Page 61 of 91
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
Dependencies: [FDP_ACC.1 Subset access control, or
FDP_IFC.1 Subset information flow control]
FMT_SMR.1 Security roles
FMT_SMF.1 Specification of Management Function
FMT_MSA.1.1(b)The TSF shall enforce the [assignment: TOE function access control SFP] to restrict the
ability to [selection: query, modify, delete, [assignment: newly create]] the security attributes
[assignment: security attributes in Table 26] to [assignment: the user roles with operation
permission in Table 26].
Table 26 : User Roles for Security Attributes (b)
Security Attributes Operations User Roles with operation permission
Query,
modify,
delete,
newly create
MFP administrator
Login user name of normal user
for Basic Authentication
Query Normal user who owns the applicable
login user name
Login user name of normal user
for External Authentication
Query,
modify,
delete,
newly create
MFP administrator
Query,
modify
MFP administrator
Available function list
Query
(however, query is not
allowed in case of
External Authentication)
Applicable normal user
Function type No operation permitted None
User role No operation permitted None
FMT_MSA.3(a) Static attribute initialisation
Hierarchical to: No other components.
Dependencies: FMT_MSA.1 Management of security attributes
FMT_SMR.1 Security roles
FMT_MSA.3.1(a) The TSF shall enforce the [assignment: document access control SFP] to provide [selection:
restrictive] default values for security attributes that are used to enforce the SFP.
FMT_MSA.3.2(a) The TSF shall allow the [assignment: authorised identified roles shown in Table 27] to
specify alternative initial values to override the default values when an object or information is
created.
To Next Page
Loading...
