Manualshelf

Specifications

ManualsBrandsSamsung ManualsAll in One PrinterMFP SECURITY
31323334353637383940
Samsung MFP Security Kit Type_B V1.5 Security Target
40
Copyright
2010 Samsung Electronics Co., Ltd., All rights reserved
4 Security Objectives
The security objectives are categorized into two parts: the objectives for
the TOE and for the operational environment. The purpose of the former
is to meet the goal to resolve the definition of security problems/threats.
The latter is to meet the goal to support technical/procedural ways that
provide the functionality of security.
4.1 Security Objectives for the TOE
This section identifies and describes the security objectives of the TOE.
O. AUDITS
In order to trace an action of relevance to security, the TOE should
provide the audit logs to only the authorized system administrator. The
audit log should be protected from unauthorized change, elimination, and
failure of recording in accordance with HIPAA policy.
O. MANAGE
The TOE should provide efficient and effective management service to an
authorized system administrator.
O.NETWORK_ACCESS_CONTROL
The TOE should not allow access through unauthorized network protocol
services and ports to prevent outflow, removal or camouflaging/forgery of
user data and TSF data stored on the MFP through network access by
using protocol service and port numbers that are allowed explicitly.
O.CONTROL_DATA_ACCESS
The TOE should perform an authentication process to prevent
unauthorized removal or camouflage/forgery of a preserved file in hard
disk drive. To access preserved file, a client has to enter PIN that has
been configured in the file.
O.IDENTIFICATION_AND_AUTHENTICATION_ON_ADMINISTRATO
R
The TOE should provide identification and authentication processes for
system administrators to prevent access to the TOE by unauthorized
users. This only allows the access of security management functions to
authorized administrators.