Xerox Multi-Function Device Security Target
37
Copyright
2013 Xerox Corporation. All rights reserved.
6.2. TOE Security Policies
This chapter contains the definition of security policies which must be
enforced by the TSF.
6.2.1. IP Filter SFP
The security function “User Data Protection – IP Filtering”
(TSF_FDP_FILTER) requires that network traffic to and from the TOE will be
filtered in accordance with the rules defined by the system administrator at
the Web User Interface configuration editor for IP Filtering. This policy will be
enforced on:
Subjects. External entities that send network traffic to the TOE.
Information. All IP-based traffic to and from that destination.
Operations. Pass network traffic.
Note: The TOE cannot enforce the IP Filtering SFP when it is configured for
IPv6.
6.2.2. User Access Control SFP
The Security Function Policy (SFP) described in Table 21 and Table 22 below
is referenced by the FDP class SFRs.
Table 21: User Access Control SFP
U.NORMAL
U.ADMINISTRATOR
(Accounting
Administrator)
Denied, except for
his/her own
documents
U.ADMINISTRATOR
(System Administrator)
Allowed, except for
documents protected
by an optional
passcode
U.NORMAL,
U.ADMINISTRATOR
Denied, except when
the associated
D.FUNC is deleted.
U.NORMAL,
U.ADMINISTRATOR
Denied, except for
his/her own
documents
U.NORMAL,
U.ADMINISTRATOR
Denied, except for
his/her own
documents
To Next Page
Loading...
