manualshive.com logo in svg

Xerox WorkCentre 6400, Information Manual

The Xerox WorkCentre 6400 is a high-performance multifunction printer designed for professional environments. With its impressive specifications, this all-in-one device offers exceptional printing, scanning, and copying capabilities. You can easily access the comprehensive user manual, free for download from our website, to make the most of its features.

Share
Download
background image

XEROX WorkCentre 6400 Information Assurance Disclosure Paper 

 4 

Ver. 1.00, May 2010 

        

Page 

 4 of 44 

3.2.

 

Login and Authentication Methods ........................................................................................................................25

 

3.2.1.

 

System Administrator Login [All product configurations] ...........................................................................................25

 

3.2.2.

 

User authentication.....................................................................................................................................................................25

 

3.3.

 

System Accounts ...........................................................................................................................................................27

 

3.3.1.

 

Printing [Multifunction models only]....................................................................................................................................27

 

3.3.2.

 

Network Scanning [Multifunction models only] ..............................................................................................................27

 

3.4.

 

Diagnostics......................................................................................................................................................................27

 

3.4.1.

 

Service [All product configurations]......................................................................................................................................27

 

3.4.2.

 

tty Mode...........................................................................................................................................................................................27

 

3.4.3.

 

Summary..........................................................................................................................................................................................28

 

4.

 

SECURITY ASPECTS OF SELECTED FEATURES ...................................................................... 29

 

4.1.

 

Audit Log..........................................................................................................................................................................29

 

4.2.

 

Xerox Standard Accounting.......................................................................................................................................33

 

4.3.

 

Automatic Meter Reads ..............................................................................................................................................33

 

4.4.

 

Encrypted Partitions.....................................................................................................................................................33

 

4.5.

 

Image Overwrite............................................................................................................................................................34

 

4.5.1.

 

Algorithm .........................................................................................................................................................................................34

 

4.5.2.

 

User Behavior .................................................................................................................................................................................34

 

4.5.3.

 

Overwrite Timing ..........................................................................................................................................................................35

 

5.

 

RESPONSES TO KNOWN VULNERABILITIES ......................................................................... 36

 

5.1.

 

Security @ Xerox (www.xerox.com/security)........................................................................................................36

 

6.

 

APPENDICES....................................................................................................................................... 37

 

6.1.

 

Appendix A – Abbreviations ......................................................................................................................................37

 

6.2.

 

Appendix B – Supported MIB Objects ....................................................................................................................39

 

6.3.

 

Appendix C –Standards...............................................................................................................................................42

 

6.4.

 

Appendix E – References.............................................................................................................................................44

 

 

Summary of Contents for WorkCentre 6400

Page 1: ...Xerox WorkCentre 6400 Multifunction System Information Assurance Disclosure Paper Version 1 0 Prepared by Larry Kovnat Xerox Corporation 1350 Jefferson Road Rochester New York 14623...

Page 2: ...00 May 2010 Page 2 of 44 2010 Xerox Corporation All rights reserved Xerox and the sphere of connectivity design are trademarks of Xerox Corporation in the United States and or other counties Other com...

Page 3: ...Connections 10 2 2 4 USB Host Port 11 2 2 Fax Module 11 2 3 1 Purpose 11 2 3 2 Hardware 11 2 4 Scanner 12 2 4 1 Purpose 12 2 4 2 Hardware 12 2 5 Graphical User Interface GUI 12 2 5 1 Purpose 12 2 5 2...

Page 4: ...ics 27 3 4 1 Service All product configurations 27 3 4 2 tty Mode 27 3 4 3 Summary 28 4 SECURITY ASPECTS OF SELECTED FEATURES 29 4 1 Audit Log 29 4 2 Xerox Standard Accounting 33 4 3 Automatic Meter R...

Page 5: ...functions and features of the WorkCentre products relative to Information Assurance IA This document does NOT provide tutorial level information about security connectivity PDLs or WorkCentre product...

Page 6: ...er path controller and user interface Not shown in the picture below are optional additional paper trays and an optional finisher Figure 2 1 WorkCentre Multifunction System 2 1 Security relevant Subsy...

Page 7: ...Foreign Device Interface Scanner Interface Physical external Interfaces Power Button Button and TOE internal wiring proprietary Physical external Interface Figure 2 2 System functional block diagram 2...

Page 8: ...itmaps are then read from DRAM and sent to the Image Output Terminal IOT for marking on hardcopy output For long documents the production of hardcopy may begin before the entire original is scanned ac...

