Specifications
CRP-C0239-01
12
Table 1-1 (3) Specific data, mechanism and scope
Target data
Document Data that are output from Network Unit using the "Scanner
Function (Scan)" or "Scanner Function (Management)"
Protection mechanism and protected scope
When delivering to folders:
The Internal Networks between Network Unit and the "SMB Server or FTP
Server of the specified folders" is protected by IPSec mechanism.
When sending to an e-mail address:
The networks (including the Internal Networks) between Network Unit
and the "e-mail client of the destination address" are protected by S/MIME
mechanism.
When downloading:
The Internal Networks between Network Unit and client PC is protected by
SSL mechanism.
1.5.4.4 Countermeasure to T.FAX_LINE
The TOE does not have the active mechanism to counter T.FAX_LINE.
The TOE counters T.FAX_LINE by not performing any operations via a telephone line
except for sending and receiving faxes.
1.5.4.5 Realization of P.SOFTWARE
The TOE has the function that checks the executable code of MFP Control Software,
which is installed in FlashROM, is in the same condition as the ones that are provided
by RICOH in order to realize P.SOFTWARE.
This function is realized by checking the electronic signature added to the executable
code.
Along with this function and checking of the version for each element that the TOE
outputs, the "correct version for the software is provided by RICOH with the regular
method".
Although it is not possible to specifically assume the threats to the executable code of
MFP Control Software by the description in the ST, it is defined in Organizational
Security Policy in order to specify the consumers that it is possible to check the
integrity of MFP Control Software.
1.5.4.6 Support for Other Security Functions
The TOE has the Audit Function that is used to detect the security invasion, and this
function does not directly counter to the threats.
This function records the audit logs when the events that are used to detect the
security invasion occur.