Fuji Xerox C2265/C2263 Security Target
- 59 - Copyright
2016 by Fuji Xerox Co., Ltd
security attributes, or named groups of SFP-relevant security
attributes].
[assignment: access control SFP]
- TOE Function Access Control SFP in Table 18
[assignment: list of subjects and objects controlled under the
indicated SFP, and for each, the SFP-relevant security attributes, or
named groups of SFP-relevant security attributes].
- users and list of TOE functions and the security attribute(s) used to
determine the TOE Function Access Control SFP in Table 19
FDP_ACF.1.2 (b) The TSF shall enforce the following rules to determine if an operation
among controlled subjects and controlled objects is allowed:
[assignment: rules governing access among controlled subjects and
controlled objects using controlled operations on controlled objects].
[assignment: rules governing access among controlled subjects and
controlled objects using controlled operations on controlled objects].
- [selection: the user is explicitly authorized by U.ADMINISTRATOR to
use a function, a user that is authorized to use the TOE is
automatically authorized to use the functions [assignment: list of
functions], [assignment: other conditions]]
- [assignment: other conditions]
- rules specified in the TOE Function Access Control SFP in Table 18
FDP_ACF.1.3(b) The TSF shall explicitly authorize access of subjects to objects based
on the following additional rules: [assignment: rules, based on
security attributes, that explicitly authorize access of subjects to
objects].
[assignment: rules, based on security attributes, that explicitly
authorise access of subjects to objects].
- the user acts in the role U.ADMINISTRATOR,
[assignment: other rules, based on security attributes, that explicitly
authorise access of subjects to objects].
[assignment: other rules, based on security attributes, that explicitly
authorise access of subjects to objects]
-none
FDP_ACF.1.4 (b) The TSF shall explicitly deny access of subjects to objects based on
the following additional rules: [assignment: rules, based on security
attributes, that explicitly deny access of subjects to objects].
To Next Page
Loading...