Page 9: ...agnostic for all areas and during normal operation spooling areas with Image Overwrite Network Disk Yes but not normal use 80GB min N with normal operation NC and UI Application SW NC and XUI paramete...

Page 10: ...age Scanner Proprietary connection between the scanner and controller USB Host Port Software upgrade module network logging and save restore machine settings during service Ethernet Network connectivi...

Page 11: ...ge data from the WorkCentre 6400 to a USB device 2 2 Fax Module 2 3 1 Purpose The embedded FAX service uses the installed embedded fax card to send and receive images over the telephone interface 2 3...

Page 12: ...of captured image Power Off System Additional Information All memory listed above contains code for execution and configuration information No user or job data is permanently stored in this location...

Page 13: ...execution and configuration information No user or job data is stored in this location 2 6 Marking Engine also known as the Image Output Terminal or IOT 2 6 1 Purpose The Marking Engine performs copy...

Page 14: ...ocation 2 7 System Software Structure 2 7 1 Open source components Open source components in the connectivity layer implement high level protocol services The security relevant connectivity layer comp...

Page 15: ...re Paper 15 Ver 1 00 May 2010 Page 15 of 44 Figure 2 4 Controller Operating System layer components 2 7 3 Network Protocols Figure 2 5 is an interface diagram depicting the protocol stacks supported b...

Page 16: ...XEROX WorkCentre 6400 Information Assurance Disclosure Paper 16 Ver 1 00 May 2010 Page 16 of 44 Figure 2 5 IPv4 Network Protocol Stack...

Page 17: ...and the device A shared secret is used to encrypt the traffic flowing through this tunnel SSL must be enabled in order to set up the shared secret When an IPSec tunnel is established between a client...

Page 18: ...L 515 TCP LPR 631 TCP IPP 1900 UDP SSDP 3003 TCP http SNMP reply 9100 TCP raw IP Please note that there is no ftp port in this list ftp is only used to export scanned images and to retrieve Scan Job T...

Page 19: ...when this is disabled IPP Port 631 is also disabled HTTP may be secured by enabling Secure Sockets Layer 2 8 2 4 1 Proxy Server The device can be configured to communicate through a proxy server Featu...

Page 20: ...ryption protocol in its network authentication feature is not subject to encryption restrictions based on Export Administration Regulations of the United States Bureau of Export Administration BXA Thi...

Page 21: ...self signed certificate In the first instance the device creates a Certificate Signing Request CSR that can be downloaded and forwarded to the well known CA for signing The signed device certificate i...

Page 22: ...disabled in the Properties tab of the device s web pages 2 8 3 IP Filtering The devices contain a static host based firewall that provides the ability to prevent unauthorized network access based on...

Page 23: ...Jobs Email Internet Fax Workflow Scanning Server Also users can be authorized to access one or any combination of the following machine pathways Services Job Status or Machine Status Assignment of use...

Page 24: ...XEROX WorkCentre 6400 Information Assurance Disclosure Paper 24 Ver 1 00 May 2010 Page 24 of 44 Figure 3 1 Authentication and Authorization schematic...

Page 25: ...ail internet fax and Scan to Fax Server The authentication steps are 1 A User enters a user name and password at the device in the Local UI The device sends an authentication request to the Kerberos S...

Page 26: ...e device sends the Domain Controller hostname to the DNS Server 2 The DNS Server returns the IP Address of the Domain Controller 3 The device sends an authentication request directly to the Domain Con...

Page 27: ...are never transmitted over the network Scan to Fax Server The device logs in to the Fax Server as set up by the SA in User Tools on the Local UI or from the Properties tab on the WebUI Please note tha...

Page 28: ...May 2010 Page 28 of 44 3 4 3 Summary As stated above accessibility of customer documents files or network resources is impossible via the PSW In the extremely unlikely event that someone did spoof th...

Page 29: ...file format The log does not clear when it is disabled and will persist through power cycles The following table lists the events that are recorded in the log Event ID Event description Entry Data 1 S...

Page 30: ...Accounting User ID Accounting Account ID Total fax recipient phone numbers fax recipient phone numbers 13 Efax Job name User Name Completion Status IIO status Accounting User ID Accounting Account ID...

Page 31: ...serial number StartupMode enabled disabled System Params Password changed or failed Start Job Password changed or failed Completion Status Success Failed 29 Network User Login UsereName Device name D...

Page 32: ...led 43 Device clock UserName Device name Device serial number Completion Status time changed date changed 44 SW upgrade Device name Device serial number Completion Status Success Failed 45 Cloning Dev...

