Page 29 of 82
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
4 Security Objectives
This section describes the security objectives of the TOE and its security objectives of the operational
environment and their rationale.
Security Objectives for TOE
The following define the security objectives of the TOE.
The TOE shall record Security Function-related events in an audit log, and provides
the machine administrator with a function for reading the audit logs, allowing the
machine administrator to detect whether or not a security intrusion has occurred.
(Identification and authentication)
The TOE shall perform identification and authentication of users prior to their use of
the TOE Security Functions, and allows successfully authenticated users to use the
functions for which they have permission.
(Access control to protected assets)
The TOE shall ensure general users have access to document data according to their
permissions to process document data. The TOE shall also allow the file administrator
to delete document data stored in the D-BOX.
(Security management)
The TOE shall
only allow specified users to manage its Security Functions, TSF data,
and security attributes. Such users are required to maintain the TOE security.
(Prevention of disclosure of data stored in memory)
The TOE shall convert the format of the document data stored on the HDD into a
format that is difficult to decode.
(Protection of network communication data)
The TOE shall
protect document data and print data travelling over the communication
network from interception, and detect any tampering.
(Protection of integrity of MFP Control Software)
The TOE shall provide TOE users with a function that verifies the integrity of the MFP
Control Software.