Certified/Validated Products List

Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit
MFP:
  Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G,
  Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G,
  Savin 9240, Savin 9240G, Savin 9250, Savin 9250G,
  Lanier LD140, Lanier LD140G, Lanier LD150,
  Lanier LD150G, Lanier MP 4001, Lanier MP 5001,
  Gestetner MP 4001, Gestetner MP 4001G,
  Gestetner MP 5001, Gestetner MP 5001G,
  nashuatec MP 4001, nashuatec MP 5001,
  Rex-Rotary MP 4001, Rex-Rotary MP 5001,
  infotec MP 4001, infotec MP 5001
FCU:
  Fax Option Type 5001
DataOverwriteSecurity Unit:
  DataOverwriteSecurity Unit Type I
HDD Encryption Unit:
  HDD Encryption Unit Type A


  - Software System/Copy 1.02
    Network Support 7.34
    Scanner 01.24
    Printer 1.01
    Fax 02.00.00
    RemoteFax 02.00.00
    Web Support 1.04
    Web Uapl 1.02
    Network DocBox 1.00
    animation 1.3
    Option PCL 1.03
    OptionPCLFont 1.01
    Engine 1.00:01
    OpePanel 1.08
    LANG0 1.07
    LANG1 1.07
  - Hardware Ic Key 1100
    Ic Hdd 01
  - Options Data Erase Opt 1.01m
    GWFCU3-19(WW) 02.00.00
RICOH COMPANY, LTD.
Last Updated 2011-08-10
Product Name :
Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit
MFP:
  Ricoh Aficio MP 4001, Ricoh Aficio MP 4001G, Ricoh Aficio MP 5001, Ricoh Aficio MP 5001G, Savin 9240, Savin 9240G, Savin 9250, Savin 9250G, Lanier LD140, Lanier LD140G, Lanier LD150, Lanier LD150G, Lanier MP 4001, Lanier MP 5001, Gestetner MP 4001, Gestetner MP 4001G, Gestetner MP 5001, Gestetner MP 5001G, nashuatec MP 4001, nashuatec MP 5001, Rex-Rotary MP 4001, Rex-Rotary MP 5001, infotec MP 4001, infotec MP 5001
FCU:
  Fax Option Type 5001
DataOverwriteSecurity Unit:
  DataOverwriteSecurity Unit Type I
HDD Encryption Unit:
  HDD Encryption Unit Type A
Version of TOE :
- Software System/Copy 1.02
  Network Support 7.34
  Scanner 01.24
  Printer 1.01
  Fax 02.00.00
  RemoteFax 02.00.00
  Web Support 1.04
  Web Uapl 1.02
  Network DocBox 1.00
  animation 1.3
  Option PCL 1.03
  OptionPCLFont 1.01
  Engine 1.00:01
  OpePanel 1.08
  LANG0 1.07
  LANG1 1.07
- Hardware Ic Key 1100
  Ic Hdd 01
- Options Data Erase Opt 1.01m
  GWFCU3-19(WW) 02.00.00
Product Type :
Multi Function Product
Certification No. :
C0285
Date :
2011-03-29
Version of Common Criteria:
3.1
Conformance Claim :
EAL3 Augmented with ALC_FLR.2
PP Identifier :
IEEE Std 2600.1-2009

PRODUCT DESCRIPTION

Description of TOE

This TOE is a digital multi-function product that conforms to the security requirement specification of "IEEE Std 2600.1-2009", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions.

 

TOE security functionality

The major security functions of this TOE are as follows:

- Audit Function: Enables the TOE to record information related to security events and allows users to review it.
- Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout.
- Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs.
- Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user.
- Network Protection Function: Enables the TOE to protect network communications using encryption.
- Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern.
- Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption.
- Security Management Function: Enables the TOE administrator to control security functions.
- Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software.
- Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines.

 

Security functional requirements

This TOE implements the following security functional requirements.

Security audit Non-repudiation of origin/receipt Cryptographic functionality Access control
Data authentication Export data protection Information flow control Import data protection
Internal transfer data protection Residual information protection Rollback Stored data integrity
Transfer data confidentiality Transfer data integrity Identification and authentication Security management
Privacy Control Security functionality protection Resource utilisation management TOE access control>
Trusted path/channels