HP Designjet Printers - Security Features
HP Designjet Printer Series Security Settings
24
3.10 CA/JD Certificates
You can request, install, and manage digital certificates on the HP JetDirect print server. Certificates are used to
identify the JetDirect print server both as a valid Web server for network clients, and as a valid client requesting access
on a secure network. By default, the JetDirect print server contains a self-signed, pre-installed certificate.
3.11 Hide IP from front panel
Some printers include an option in the Service Menu, accessible with the help of an HP Support agent only, that
enables you to hide all IP information from the printer’s front panel.
3.12 Encrypt web communications
You can securely manage your network-connected printers using a Web browser and the HTTPS protocol. To
authenticate the HP JetDirect Web Server when HTTPS is used, you may configure a certificate, or you may use the
pre-installed, self-signed X.509 Certificate. The encryption strength specifies what ciphers the web server will use for
secure communications. Supported cipher suites are DES, RC4, and 3DES.
When you enable encryption, the web server encrypts all web communication, forcing all connections to use HTTPS.
You can also configure encryption options to allow both HTTP (unencrypted) and HTTPS connections. In secure
environments, you should choose to encrypt all web communications. Otherwise, sensitive management data
(Administrator Password, SNMP Community Names, and secret keys) may be compromised.
OpenSSL HeartBleed Vulnerability
On April 8, 2014 HP Networking support was notified of the vulnerability known as Heartbleed in the open-source and
widely-used OpenSSL toolkit. The vulnerability allows unauthenticated access to portions of computer system
memory.
HP Designjet products are not vulnerable due to either using a version of OpenSSL that is not vulnerable or are not
using protocol objects affected.