Ricoh Aficio mp c3001 User manual

Aficio MP C3001/C3501 series

Security Target

Author : RICOH COMPANY, LTD.

Date : 2011-07-18

Version : 1.00

Portions of Aficio MP C3001/C3501 series Security

Target are reprinted with

written permission from IEEE, 445 Hoes Lane, Piscataway, New Jersey

08855, from IEEE 2600.1, Protection Profile for Hardcopy Devices,

This document is a trans

lation of the evaluated and certified security target

written in Japanese.

Page 1 of 93

Revision History

Version Date Author Detail

1.00 2011-07-18 RICOH COMPANY, LTD. Publication version.

Page 2 of 93

Table of Contents

1ST Introduction ...................................................................................................................7

1.1 ST Reference ................................................................................................................7

1.2 TOE Reference .............................................................................................................7

1.3 TOE Overview ..............................................................................................................8

1.3.1 TOE Type ..................................................................................................................... 8

1.3.2 TOE Usage................................................................................................................... 8

1.3.3 Major Security Features of TOE .............................................................................. 10

1.4 TOE Description......................................................................................................... 11

1.4.1 Physical Boundary of TOE ........................................................................................11

1.4.2 Guidance Documents ................................................................................................ 14

1.4.3 Definition of Users .................................................................................................... 18

1.4.3.1. Direct User ......................................................................................................... 19

1.4.3.2. Indirect User ...................................................................................................... 20

1.4.4 Logical Boundary of TOE ......................................................................................... 21

1.4.4.1. Basic Functions.................................................................................................. 21

1.4.4.2. Security Functions............................................................................................. 24

1.4.5 Protected Assets ........................................................................................................ 26

1.4.5.1. User Data ........................................................................................................... 26

1.4.5.2. TSF Data ............................................................................................................ 27

1.4.5.3. Functions ............................................................................................................ 27

1.5 Glossary......................................................................................................................27

1.5.1 Glossary for This ST ................................................................................................. 27

2Conformance Claim...........................................................................................................31

2.1 CC Conformance Claim ..............................................................................................31

2.2 PP Claims...................................................................................................................31

2.3 Package Claims ..........................................................................................................31

2.4 Conformance Claim Rationale....................................................................................32

2.4.1 Consistency Claim with TOE Type in PP................................................................ 32

2.4.2 Consistency Claim with Security Problems and Security Objectives in PP......... 32

2.4.3 Consistency Claim with Security Requirements in PP .......................................... 33

3Security Problem Definitions ............................................................................................36

Page 3 of 93

3.1 Threats .......................................................................................................................36

3.2 Organisational Security Policies ................................................................................37

3.3 Assumptions...............................................................................................................37

4Security Objectives............................................................................................................39

4.1 Security Objectives for TOE .......................................................................................39

4.2 Security Objectives of Operational Environment .......................................................40

4.2.1 IT Environment......................................................................................................... 40

4.2.2 Non-IT Environment................................................................................................. 41

4.3 Security Objectives Rationale.....................................................................................42

4.3.1 Correspondence Table of Security Objectives ......................................................... 42

4.3.2 Security Objectives Descriptions ............................................................................. 43

5Extended Components Definition......................................................................................47

5.1 Restricted forwarding of data to external interfaces (FPT_FDI_EXP) .......................47

6Security Requirements......................................................................................................49

6.1 Security Functional Requirements.............................................................................49

6.1.1 Class FAU: Security audit ........................................................................................ 49

6.1.2 Class FCS: Cryptographic support .......................................................................... 52

6.1.3 Class FDP: User data protection ............................................................................. 53

6.1.4 Class FIA: Identification and authentication ......................................................... 58

6.1.5 Class FMT: Security management........................................................................... 61

6.1.6 Class FPT: Protection of the TSF............................................................................. 67

6.1.7 Class FTA: TOE access ............................................................................................. 68

