Xerox D110/D125 Copier/Printer
セキュリティターゲット
- 25 – Copyright
2012 by Fuji Xerox Co., Ltd
Objective Definition
O.CIPHER The TOE must provide the function to encrypt the
document data and used document data to be stored
into the internal HDD so that they cannot be analyzed
even if retrieved at disposing MFD or its components by
the maintenance.
4.2. 運用環境のセキュリティ対策方針 (Security Objectives for the
Environment)
運用環境のセキュリティ対策方針を Table 11 に記述する。
Table 11 運用環境のセキュリティ対策方針
Objective Definition
OE.PHYSICAL.MANAGED The TOE shall be placed in a secure or monitored area that
provides protection from unmanaged physical access to the
TOE.
OE.USER.AUTHORIZED The TOE Owner shall grant permission to Users to be
authorized to use the TOE according to the security policies
and procedures of their organization.
OE.USER.TRAINED The TOE Owner shall ensure that Users are aware of the
security policies and procedures of their organization, and
have the training and competence to follow those policies
and procedures.
OE.ADMIN.TRAINED The TOE Owner shall ensure that TOE Administrators are
aware of the security policies and procedures of their
organization, have the training, competence, and time to
follow the manufacturer’s guidance and documentation, and
correctly configure and operate the TOE in accordance with
those policies and procedures.
OE.ADMIN.TRUSTED The TOE Owner shall establish trust that TOE Administrators
will not use their privileged access rights for malicious
purposes.
OE.AUDIT.REVIEWED The TOE Owner shall ensure that audit logs are reviewed at
appropriate intervals for security violations or unusual
patterns of activity.
OE.INTERFACE.MANAGED The IT environment shall provide protection from
unmanaged access to TOE interfaces.
To Next Page
Loading...
Need help?
General
