Ricoh MP 3350B Instrucciones de operaciones descargar pdf (Pagina 69)

Page 69 of 83

7.1.2 SF.I&A User Identification and Authentication Function

The TOE identifies and authenticates users prior to the use of the TOE security functions to allow the

authorised users to operate the TOE according to their roles and authorisation.

The following are the explanations of each functional item in "SF.I&A User Identification

and Authentication Function" and their corresponding security functional requirements.

7.1.2.1 User Identification and Authentication

The TOE displays a login window to users who attempt to use the TOE security functions from the

Operation Panel or Web Service Function, requires them to enter their user IDs and passwords, and then

identifies and authenticates the users with the entered user IDs and passwords.

In addition, when receiving requests for printing or fax transmission, the TOE identifies and authenticates the

users with the user IDs and passwords that are sent from the client PC.

The TOE binds the successfully authenticated users and their processes (General User process, Administrator

process, or Supervisor process) according to their user roles (General Users, Administrators, or a Supervisor),

associates each process with the security attributes of that role, and maintains those bindings and associations.

When the user is a General User, the TOE binds the General User with General User process, associates

General User process with General User ID and Document Data Default ACL, and maintains those bindings

and associations. When the user is an Administrator, the TOE binds the Administrator with Administrator

process, associates Administrator process with Administrator ID and Administrator Roles, and maintains

those bindings and associations. When the user is a Supervisor, the TOE binds the Supervisor with

Supervisor process, associates Supervisor process with Supervisor ID, and maintains those bindings and

associations.

The authentication methods vary by the user role. Table 27 shows the authentication methods for each user

role.

Table 27: User Roles and Authentication Methods

User roles Authentication methods

General Users Check if the user IDs and passwords entered into the TOE by users match the

General User IDs and their passwords registered for Address Book.

Administrators Check if the user IDs and passwords entered into the TOE by users match the

Administrator IDs and their passwords registered for the TOE.

Supervisor Check if the user IDs and passwords entered into the TOE by users match the

Supervisor ID and password registered for the TOE.

From the above, FIA_ATD.1 (User attribute definition), FIA_UAU.2 (User authentication before any action),

FIA_UID.2 (User identification before any action), FIA_USB.1 (User-subject binding), FMT_SMF.1

(Specification of Management Functions) and FMT_SMR.1 (Security Roles) are accomplished.

7.1.2.2 Action in case of Identification and Authentication Failure

The TOE counts the number of times of each user ID's Identification and Authentication failure, described in

"7.1.2.1 User Identification and Authentication". When a user ID's consecutive numbers of times of failure

1 2 ... 64 65 66 67 68 69 70 71 72 73 74 ... 82 83

Sin comentarios

Ricoh MP 3350B Instrucciones de operaciones Pagina 69