Certified/Validated Products List

Fuji Xerox ApeosPort-V 3065/3060/2060
DocuCentre-V 3065/3060/2060 models
with Hard Disk, Data Security, Scan, Print, and Fax
Controller ROM Ver. 1.0.13, FAX ROM Ver. 2.0.8

Fuji Xerox Co., Ltd.
Last Updated 2016-05-20
Product Name :
Fuji Xerox ApeosPort-V 3065/3060/2060 DocuCentre-V 3065/3060/2060 models with Hard Disk, Data Security, Scan, Print, and Fax
Version of TOE :
Controller ROM Ver. 1.0.13,
FAX ROM Ver. 2.0.8
Product Type :
Multi Function Device
Certification No. :
C0505
Date :
2016-03-31
Version of Common Criteria:
3.1 Release4
Conformance Claim :
EAL2 Augmented with ALC_FLR.2
PP Identifier :
U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)

PRODUCT DESCRIPTION

Description of TOE

The TOE is the Multi Function Device (MFD) that provides such functions as copy, print, scan, and fax.
The TOE is assumed to be used at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are connected to the TOE via internal network, and general user client which is directly connected to the TOE.

 

TOE security functionality

To ensure the security of assets to be protected, the TOE provides the following security functions for using the above basic functions:

- Hard Disk Data Overwrite
A function to overwrite and delete the document data in the internal HDD.
- Hard Disk Data Encryption
A function to encrypt the document data before the data is stored into the internal HDD.
- User Authentication
A function to identify and authenticate users and permit the authorized users to use functions. This function also allows only owners of document data and system administrators to handle document data.
- System Administrator's Security Management
A function to allow only system administrators to configure the settings of security functions.
- Customer Engineer Operation Restriction
A function to allow only system administrators to configure the settings for restricting customer engineer operations.
- Security Audit Log
A function to generate audit logs of security events and allow only system administrators to refer to them.
- Internal Network Data Protection
A function to protect communication data by using encryption communication protocols.
- Information Flow Security
A function to restrict the unpermitted communication between the TOE interface and internal network.
- Self test
A function to verify the integrity of TSF executable code and TOE setting data.

 

Security functional requirements

This TOE implements the following security functional requirements.

Security audit Non-repudiation of origin/receipt Cryptographic functionality Access control
Data authentication Export data protection Information flow control Import data protection
Internal transfer data protection Residual information protection Rollback Stored data integrity
Transfer data confidentiality Transfer data integrity Identification and authentication Security management
Privacy Control Security functionality protection Resource utilisation management TOE access control
Trusted path/channels