6.1.8 Class FTP: Trusted path/channels........................................................................... 68

6.2 Security Assurance Requirements..............................................................................68

6.3 Security Requirements Rationale...............................................................................69

6.3.1 Tracing ....................................................................................................................... 69

6.3.2 Justification of Traceability...................................................................................... 71

6.3.3 Dependency Analysis ................................................................................................ 77

6.3.4 Security Assurance Requirements Rationale.......................................................... 79

7TOE Summary Specification .............................................................................................80

7.1 Audit Function ...........................................................................................................80

7.2 Identification and Authentication Function ...............................................................82

Page 4 of 93

7.3 Document Access Control Function ............................................................................84

7.4 Use-of-Feature Restriction Function ..........................................................................86

7.5 Network Protection Function .....................................................................................87

7.6 Residual Data Overwrite Function.............................................................................87

7.7 Stored Data Protection Function................................................................................88

7.8 Security Management Function .................................................................................88

7.9 Software Verification Function...................................................................................93

7.10 Fax Line Separation Function....................................................................................93

Page 5 of 93

List of Figures

Figure 1 : Example of TOE Environment........................................................................................................9

Figure 2 : Hardware Configuration of the TOE.............................................................................................12

Figure 3 : Logical Scope of the TOE.............................................................................................................21

List of Tables

Table 1 : Identification Information of TOE....................................................................................................7

Table 2 : Guidance for English Version-1......................................................................................................14

Table 3 : Guidance for English Version-2......................................................................................................15

Table 4 : Guidance for English Version-3......................................................................................................17

Table 5 : Guidance for English Version-4......................................................................................................17

Table 6 : Definition of Users.........................................................................................................................19

Table 7 : List of Administrative Roles...........................................................................................................19

Table 8 : Definition of User Data..................................................................................................................26

Table 9 : Definition of TSF Data...................................................................................................................27

Table 10 : Specific Terms Related to This ST ...............................................................................................27

Table 11 : Rationale for Security Objectives.................................................................................................42

Table 12 : List of Auditable Events...............................................................................................................49

Table 13 : List of Cryptographic Key Generation .........................................................................................53

Table 14 : List of Cryptographic Operation...................................................................................................53

Table 15 : List of Subjects, Objects, and Operations among Subjects and Objects (a) .................................54

Table 16 : List of Subjects, Objects, and Operations among Subjects and Objects (b).................................54

Table 17 : Subjects, Objects and SecurityAttributes (a) ...............................................................................54

Table 18 : Rules to Control Operations on Document Data and User Jobs (a)..............................................55

Table 19 :Additional Rules to Control Operations on Document Data and User Jobs (a)............................56

Table 20 : Subjects, Objects and SecurityAttributes (b)...............................................................................57

Table 21 : Rule to Control Operations on MFPApplications (b) ..................................................................57

Table 22 : List of Authentication Events of Basic Authentication.................................................................58

Table 23 : List of Actions for Authentication Failure....................................................................................58

Table 24 : List of SecurityAttributes for Each User That Shall Be Maintained............................................59

Table 25 : Rules for InitialAssociation of Attributes ....................................................................................61

Table 26 : User Roles for SecurityAttributes (a)...........................................................................................62

Table 27 : User Roles for SecurityAttributes (b) ..........................................................................................63

Table 28 :Authorised Identified RolesAllowed to Override Default Values................................................64

Table 29 : List of TSF Data...........................................................................................................................65

Table 30 : List of Specification of Management Functions...........................................................................66

Table 31 : TOE SecurityAssurance Requirements (EAL3+ALC_FLR.2)....................................................69

Table 32 : Relationship between Security Objectives and Functional Requirements....................................70

Table 33 : Results of DependencyAnalysis of TOE Security Functional Requirements ..............................77

Table 34 : List of Audit Events......................................................................................................................80

Table 35 : List of Audit Log Items ................................................................................................................81

Page 6 of 93

Table 36 : UnlockingAdministrators for Each User Role.............................................................................83

Table 37 : Stored Documents Access Control Rules for Normal Users.........................................................85

Table 38 : Encrypted Communications Provided by the TOE.......................................................................87

Table 39 : List of Cryptographic Operations for Stored Data Protection ......................................................88

Table 40 : Management of TSF Data.............................................................................................................89

Table 41 : List of Static Initialisation for SecurityAttributes of DocumentAccess Control SFP .................92

Page 7 of 93

1 ST Introduction

This section describes ST Reference, TOE Reference, TOE Overview and TOE Description.

