Ricoh MP 3350B Instrucciones de operaciones descargar pdf (Pagina 60)

Page 60 of 83

Document Data ACL of each Document Data, then FDP_ACC.1 and FDP_ACF.1 allow the General

User process to perform operations on Document Data. The permitted operations follow the operation

permission on Document Data set for each General User ID in the Document Data ACL.

O. MANAGE Security Management

The following are the rationale for the functional requirements that correspond to O.MANAGE in Table 23

being appropriate to satisfy O.MANAGE.

a) Management of security attributes.

To accomplish O.MANAGE, the management of the security attributes shall be specified to the specific

users. In addition, a specified value shall be set as the default value of the Document Data ACL, which

is one of the security attributes.

For this, FMT_MSA.1 allows:

- The User Administrator to query, newly create, and change General User IDs,

- General Users to query General User IDs,

- Administrators to query and newly create Administrator IDs,

- Administrators to query and change their own Administrator IDs,

- Supervisor to query Administrator IDs,

- Administrators to query, add, and delete the same Administrator Roles assigned to

themselves,

- Supervisor to query and change Supervisor ID,

- The File Administrator, Document File Owners and the General Users who have the full

control operation permission for the Document Data to query and modify its Document Data

ACL, and

- The User Administrator and the General Users who have the full control operation permission

for the Document Data to query and modify its Document Data Default ACL.

FMT_MSA.3 sets a specified value for the default value of the Document Data ACL for storing

the new Document Data.

b) Management and Protection of TSF data.

To accomplish O.MANAGE, the access to the TSF data shall be limited to the specific users.

For this, FMT_MTD.1 allows:

- The Machine Administrator to query and set the Number of Attempts before Lockout, Setting

for Lockout Release Timer, Lockout time, and Lockout Flag for Supervisor, to set the date

and time of the system clock, Service Mode Lock setting, to newly create and query HDD

cryptographic keys, and to query audit logs and delete the entire audit logs,

- Authorised TOE users to query the date and time of system clock and Service Mode Lock

setting,

- The User Administrator to query and set the Minimum Password Length, Password

Complexity Setting, and Lockout Flag for General Users,

- The User Administrator and the applicable General Users to set the authentication information

of the General Users, newly create, delete, and change S/MIME User Information,

1 2 ... 55 56 57 58 59 60 61 62 63 64 65 ... 82 83

Sin comentarios

Ricoh MP 3350B Instrucciones de operaciones Pagina 60