HP MFP Digital Sending Software (DSS) 5.0 - Security Features

Introduction

The purpose of this whitepaper is to give the reader a comprehensive view of data security mechanisms

available with DSS 5.01.xx. Some of the security information is already available in the DSS System

Administrator’s Guide (SAG). This paper will refer to the SAG for topics that are currently documented

there.

Many new features are not yet documented in the SAG. Those features are detailed in this paper. The

intent is to move this information to the DSS SAG in the near future.

User Accounts and Passwords

Security to Run the Configuration Utility (CU) and Connect to the DSS Service

The DSS administrator can configure the type of security to use for opening the Configuration Utility and

connecting to the DSS service. There are two mechanisms that can be used – Windows users and groups

and using a DSS password. A screenshot of the UI in DSS is shown below.

Windows Account Authorization

Permission to start the Configuration Utility and connect to the DSS service can be controlled using

Windows users and groups. This is the default security mechanism. Windows’ account authorization

controls access to the DSS service via the Configuration Utility, but does not provide access control to

the DSS service via any other application than the Configuration Utility. For a full description of this

capability see the System Administrator’s guide, in the section “Security to start the Configuration

Utility”.

DSS Account Authorization

DSS allows the administrator to set a password for access to the DSS system service. When set, this

password will be required by the DSS Configuration Utility as well as any other application that attempts