1.1 ST Reference

The following are the identification information of this ST.

Title : Aficio MP C3001/C3501 series Security Target

Version : 1.00

Date : 2011-07-18

Author : RICOH COMPANY, LTD.

1.2 TOE Reference

This TOE is identified by the following: digital multi function product (hereafter "MFP") and Fax Controller

Unit (hereafter "FCU"), all of which constitute the TOE. The MFP is identified by its product name and

version. Although the MFP product names vary depending on sales areas and/or sales companies, the

components are identical. MFP versions consist of software and hardware versions. The FCU is identified by

its name and version. Table 1 shows the identification information of the TOE.

Table 1 : Identification Information of TOE

Names Versions

MFPs

Software

System/Copy 1.03

Network Support 10.54

Scanner 01.05

Printer 1.02

Fax 02.00.00

RemoteFax 01.00.00

Web Support 1.05

Web Uapl 1.01

NetworkDocBox 1.01

animation 1.00

PCL 1.02

OptionPCLFont 1.02

Ricoh Aficio MP C3001,

Ricoh Aficio MP C3501,

Ricoh Aficio MP C3001G,

Ricoh Aficio MP C3501G,

Gestetner MP C3001,

Gestetner MP C3501,

Lanier MP C3001,

Lanier MP C3501,

Lanier LD630C,

Lanier LD635C,

Lanier LD630CG,

Lanier LD635CG,

nashuatec MP C3001,

nashuatec MP C3501,

Rex-Rotary MP C3001,

Rex-Rotary MP C3501, Engine 1.03:04

Page 8 of 93

Names Versions

OpePanel 1.04

LANG0 1.04

LANG1 1.04

Data Erase Std 1.01x

Hardware

Ic Key 01020700

infotec MP C3001,

infotec MP C3501,

Savin C9130,

Savin C9135,

Savin C9130G,

Savin C9135G

Ic Ctlr 03

Options

FCU name Fax Option Type C5501 GWFCU3-21(WW) 03.00.00

Keywords : Digital MFP, Documents, Copy, Print, Scanner, Network, Office, Fax

1.3 TOE Overview

This section defines TOE Type, TOE Usage and Major Security Features of TOE.

1.3.1 TOE Type

This TOE is a digital multi function product (hereafter "MFP"), which is an IT device that inputs, stores, and

outputs documents.

1.3.2 TOE Usage

The operational environment of the TOE is illustrated below and the usage of the TOE is outlined in this

section.

Page 9 of 93

Figure 1 : Example of TOE Environment

The TOE is used by connecting to the local area network (hereafter "LAN") and telephone lines, as shown in

Figure 1. Users can operate the TOE from the Operation Panel of the TOE or through LAN communications.

Below, explanations are provided for the MFP, which is the TOE itself, and hardware and software other

than the TOE.

MFP

A machinery that is defined as the TOE. The MFP is connected to the office LAN, and users can perform the

following operations from the Operation Panel of the MFP:

- Various settings for the MFP,

- Copy, fax, storage, and network transmission of paper documents,

- Print, fax, network transmission, and deletion of the stored documents.

Also, the TOE receives information via telephone lines and can store it as a document.

LAN

Network used in the TOE environment.

