Last Updated 2011-07-05
- Product Name :
- Canon imageRUNNER ADVANCE C5000 Series 2600.1 model
- Version of TOE :
- 1.0
- Product Type :
- Multifunction Product
- Certification No. :
- C0287
- Date :
- 2011-03-29
- Version of Common Criteria:
- 3.1
- Conformance Claim :
- EAL3 Augmented with ALC_FLR.2
- PP Identifier :
- IEEE Std 2600.1-2009
- Vendor :
- Canon Inc.
-
- POC :
- Yoichi Toyokura
- Division :
- OIP Product Planning
- Phone :
- +81-3-3758-2111
- E-mail :
- Evaluation Facility :
- Mizuho Information & Research Institute, Inc.
Center for Evaluation of Information Security
- Certification/Validation
Report :
(612 KB)(2011-07-05) - CC
Certificate Image :
(431 KB)(2011-05-24) - Security Target :
(1.14 MB)(2011-07-05)
PRODUCT DESCRIPTION
Description of TOE
The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, I-Fax, and Mail Box capabilities.
The TOE is capable of fully implementing the functionality required by the IEEE Std 2600.1™-2009 defined as the Protection Profile for MFP, except for the fax function which is not included in this constitution.
TOE security functionality
The TOE embodies the following security functions.
| - | User Authentication Function |
| Function for identifying and authenticating the user. | |
| - | Function Use Restriction Function |
| Function for restricting the use of the MFP depending on the authority of the user. | |
| - | Job Output Restriction Function |
| Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator. | |
| - | Forward Received Jobs Function |
| Function for restricting the machine from forwarding received data directly to the LAN. | |
| - | HDD Data Erase Function |
| Function for erasing unnecessary data from the hard disk by overwriting the data. | |
| - | HDD Data Encryption Function |
| Function for encrypting all data stored in the HDD, and for restricting the connection of the HDD Data Encryption & Mirroring Board with the correct MFP. | |
| - | LAN Data Protection Function |
| Function for protecting all IP packets that are communicated with an IT device. | |
| - | Self-Test Function |
| Function for testing the integrity of the executable code at startup. | |
| - | Audit Log Function |
| Function for generating audit logs on security events and allowing them to be viewed by the administrator. | |
| - | Management Function |
| Function for restricting device settings that influence security to be made only by the administrator. |
Security functional requirements
The TOE implements the following security functional requirements.
| Security audit | Non-repudiation of origin/receipt | Cryptographic functionality | Access control |
| Data authentication | Export data protection | Information flow control | Import data protection |
| Internal transfer data protection | Residual information protection | Rollback | Stored data integrity |
| Transfer data confidentiality | Transfer data integrity | Identification and authentication | Security management |
| Privacy Control | Security functionality protection | Resource utilisation management | TOE access control |
| Trusted path/channels |