Specifications
Samsung MFP Security Kit Type_B V1.5 Security Target
52
Copyright
2010 Samsung Electronics Co., Ltd., All rights reserved
any subject in the TOE are covered by an
information flow control SFP.
5.1.3.4 FDP_IFF.1(2) Simple security attributes (2)
Hierarchical to: No other components
Dependencies: FDP_IFC.1 Subset information flow control
FMT_MSA.3 Static attribute initialization
FDP_IFF.1.1 The TSF shall enforce the [network access control
policy] based on the following types of subject
and information security attributes: [
• The Subject List
- Network user
• Information List
- All information in the MFP to flow to and
from any subject
• Security Properties
- Subject List: No security properties
- Information List: protocol or port
information ]
FDP_IFF.1.2 The TSF shall permit an information flow between
a controlled subject and controlled information via
a controlled operation if the following rules hold: [
• When security properties of information are
included in the protocol list that the authorized
administrator set, information flow from
outside to the MFP is permitted.
• When security properties of information are the
same port information that the authorized
administrator set, information flow from
outside to the MFP is permitted.
]
FDP_IFF.1.3 The TSF shall enforce [none].
FDP_IFF.1.4 The TSF shall explicitly authorize an information
flow based on the following rules: [no additional
information flow rules].
FDP_IFF.1.5 The TSF shall explicitly deny an information flow
based on the following rules: [no denial of
information flow rules].