Page 10 of 93

Client computer

Performs as a client of the TOE if it is connected to the LAN, and users can remotely operate the MFP from

the client computer. The possible remote operations from the client computer are as follows:

- Various settings for the MFP using a Web browser installed on the client computer,

- Operation of documents using a Web browser installed on the client computer,

- Storage and printing of documents using the printer driver installed on the client computer,

- Storage and faxing of documents using the fax driver installed on the client computer.

Telephone line

A public line for the TOE to communicate with external faxes.

Firewall

A device to prevent the office environment from network attacks via the Internet.

FTP Server

A server used by the TOE for folder transmission of the stored documents in the TOE to its folders.

SMB Server

A server used by the TOE for folder transmission of the stored documents in the TOE to its folders.

SMTP Server

A server used by the TOE for e-mail transmission of the stored documents in the TOE.

External Authentication Server

A server that identifies and authenticates the TOE user with Windows authentication (Kerberos

authentication method). This server is only used when External Authentication is applied. The TOE

identifies and authenticates the user by communicating with the external authentication server via LAN.

RC Gate

An IT device used for @Remote. The function of RC Gate for @Remote is to relay communications

between the MFP and maintenance centre. A transfer path to other external interface for input information

from the RC Gate via network interface is not implemented in the TOE. The RC Gate products include

Remote Communication Gate A, Remote Communication Gate Type BN1, and Remote Communication

Gate Type BM1.

1.3.3 Major Security Features of TOE

The TOE stores documents in it, and sends and receives documents to and from the IT devices connected to

the LAN. To ensure provision of confidentiality and integrity for those documents, the TOE has the

following security features:

Page 11 of 93

- Audit Function

- Identification and Authentication Function

- Document Access Control Function

- Use-of-Feature Restriction Function

- Network Protection Function

- Residual Data Overwrite Function

- Stored Data Protection Function

- Security Management Function

- Software Verification Function

- Fax Line Separation Function

1.4 TOE Description

This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical

Boundary of TOE, and Protected Assets.

1.4.1 Physical Boundary of TOE

The physical boundary of the TOE is the MFP, which consists of the following hardware components

(shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network

Unit, USB Port, SD Card Slot, and SD Card.

Page 12 of 93

Figure 2 : Hardware Configuration of the TOE

Controller Board

The Controller Board is a device that contains Processors, RAM, NVRAM, Ic Key, and FlashROM. The

Controller Board sends and receives information to and from the units and devices that constitute the MFP,

and this information is used to control the MFP. The information to control the MFP is processed by the

MFP Control Software on the Controller Board. The following describes the components of the Controller

Board:

- Processor

A semiconductor chip that performs basic arithmetic processing for MFP operations.

- RAM

A volatile memory medium which is used as a working area for image processing such as

compressing/decompressing the image data. It can also be used to temporarily read and write

internal information.

- NVRAM

A non-volatile memory medium in which TSF data for configuring MFP operations is stored.

- Ic Key

A security chip that has the functions of random number generation, cryptographic key generation

Page 13 of 93

and digital signature. It has the memory medium inside, and the signature root key is installed

before the TOE is shipped.

- FlashROM

A non-volatile memory medium in which the following software components are installed:

System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl,

NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. These are part of the

TOE and are included in the MFP Control Software.

Operation Panel Unit (hereafter "Operation Panel")

The Operation Panel is a user interface installed on the TOE and consists of the following devices: key

switches, LED indicators, an LCD touch screen, and Operation Control Board. The Operation Control Board

is connected to the key switches, LED indicators, and LCD touch screen. The Operation Panel Control

Software is installed on the Operation Panel Control Board. The Operation Panel Control Software performs

the following:

1. Transfers operation instructions from the key switches and the LCD touch screen to the

Controller Board.

2. Controls the LEDs and displays information on the LCD touch screen according to display

instructions from the Controller Board.

OpePanel, which is one of the components that constitute the TOE, is the identifier for the Operation Panel

Control Software.

