- Product Name :
- File Transfer System “Secure Transport” Sending/Receiving Module
- Version of TOE :
- 1.0
- Product Type :
- File transfer control software
- Certification No. :
- C0338
- Date :
- 2012-02-27
- Version of Common Criteria:
- 3.1
- Conformance Claim :
- EAL4
- PP Identifier :
- None
- Vendor :
- Fuji Xerox System Services Co., Ltd.
-
- POC :
- Eriko Hirano
- Division :
- Corporate Strategy Dept Corporate Planning Group
- Phone :
- +81-3-3291-2608
- E-mail :
-
- Evaluation Facility :
- Information Technology Security Center Evaluation Department
PRODUCT DESCRIPTION
Description of TOE
Fuji Xerox System Services Co., Ltd. provides the “Secure Transport” system to environments connected to networks such as LGWAN network that connect regional public organizations, so that local government offices can accurately and securely transfer confidential information to other local government offices.
TOE is an application software in the Sending/Receiving server of organization that uses the “Secure Transport”
In order for each public organization to use “Secure Transport,” they must conclude a “Secure Transport” usage agreement, and install this TOE in the Sending/Receiving server for transmitting data to/from other organizations.
The TOE is file transfer control software that provides an application interface for transferring files to other government offices for external business applications individually created by government offices. It also has a function for storing the transferred files in the Sending/Receiving server to which the TOE is installed.
The TOE provides security functions to prevent the Sending/Receiving server from unauthorized use and prevent sent files from unauthorized access.
In networks such as the Internet, the TOE also provides the same functions for use of organizations such as various companies and groups.
TOE security functionality
The major security functions of the TOE are indicated below.
| - | Sending/receiving external application identification authentication function The function identifies/authenticates the sending/receiving external applications attempting to use the TOE. |
|
| - | Sending server administrator/receiving server administrator identification authentication function The TOE performs identification/authentication for login requests from the sending server administrator/receiving server administrator. |
|
| - | Sending server/receiving server management function The TOE manages setting information for the sending server administrator/receiving server administrator identification authentication function and sending/receiving external application identification authentication function. It also manages log access/deletion and the threshold value information for when the log is full. |
|
| - | Sending server/receiving server log function The function generates logs regarding the TOE. |
|
| - | Receiving server access control function Only for receiving external applications that are configured to be accessible to the received data file, the TOE allows to delete and retrieve the data. It also allows received data files on the receiving server to be deleted only by the receiving server administrator for maintenance purposes. |
|