Certified/Validated Products List

Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit
MFP:
  Ricoh Aficio MP 2851, Ricoh Aficio MP 3351,
  Savin 9228, Savin 9233, Lanier LD528,
  Lanier LD533, Lanier MP 2851, Lanier MP 3351,
  Gestetner MP 2851, Gestetner MP 3351,
  nashuatec MP 2851, nashuatec MP 3351,
  Rex-Rotary MP 2851, Rex-Rotary MP 3351,
  infotec MP 2851, infotec MP 3351
FCU:
  Fax Option Type 3351
DataOverwriteSecurity Unit:
  DataOverwriteSecurity Unit Type I
HDD Encryption Unit:
  HDD Encryption Unit Type A


  - Software System/Copy 1.02
    Network Support 7.34
    Scanner 01.12
    Printer 1.02
    Fax 02.00.00
    RemoteFax 02.00.00
    Web Support 1.05
    Web Uapl 1.03
    Network DocBox 1.00
    animation 1.1
    Option PCL 1.03
    OptionPCLFont 1.01
    Engine 1.00:01
    OpePanel 1.10
    LANG0 1.09
    LANG1 1.09
  - Hardware Ic Key 1100
    Ic Hdd 01
  - Options Data Erase Opt 1.01m
    GWFCU3-20(WW) 02.00.00
RICOH COMPANY, LTD.
Last Updated 2011-07-27
Product Name :
Following MFP with FCU, DataOverwriteSecurity Unit and HDD Encryption Unit
MFP:
  Ricoh Aficio MP 2851, Ricoh Aficio MP 3351, Savin 9228, Savin 9233, Lanier LD528, Lanier LD533, Lanier MP 2851, Lanier MP 3351, Gestetner MP 2851, Gestetner MP 3351, nashuatec MP 2851, nashuatec MP 3351, Rex-Rotary MP 2851, Rex-Rotary MP 3351, infotec MP 2851, infotec MP 3351
FCU:
  Fax Option Type 3351
DataOverwriteSecurity Unit:
  DataOverwriteSecurity Unit Type I
HDD Encryption Unit:
  HDD Encryption Unit Type A
Version of TOE :
- Software System/Copy 1.02
  Network Support 7.34
  Scanner 01.12
  Printer 1.02
  Fax 02.00.00
  RemoteFax 02.00.00
  Web Support 1.05
  Web Uapl 1.03
  Network DocBox 1.00
  animation 1.1
  Option PCL 1.03
  OptionPCLFont 1.01
  Engine 1.00:01
  OpePanel 1.10
  LANG0 1.09
  LANG1 1.09
- Hardware Ic Key 1100
  Ic Hdd 01
- Options Data Erase Opt 1.01m
  GWFCU3-20(WW) 02.00.00
Product Type :
Multi Function Product
Certification No. :
C0286
Date :
2011-03-29
Version of Common Criteria:
3.1
Conformance Claim :
EAL3 Augmented with ALC_FLR.2
PP Identifier :
IEEE Std 2600.1-2009

PRODUCT DESCRIPTION

Description of TOE

This TOE is a digital multi-function product that conforms to the security requirement specification of "IEEE Std 2600.1-2009", which is an international security standard for Hardcopy devices. This product provides a secure environment for users who use the Copy, Scanner, Printer, Fax, and Document Server functions.

 

TOE security functionality

The major security functions of this TOE are as follows:

- Audit Function: Enables the TOE to record information related to security events and allows users to review it.
- Identification and Authentication Function: Enables the TOE to perform user identification and authentication, lockout, protected password feedback, and auto-logout.
- Document Access Control Function: Enables the TOE to control the operations for user documents and user jobs.
- Use-of-Feature Restriction Function: Enables the TOE to control the use of features for each user.
- Network Protection Function: Enables the TOE to protect network communications using encryption.
- Residual Data Overwrite Function: Enables the TOE to overwrite the residual information on the HDD using the specified pattern.
- Stored Data Protection Function: Enables the TOE to protect the recorded data on the HDD using encryption.
- Security Management Function: Enables the TOE administrator to control security functions.
- Software Verification Function: Enables the TOE to verify the integrity of executable codes of control software so that the software can be validated as genuine software.
- Fax Line Separation Function: Enables the TOE to prevent illegal intrusion from telephone lines.

 

Security functional requirements

This TOE implements the following security functional requirements.

Security audit Non-repudiation of origin/receipt Cryptographic functionality Access control
Data authentication Export data protection Information flow control Import data protection
Internal transfer data protection Residual information protection Rollback Stored data integrity
Transfer data confidentiality Transfer data integrity Identification and authentication Security management
Privacy Control Security functionality protection Resource utilisation management TOE access control
Trusted path/channels