Engine Unit

The Engine Unit consists of Scanner Engine that is an input device to read paper documents, Printer Engine

that is an output device to print and eject paper documents, and Engine Control Board. The Engine Control

Software is installed in the Engine Control Board. The Engine Control Software sends status information

about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or

Printer Engine according to instructions from the MFP Control Software. Engine, which is one of the

components that constitute the TOE, is the identifier for the Engine Control Software.

Fax Unit

The Fax Unit is a unit that has a modem function for connection to a telephone line. It also sends and

receives fax data to and from other fax devices using the G3 standard for communication. The Fax Unit

sends and receives control information about the Controller Board and Fax Unit and fax data. FCU, which is

one of the components that constitute the TOE, is the identifier of the Fax Unit.

HDD

The HDD is a hard disk drive that is a non-volatile memory medium. It stores documents, login user names

and login passwords of normal users.

Page 14 of 93

Ic Ctlr

The Ic Ctlr is a board that implements data encryption and decryption functions. It is provided with functions

for HDD encryption realisation.

Network Unit

The Network Unit is an external interface to an Ethernet (100BASE-TX/10BASE-T) LAN.

USB Port

The USB Port is an external interface to connect a client computer to the TOE for printing directly from the

client computer. During installation, this interface is disabled.

SD Card/SD Card Slot

The SD Card is a memory medium in which Data Erase Std (MFP Control Software) are stored. When used,

the SD Card is inserted into the SD Card Slot that is inside the MFP. Only the customer engineer is allowed

to open the cover and insert the SD Card into the SD Card Slot during installation.

1.4.2 Guidance Documents

The following sets of user guidance documents are available for this TOE: [English version-1], [English

version-2], [English version-3], and [English version-4]. Selection of the guidance document sets depends on

the sales area and/or sales company. Guidance document sets will be supplied with individual TOE

component. Details of the document sets are as follows.

[English version-1]

Table 2 : Guidance for English Version-1

TOE

Components Guidance Documents for Product

MFP - C9130/C9135/C9145/C9145A/C9155/C9155A

C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG

LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA

LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG

Operating Instructions

About This Machine D088-7603A

- C9130/C9135/C9145/C9145A/C9155/C9155A

C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG

LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA

LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG

Page 15 of 93

Operating Instructions

Troubleshooting D088-7653A

- Quick Reference Copy Guide D088-7526

- Quick Reference Printer Guide D088-7805

- Quick Reference Scanner Guide D088-7886

- App2Me Start Guide D085-7906B

- Notes for Users D572-7010

- Notes for Users D088-7608

- Notes for Users D088-7759A

- Manuals for Users

Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP

C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG

C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9

155A/C9155AG

LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/

LD655C/LD655CG/LD655CA/LD655CAG D089-6906A

- Manuals for Administrators

Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP

C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG

C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9

155A/C9155AG

LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/

LD655C/LD655CG/LD655CA/LD655CAG D089-6907A

- To Users of This Machine D029-7904

- Operating Instructions

Notes on Security Functions D088-7706

- Notes for Administrators: Using this Machine in a Network Environment Compliant

with IEEE Std. 2600.1TM-2009 D088-7707

- Help 83NHBUENZ1.20 v116

FCU - Quick Reference Fax Guide D545-8506

[English version-2]

