HP Inc.
HP LaserJet Enterprise MFP M527 Series,
Color LaserJet Enterprise MFP M577 Series, and
PageWide Enterprise Color MFP 586 Series
Firmware with Jetdirect Inside Security Target
Version: 2.0 Copyright © 2008-2016 by atsec information security corporation and HP Inc. Page 29 of 98
Last update: 2016-06-07 or its wholly owned subsidiaries
2 CC Conformance Claim
This Security Target is CC Part 2 extended and CC Part 3 conformant, with a claimed Evaluation
Assurance Level of EAL2, augmented by ALC_FLR.2.
This Security Target claims conformance to the following Protection Profiles and PP packages, if any:
[PP2600.2]: IEEE Std 2600.2-2009; "2600.2-PP, Protection Profile for Hardcopy Devices,
Operational Environment B" (with NIAP CCEVS Policy Letter #20). Version 1.0 as of December
2009; demonstrable conformance.
[PP2600.2-CPY]: SFR Package for Hardcopy Device Copy Functions. Version 1.0 as of
December 2009; demonstrable conformance.
[PP2600.2-DSR]: SFR Package for Hardcopy Device Document Storage and Retrieval (DSR)
Functions. Version 1.0 as of December 2009; demonstrable conformance.
[PP2600.2-FAX]: SFR Package for Hardcopy Device Fax Functions. Version 1.0 as of December
2009; demonstrable conformance.
[PP2600.2-PRT]: SFR Package for Hardcopy Device Print Functions. Version 1.0 as of
December 2009; demonstrable conformance.
[PP2600.2-SCN]: SFR Package for Hardcopy Device Scan Functions. Version 1.0 as of
December 2009; demonstrable conformance.
[PP2600.2-SMI]: SFR Package for Hardcopy Device Shared-medium Interface Functions.
Version 1.0 as of December 2009; demonstrable conformance.
Common Criteria [CC] version 3.1 revision 4 is the basis for this conformance claim.
2.1 Protection Profile tailoring and additions
2.1.1 IEEE Std 2600.2-2009; "2600.2-PP, Protection Profile for Hardcopy
Devices, Operational Environment B" (with NIAP CCEVS Policy Letter
#20) ([PP2600.2])
In this Security Target, [PP2600.2] has been modified to conform with the NIAP CCEVS Policy Letter #20
([CCEVS-PL20]).
Although the HCDs in this Security Target contain a nonvolatile mass storage device (i.e., a storage
drive), this device is considered an internal, built-in component of the HCDs and, therefore, constitutes a
non-removable nonvolatile storage device from the perspective of [PP2600.2] and [CCEVS-PL20].
Because no removable nonvolatile storage devices exist in the HCDs, this Security Target does not claim
conformance to "2600.2-NVS SFR Package for Hardcopy Device Nonvolatile Storage Functions,
Operational Environment B" contained in [PP2600.2].
The following tables provide the mappings of and rationale for how the SFRs in this Security Target map
to the SFRs in the protection profile [PP2600.2]. The term "n/a" means "not applicable". The term
"common" is used to refer to that portion of [PP2600.2] to which all TOEs must conform (i.e., the portions
not labeled as packages).
Hierarchical
substitution
The ST's FAU_GEN.1 combines the
contents of FAU_GEN.1 from the
To Next Page
Loading...