TASKalfa 3500i, TASKalfa 4500i, TASKalfa 5500i
Data Security Kit (E) Overseas Version Security Target
© 2011 KYOCERA MITA Corporation
12
Security Objectives
P.OVERWRITE
P.ENCRYPT
A.LOCATION
A.NETWORK
A.CE
O.OVERWRITE X
O.ENCRYPT X
OE.LOCATION X
OE.NETWORK X
OE.CE X
“Table 4.1 correspondences between organizational security policies and
assumptions, and security objectives” rationale is described below.
P.OVERWRITE
It is requested to be impossible to reuse the residue data of the HDD to prevent
unauthorized read as a requirement of the organization by security policy
P.OVERWRITE of the organization. As a countermeasure, by the security objectives
O.OVERWRITE, in the image data file that is stored in the HDD, can not be reused to
ensure that any previous information released from the resource allocation of the
area, the P.OVERWRITE can be realized.
P.ENCRYPT
It is requested that the temporary stored data is encrypted to prevent unauthorized
read as a requirement of the organization by security policy P.ENCRYPT of the
organization. As a countermeasure, by the security objectives O.ENCRYPT,
encrypting the image data stored in the HDD and in guaranteeing to unable to
decrypt the data besides with the same code key, the P.ENCRYPT can be realized.
A.LOCATION
The assumption of A.LOCATION requires that the TOE operates in the managed
environment to prevent the hardware of the MFP from the TOE security breach.
This is to protect the TOE from security breaches on the hardware of the MFP, to limit
the attack methods and the opportunity of attack. By the measures OE.LOCATION,
MFP is operated in the managed environment, and the limitation of the attack to
hardware that composes the MFP, the attack method and the opportunity of the
To Next Page
Loading...
