HP Inc.
HP LaserJet Enterprise MFP M527 Series,
Color LaserJet Enterprise MFP M577 Series, and
PageWide Enterprise Color MFP 586 Series
Firmware with Jetdirect Inside Security Target
Version: 2.0 Copyright © 2008-2016 by atsec information security corporation and HP Inc. Page 40 of 98
Last update: 2016-06-07 or its wholly owned subsidiaries
OE.AUDIT.REVIEWED
The TOE Owner shall ensure that audit logs are reviewed at appropriate intervals for security
violations or unusual patterns of activity.
OE.AUDIT_ACCESS.AUTHORIZED
If audit records generated by the TOE are exported from the TOE to another trusted IT product, the
TOE Owner shall ensure that those records can be accessed in order to detect potential security
violations, and only by authorized persons.
OE.AUDIT_STORAGE.PROTECTED
If audit records are exported from the TOE to another trusted IT product, the TOE Owner shall
ensure that those records are protected from unauthorized access, deletion and modifications.
OE.INTERFACE.MANAGED
The IT environment shall provide protection from unmanaged access to TOE external interfaces.
OE.PHYSICAL.MANAGED
The TOE shall be placed in a secure or monitored area that provides protection from unmanaged
physical access to the TOE.
OE.SERVICES.RELIABLE
When the TOE uses any of the network services SMB, FTP, DNS, Kerberos, LDAP, SMTP,
SharePoint, syslog, and/or WINS, these services shall provide reliable information and responses
to the TOE.
OE.USER.AUTHORIZED
The TOE Owner shall grant permission to Users to be authorized to use the TOE according to the
security policies and procedures of their organization.
OE.USER.PC.POLICY
The TOE Owner shall create a set of security policies to which user computers will conform.
OE.USER.TRAINED
The TOE Owner shall ensure that Users are aware of the security policies and procedures of their
organization, and have the training and competence to follow those policies and procedures.
OE.USERNAME.CHARACTER_SET
The Display Names of all Local Device Sign In method users and the user names of all LDAP and
Windows Sign In method users shall only contain ASCII printable characters except for the double
quote (22 hex) and single quote (27 hex) characters (i.e., allowed ASCII characters in hexadecimal:
20, 21, 23 - 26, 28 - 7E).
4.3 Security Objectives Rationale
4.3.1 Coverage
The following table provides a mapping of TOE objectives to threats and policies, showing that each
objective counters or enforces at least one threat or policy, respectively.
To Next Page
Loading...