Technical information
Network Security White Paper ver. G.1.2
Page 27 of 72
1-17 WS-Device
1-17-1 Function Overview
WS-Device (‘Web Service’ Device) is a Windows Vista standard. This service is compliant with ‘Device
Profile for Web Services (February 2006)’.
The following functions are provided by the WS-Device service.
• Advertising the existence of the printing service. (WS-Discovery)
• Printing jobs to a WS-Device client. (WS-Printer)
• Providing the printer status to other WS-Device clients. (WS-Eventing)
• Providing details about the device and available services. (WS-Transfer /
WS-MetadataExchange)
This service uses the following TCP/UDP ports:
TCP/UDP 3702: Used for the device advertisement (WS-Discovery)
TCP 53000: Used for WS-Device (WS-Transfer / WS-MetadataExchange)
TCP 53001: Used for WS-Printer (WS-Printer / WS-Eventing)
If a strict security policy is to be maintained, the WS-Device service can be disabled and the port for this
service can be completely closed using Web Image Monitor or the mshell.
1-17-2 Potential Threats and Recommended Precautions
Theft of Print Data
Interception of network packets: The WS-device encodes data but does not encrypt it. Print data is sent
as clear text, if intercepted by a third party it is easily read.
Leakage of Device Information
The products use WS-Device to advertise services and allow the user to know the device status and to
print documents. If you do not want to unauthorized parties to be aware of this information, the
WS-Device service should be disabled using Web Image Monitor or the mshell.
1-17-3 Recommended Precaution
If a strict security policy is to be maintained, the WS-Device service can be disabled and the ports for this
service can be completely closed using Web Image Monitor or the mshell.