Table 3 : Guidance for English Version-2

TOE

Components Guidance Documents for Product

MFP - C9130/C9135/C9145/C9145A/C9155/C9155A

C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG

LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA/

LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG

Page 16 of 93

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG

Operating Instructions

About This Machine D088-7609

- C9130/C9135/C9145/C9145A/C9155/C9155A

C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG

LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA/

LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG

Operating Instructions

Troubleshooting D088-7657

- Quick Reference Copy Guide D088-7529

- Quick Reference Printer Guide D086-7800

- Quick Reference Scanner Guide D088-7889

- App2Me Start Guide D085-7905B

- Notes for Users D572-7010

- Notes for Users D088-7404

- Manuals for Users

Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP

C4501A/MP C4501AG/

MP C5501/MP C5501G/MP C5501A/MP C5501AG

C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9

155A/C9155AG

LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/L

D655C/LD655CG/LD655CA/LD655CAG D089-6906A

- Manuals for Administrators

Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP

C4501A/MP C4501AG/

MP C5501/MP C5501G/MP C5501A/MP C5501AG

C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9

155A/C9155AG

LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/L

D655C/LD655CG/LD655CA/LD655CAG D089-6907A

- To Users of This Machine D029-7903

- Operating Instructions

Notes on Security Functions D088-7708

- Notes for Administrators: Using this Machine in a Network Environment Compliant

with IEEE Std. 2600.1TM-2009 D088-7709

- Help 83NHBUENZ1.20 v116

FCU - Quick Reference Fax Guide D545-8506

Page 17 of 93

[English version-3]

Table 4 : Guidance for English Version-3

TOE

Components Guidance Documents for Product

MFP - Quick Reference Copy Guide D088-7525

- Quick Reference Fax Guide D545-8505

- Quick Reference Printer Guide D088-7804

- Quick Reference Scanner Guide D088-7885

- App2Me Start Guide D085-7904B

- Manuals for This Machine D081-7602

- Notes for Users D088-7430

- To Users of This Machine D029-7904

- Manuals for Users

Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

A D089-6931A

- Manuals for Administrators Security Reference

Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

D089-6933A

- Safety Information for MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP

C5501A/Aficio MP C3001/Aficio MP C3501/Aficio MP C4501/Aficio MP

C4501A/Aficio MP C5501/Aficio MP C5501A D088-7400A

- Notes for Users D088-7420

- Operating Instructions

Notes on Security Functions D088-7704

- Notes for Administrators: Using this Machine in a Network Environment Compliant

with IEEE Std. 2600.1TM-2009 D088-7705

- Help 83NHBUENZ1.20 v116

FCU -

[English version-4]

Table 5 : Guidance for English Version-4

TOE

Components Guidance Documents for Product

MFP - MP C3001/C3501/C4501/C4501A/C5501/C5501A

Page 18 of 93

MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Operating Instructions

About This Machine D088-7605A

- MP C3001/C3501/C4501/C4501A/C5501/C5501A

MP C3001/C3501/C4501/C4501A/C5501/C5501A

Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A

Operating Instructions

Troubleshooting D088-7655A

- Quick Reference Copy Guide D088-7527

- Quick Reference Printer Guide D088-7805

- Quick Reference Scanner Guide D088-7887

- Notes for Users D088-7608

- Notes for Users D088-7759A

- Notes for Users D060-7781

- App2Me Start Guide D085-7906B

- Manuals for Users

Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

D089-6908A

- Manuals for Administrators

Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A

D089-6909A

- To Users of This Machine D029-7904

- Operating Instructions

Notes on Security Functions D088-7706

- Notes for Administrators: Using this Machine in a Network Environment Compliant

with IEEE Std. 2600.1TM-2009 D088-7707

- Help 83NHBUENZ1.20 v116

FCU - Quick Reference Fax Guide D545-8507

1.4.3 Definition of Users

This section defines the users related to the TOE. These users include those who routinely use the TOE

(direct users) and those who do not (indirect users). The direct users and indirect users are described as

follows:

Page 19 of 93

1.4.3.1. Direct User

The "user" referred to in this ST indicates a direct user. This direct user consists of normal users,

administrators, and RC Gate. The following table (Table 6) shows the definitions of these direct users.

Table 6 : Definition of Users

Definition of

Users Explanation

Normal user A user who is allowed to use the TOE. A normal user is provided with a login user

name and can use Copy Function, Fax Function, Scanner Function, Printer Function,

and Document Server Function.

Administrator A user who is allowed to manage the TOE. An administrator performs management

operations, which include issuing login names to normal users.

