machine pathways Services Job Status or Machine Status Assignment of use...

Page 24: ...XEROX WorkCentre 6400 Information Assurance Disclosure Paper 24 Ver 1 00 May 2010 Page 24 of 44 Figure 3 1 Authentication and Authorization schematic...

Page 25: ...ail internet fax and Scan to Fax Server The authentication steps are 1 A User enters a user name and password at the device in the Local UI The device sends an authentication request to the Kerberos S...

Page 26: ...e device sends the Domain Controller hostname to the DNS Server 2 The DNS Server returns the IP Address of the Domain Controller 3 The device sends an authentication request directly to the Domain Con...

Page 27: ...are never transmitted over the network Scan to Fax Server The device logs in to the Fax Server as set up by the SA in User Tools on the Local UI or from the Properties tab on the WebUI Please note tha...

Page 28: ...May 2010 Page 28 of 44 3 4 3 Summary As stated above accessibility of customer documents files or network resources is impossible via the PSW In the extremely unlikely event that someone did spoof th...

Page 29: ...file format The log does not clear when it is disabled and will persist through power cycles The following table lists the events that are recorded in the log Event ID Event description Entry Data 1 S...

Page 30: ...Accounting User ID Accounting Account ID Total fax recipient phone numbers fax recipient phone numbers 13 Efax Job name User Name Completion Status IIO status Accounting User ID Accounting Account ID...

Page 31: ...serial number StartupMode enabled disabled System Params Password changed or failed Start Job Password changed or failed Completion Status Success Failed 29 Network User Login UsereName Device name D...

Page 32: ...led 43 Device clock UserName Device name Device serial number Completion Status time changed date changed 44 SW upgrade Device name Device serial number Completion Status Success Failed 45 Cloning Dev...

Page 33: ...job is deleted and an error sheet is printed in its place On demand the SA will be able to download a report that shows activity for all of the users The SA can add modify or remove users and their a...

Page 34: ...the entire spooling area of the disks ODIO hex value 0xCA ASCII compliment of 5 Step 3 Pattern 3 is written to the sectors containing temporary files IIO or to the entire spooling area of the disks O...

Page 35: ...4 4 5 3 Overwrite Timing The ODIO overwrite time is dependent on the type of hard disk in the product The overwrite and reset average time is 10 minutes but longer times are possible IIO is performed...

Page 36: ...Ver 1 00 May 2010 Page 36 of 44 5 Responses to Known Vulnerabilities 5 1 Security Xerox www xerox com security Xerox maintains an evergreen public web page that contains the latest security informati...

Page 37: ...otocol IBM International Business Machines ICMP Internet Control Message Protocol IETF Internet Engineering Task Force IFAX Internet Fax IIO Immediate Image Overwrite IIT Image Input Terminal the scan...

Page 38: ...vice Location Protocol SNMP Simple Network Management Protocol SRAM Static Random Access Memory SSDP Simple Service Discovery Protocol SSL Secure Sockets Layer TCP Transmission Control Protocol TIFF T...

Page 39: ...n only support 0 or 3 for more than 1 sheet for prtInputCurrentLevel will be considered a caveat denoted as C 6 The Printer MIB requires a few groups from RFC 1213 and RFC 1514 to be supported Therefo...

Page 40: ...local UI messaging captured within table C local UI button selection messages are not captured within table Console Display Light group 5 objects supported w caveats only the Power Saver LED is suppor...

Page 41: ...rations from next generation Host Resources MIB supported optional not support because Host Resources MIBv2 has NOT entered the standards track New type 2 enumerations from next generation Printer MIB...

Page 42: ...ssion of IP datagrams over IEEE802 networks 1042 ICMP ICMP Echo ICMP Time ICMP Echo Reply and ICMP Destination Unreachable message 792 Reverse Address Resolution Protocol RARP 903 Bootstrap Protocol B...

Page 43: ...2010 Page 43 of 44 Function RFC Standard Appletalk Inside Appletalk Second Edition Printing Description Languages Postscript Language Reference Third Edition PCL6 PCL5E 5SI emulation PCL6 PCLXL 5M em...

Page 44: ...ormation Assurance Disclosure Paper 44 Ver 1 00 May 2010 Page 44 of 44 6 4 Appendix E References Kerberos FAQ http www nrl navy mil CCS people kenh kerberos faq html IP port numbers http www iana org...

Reviews:

No comments

Related manuals for WorkCentre 6400

Xerox 7142 Service Manual preview
7142
Brand: Xerox Pages: 341
NEC 870 - SuperScript B/W Laser Printer Network Quickstart preview
870 - SuperScript B/W Laser Printer
Brand: NEC Pages: 8
Xante Illumina Hardware Installation Manual preview
Illumina
Brand: Xante Pages: 21
Sagem TX 20 Field Maintenance Manual preview
TX 20
Brand: Sagem Pages: 86
Xerox DocuColor 1632 Printing User Manual preview
DocuColor 1632
Brand: Xerox Pages: 130
Xerox Phaser 6500 Service Manual preview
Phaser 6500
Brand: Xerox Pages: 793
Oki C542 Advanced Manual preview
C542
Brand: Oki Pages: 255
Oce im3530 Operator'S Manual preview
im3530
Brand: Oce Pages: 186
Konica Minolta 4556-9598-01A User Manual preview
4556-9598-01A
Brand: Konica Minolta Pages: 84
Lexmark 5470 - X Color Inkjet User Manual preview
5470 - X Color Inkjet
Brand: Lexmark Pages: 202
Oce cm5520 User Manual preview
cm5520
Brand: Oce Pages: 366
SPRT SP-POS5810 User Manual preview
SP-POS5810
Brand: SPRT Pages: 12
Kyocera FS-6025MFP User Manual preview
FS-6025MFP
Brand: Kyocera Pages: 76
TEC B-570 SERIES Maintenance Manual preview
B-570 SERIES
Brand: TEC Pages: 92
Xerox WORKCENTRE 7428 System Administrator Manual preview
WORKCENTRE 7428
Brand: Xerox Pages: 208
Riso MZ790U Instruction Manual preview
MZ790U
Brand: Riso Pages: 266
Canon imagePRESS C1 Service Manual preview
imagePRESS C1
Brand: Canon Pages: 1265
WOOSIM PORTI-S30 Operator'S Manual preview
PORTI-S30
Brand: WOOSIM Pages: 27

Brands by name

Popular brands

Load more brands