Xerox WorkCentre 5135/5150 Multifunction ... - Common Criteria
Xerox WorkCentre 5135/5150 Multifunction ... - Common Criteria
Xerox WorkCentre 5135/5150 Multifunction ... - Common Criteria
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Xerox</strong> <strong>WorkCentre</strong> <strong>5135</strong>/<strong>5150</strong><br />
<strong>Multifunction</strong> Systems Security Target<br />
<br />
<br />
<br />
Only the copy controller (SIP) (see section 1.3.2.8) may copy image information<br />
and job data (e.g. the telephone number of the other fax machine) from and to a<br />
shared memory area on the FAX board.<br />
RECEIVING FAX: The FAX board must have terminated the PSTN connection<br />
before informing the copy controller about the fax currently received.<br />
SENDING FAX: The copy controller must have finished the copy operation of the<br />
fax image to the shared memory area of the FAX board before informing the FAX<br />
board to send the fax.<br />
If the FAX board is not installed, an information flow is not possible and needs not to be<br />
restricted. However, it is not required that the copy controller works in this situation in a<br />
different way.<br />
5.2.3. SSLSec SFP (TSP_SSL)<br />
The security function “User Data Protection -- SSL” (TSF_FDP_SSL) requires that SSL<br />
is enabled so that Web-based management data network traffic to and from the TOE<br />
will be encrypted using SSL This policy will be enforced on:<br />
<br />
<br />
<br />
SUBJECTS: Web clients.<br />
INFORMATION: All web-based management traffic to and from that destination.<br />
OPERATIONS: HTTP commands.<br />
5.2.4. IP Filter SFP (TSP_FILTER)<br />
The security function “User Data Protection -- IP Filtering” (TSF_FDP_FILTER) requires<br />
that network traffic to and from the TOE will be filtered in accordance with the rules<br />
defined by the system administrator at the Web User Interface configuration editor for IP<br />
Filtering. This policy will be enforced on:<br />
<br />
<br />
<br />
SUBJECTS: External entities that send network traffic to the TOE.<br />
INFORMATION: All IP-based traffic to and from that destination.<br />
OPERATIONS: Pass network traffic.<br />
5.2.5. PrivUserAccess SFP (TSP_FMT)<br />
The security function “Security Management” (TSF_FMT) restricts management of TOE<br />
security functions to the authorized system administrator.<br />
5.3. Security Functional Requirements<br />
37<br />
Copyright 2009 <strong>Xerox</strong> Corporation, All rights reserved