RC Gate

An IT device connected to networks. RC Gate performs the @Remote Service Function

of the TOE via RC Gate communication interface. Copy Function, Fax Function,

Scanner Function, Printer Function, Document Server Function, and Management

Function cannot be used.

The administrator means the user registered for TOE management. According to its roles, the administrator

can be classified as the supervisor and the MFP administrator. Up to four MFP administrators can be

registered and selectively authorised to perform user management, machine management, network

management, and file management. Therefore, the different roles of the management privilege can be

allocated to multiple MFP administrators individually. The "MFP administrator" in this ST refers to the MFP

administrator who has all management privileges (Table 7).

Table 7 : List of Administrative Roles

Definition of

Administrator Management Privileges Explanation

Supervisor Supervisor Authorised to delete and register the login

password of the MFP administrator.

User management privilege Authorised to manage normal users. This

privilege allows configuration of normal user

settings.

Machine management

privilege

Authorised to specify MFP device behaviour

(network behaviours excluded). This privilege

allows configuration of device settings and

view of the audit log.

Network management

privilege

Authorised to manage networks and configure

LAN settings. This privilege allows

configuration of network settings.

MFP administrator

File management privilege Authorised to manage stored documents. This

privilege allows access management of stored

documents.

Other manuals for Aficio MP C3001

This manual suits for next models

Table of contents

Other Ricoh All In One Printer manuals

Ricoh

Ricoh Pro 8120s User manual

Ricoh

Ricoh Pro C5110 Series User manual

Ricoh

Ricoh SP 311DN User manual

Ricoh

Ricoh C210SF - Aficio SP Color Laser User manual

Ricoh

Ricoh MP C2003 Series User manual

Ricoh

Ricoh Parisian-C1 Installation and maintenance instructions

Ricoh

Ricoh 185 User manual

Ricoh

Ricoh Aficio 1035 Series User manual

Ricoh

Ricoh LD225 Instruction and safety manual

Ricoh

Ricoh D010 User manual

Ricoh

Ricoh Aficio SGC 1506 User manual

Ricoh

Ricoh Aficio SPC221SF User manual

Ricoh

Ricoh Aficio 1022 User manual

Ricoh

Ricoh M000 User manual

Ricoh

Ricoh aficio 1013 User manual

Ricoh

Ricoh Aficio MP 5000b User manual

Ricoh

Ricoh Aficio AP3200 User manual

Ricoh

Ricoh AFICIO MP W5100 User manual

Ricoh

Ricoh Equitrac User manual

Ricoh

Ricoh Aficio SP 100SU e User manual

Ricoh

Ricoh INFOPRINT 1572 MFP User manual

Ricoh

Ricoh Aficio SG 3110DN User manual

Ricoh

Ricoh Ri 100 Quick start guide

Ricoh

Ricoh G179 User manual

Popular All In One Printer manuals by other brands

Epson

Epson Stylus CX5700 quick start

DataCard

DataCard SD Series user guide

Sharp

Sharp AR-M256 Operation manual

Canon

Canon iR2030 user guide

Dell

Dell B1165nfw Quick installation guide

Lexmark

Lexmark MX-B468F user guide

Lexmark

Lexmark X850e Service manual

Epson

Epson Stylus Photo 1200 Printer basics

Xerox

Xerox 220 Getting started

Lexmark

Lexmark 651de - X B/W Laser setup sheet

Epson

Epson CX9400Fax - Stylus Color Inkjet Supplement

Canon

Canon Color imageRUNNER C2880i Sending and facsimile guide

Konica Minolta

Konica Minolta PF-210 Service manual

Epson

Epson C11CA49201 - WorkForce 310 Color Inkjet Brochure & specs

Epson

Epson RX680 - Stylus Photo Color Inkjet quick guide

Kodak

Kodak ESP Office 2100 Series Start here

FujiFilm

FujiFilm Frontier 570 Specifications

Sharpe

Sharpe MX-2010U Operation guide

Ricoh Aficio MP C3001 User manual

Popular All In One Printer manuals by other brands