Specifications
Di3510 Series/Di3510f Series Multi Function Peripheral Security Kit, Security Target
Copyright
©
2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved
24/78
4.2.2. Non-IT environment security objective
OE-N.ACCESS-CHECK (operation of the access check function)
The administrator shall always use the TOE with the access check function turned on.
OE-N.ADMIN (reliable administrator)
The person in charge in the organization who uses the MFP shall assign a person who can
faithfully execute the given role during the operation of the MFP with the TOE as an
administrator.
OE-N.AUTH (proper management and usage of password)
• The person in charge in the organization who uses the MFP shall have the administrator
execute the following operations.
- Administrator shall not use an administrator mode password that can be easily guessed.
- Administrator shall keep the administrator mode password confidential.
- Administrator shall appropriately change the administrator mode password.
- Administrator shall always carry out the modification operation when the administrator
mode password is initialized.
• The administrator shall have general users execute the following operations.
- General users shall keep the secure print password and user box password confidential.
- General users shall not use a secure print password and user box password that can be easily
guessed.
- General users shall appropriately change the user box password.
• The person in charge in the organization who manages the maintenance of the MFP shall
have the service engineer execute the following operations.
- Service engineer shall not use a service code that can be easily guessed.
- Service engineer shall keep the service code confidential.
- Service engineer shall appropriately change the service code.
OE-N.MAINTENANCE (maintenance and management of the MFP)
• The administrator shall not permit a person other than the service engineer to carry out the
maintenance operation.
• The administrator shall prevent unauthorized removal of the HDD by having the operation
management, in which the service engineer carries out the maintenance operation, be carried
out in the presence of the administrator.
OE-N.NETWORK (network environment in which the MFP is connected)
• The administrator shall install devices that realize a network environment for the office
LAN where the MFP with the TOE is installed that cannot be intercepted, and execute an
appropriate setting that does not allow interception.
• The administrator shall install devices that block access to the MFP with the TOE from an
external network, and execute an appropriate setting to block access.
OE-N.PHYSICAL (environment for the MFP installation)
The administrator shall install the MFP with the TOE in a physically protected office, and
execute operation management where only the general users, administrator, and service
engineer can enter the office.