Page 33: ...job is deleted and an error sheet is printed in its place On demand the SA will be able to download a report that shows activity for all of the users The SA can add modify or remove users and their a...

Page 34: ...the entire spooling area of the disks ODIO hex value 0xCA ASCII compliment of 5 Step 3 Pattern 3 is written to the sectors containing temporary files IIO or to the entire spooling area of the disks O...

Page 35: ...4 4 5 3 Overwrite Timing The ODIO overwrite time is dependent on the type of hard disk in the product The overwrite and reset average time is 10 minutes but longer times are possible IIO is performed...

Page 36: ...Ver 1 00 May 2010 Page 36 of 44 5 Responses to Known Vulnerabilities 5 1 Security Xerox www xerox com security Xerox maintains an evergreen public web page that contains the latest security informati...

Page 37: ...otocol IBM International Business Machines ICMP Internet Control Message Protocol IETF Internet Engineering Task Force IFAX Internet Fax IIO Immediate Image Overwrite IIT Image Input Terminal the scan...

Page 38: ...vice Location Protocol SNMP Simple Network Management Protocol SRAM Static Random Access Memory SSDP Simple Service Discovery Protocol SSL Secure Sockets Layer TCP Transmission Control Protocol TIFF T...

Page 39: ...n only support 0 or 3 for more than 1 sheet for prtInputCurrentLevel will be considered a caveat denoted as C 6 The Printer MIB requires a few groups from RFC 1213 and RFC 1514 to be supported Therefo...

Page 40: ...local UI messaging captured within table C local UI button selection messages are not captured within table Console Display Light group 5 objects supported w caveats only the Power Saver LED is suppor...

Page 41: ...rations from next generation Host Resources MIB supported optional not support because Host Resources MIBv2 has NOT entered the standards track New type 2 enumerations from next generation Printer MIB...

Page 42: ...ssion of IP datagrams over IEEE802 networks 1042 ICMP ICMP Echo ICMP Time ICMP Echo Reply and ICMP Destination Unreachable message 792 Reverse Address Resolution Protocol RARP 903 Bootstrap Protocol B...

Page 43: ...2010 Page 43 of 44 Function RFC Standard Appletalk Inside Appletalk Second Edition Printing Description Languages Postscript Language Reference Third Edition PCL6 PCL5E 5SI emulation PCL6 PCLXL 5M em...

Page 44: ...ormation Assurance Disclosure Paper 44 Ver 1 00 May 2010 Page 44 of 44 6 4 Appendix E References Kerberos FAQ http www nrl navy mil CCS people kenh kerberos faq html IP port numbers http www iana org...

Reviews:

No comments

Related manuals for WorkCentre 6400

Canon IR5000 - iR B/W Laser Driver Manual preview
IR5000 - iR B/W Laser
Brand: Canon Pages: 86
Oki 10i Read Me First preview
10i
Brand: Oki Pages: 16
DataCard SD160 User Manual preview
SD160
Brand: DataCard Pages: 78
DataCard SP75 Plus Quick Install Manual preview
SP75 Plus
Brand: DataCard Pages: 8
DataCard CR805 User Manual preview
CR805
Brand: DataCard Pages: 136
DataCard CE840 Quick Install Manual preview
CE840
Brand: DataCard Pages: 22
DataCard CD820 Quick Install Manual preview
CD820
Brand: DataCard Pages: 16
DataCard SD260 Installation And User Manual preview
SD260
Brand: DataCard Pages: 216
DataCard CD800 Product Manual preview
CD800
Brand: DataCard Pages: 19
DataCard SP55 Plus Printer Manual preview
SP55 Plus
Brand: DataCard Pages: 30
DataCard RP90 Brochure & Specs preview
RP90
Brand: DataCard Pages: 2
DataCard SP25 Plus Brochure & Specs preview
SP25 Plus
Brand: DataCard Pages: 4
DataCard SP25 Plus Printer Manual preview
SP25 Plus
Brand: DataCard Pages: 134
DataCard CE870 User Reference Manual preview
CE870
Brand: DataCard Pages: 13
DataCard SD Series Quick Install Manual preview
SD Series
Brand: DataCard Pages: 10
DataCard SD160 Quick Install Manual preview
SD160
Brand: DataCard Pages: 8
Xante Illumina Hardware Installation Manual preview
Illumina
Brand: Xante Pages: 21
Oki MB451wMFP Wireless Setup Manual preview
MB451wMFP
Brand: Oki Pages: 4

Brands by name

Popular brands

Load more brands