- Product Name :
- bizhub 423 / bizhub 363 / bizhub 283 / bizhub 223 PKI Card System Control Software
- Version of TOE :
- A1UD0Y0-0100-G00-20
- Product Type :
- Control Software for digital MFP
- Certification No. :
- C0264
- Date :
- 2010-08-31
- Version of Common Criteria:
- 3.1
- Conformance Claim :
- EAL3
- PP Identifier :
- None
- Vendor :
- Konica Minolta Business Technologies, Inc.
-
- POC :
- Yasuhiro Nakagami
- Division :
- R&D Administration Division,
R&D Headquarters
- Phone :
- +81-533-89-7940
- E-mail :
- Evaluation Facility :
- Mizuho Information & Research Institute, Inc.
Center for Evaluation of Information Security
- Certification/Validation
Report :
(235 KB)(2009-12-14) - CC
Certificate Image :
(533 KB)(2010-09-30) - Security Target :
(417 KB)(2009-12-14)
PRODUCT DESCRIPTION
Description of TOE
TOE is the software that controls the entire operation of MFP, including the operation control processing and the image data management triggered by the panel of the main body of digital multi-function products (Multi Functional Peripheral. Hereinafter referred to as “MFP”) or through the network and supports the protection from exposure of the highly confidential documents exchanged between MFP and client PC. Moreover, TOE can prevent the unauthorized access to the image data written in HDD for the danger of taking HDD that is the medium that stores the image data in MFP out illegally by using the encryption function by the ASIC. Besides, TOE provides the function that deletes all the data of HDD completely by deletion method compliant with various overwrite deletion standards, and the function that controls the access from the public telephone line against the danger using Fax function as a steppingstone to access internal network.
TOE security functionality
TOE provides the following security functions.
-
- Administrator function
- Service mode function
- Encryption Print Function
- S/MIME Encryption Function
- Digital Signature Function
- All area overwrite deletion function
- Encryption key generation function
- Authentication Failure Frequency Reset function
- ASIC Support Function
- PKI Support Function
- Fax unit control function
Security functional requirements
This TOE implements the following security functional requirements.
| Security audit | Non-repudiation of origin/receipt | Cryptographic functionality | Access control |
| Data authentication | Export data protection | Information flow control | Import data protection |
| Internal transfer data protection | Residual information protection | Rollback | Stored data integrity |
| Transfer data confidentiality | Transfer data integrity | Identification and authentication | Security management |
| Privacy Control | Security functionality protection | Resource utilisation management | TOE access control |
| Trusted path/channels |