Certified/Validated Products List

bizhub C3850 / bizhub C3350 / bizhub C3850FS /
ineo+ 3850 / ineo+ 3350 / ineo+ 3850FS

Last Updated 2017-04-14
Product Name :
bizhub C3850 / bizhub C3350 / bizhub C3850FS / ineo+ 3850 / ineo+ 3350 / ineo+ 3850FS
Version of TOE :
Product Type :
Multi-Function Printer
Certification No. :
Date :
Version of Common Criteria:
3.1 Release4
Conformance Claim :
EAL2 Augmented with ALC_FLR.2
PP Identifier :
IEEE Std. 2600.2™-2009


Description of TOE

The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions.
The TOE provides security functions that conform to IEEE Std 2600.2™-2009 which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data.


TOE Security functions

This TOE provides the following security functions.

- Identification and authentication
  Function to identify and authenticate users.
- User restriction control function
  Function to restrict available functions of users.
- Accumulated documents access control function
  Function to control the access to accumulated documents only to the authorized users.
- HDD encryption function
  Function to encrypt the data that is stored in HDD.
- Residual information deletion function
  Function to overwrite and delete the data stored in HDD, so that they cannot be reused.
- Audit log function
  Function to record audit log related to security functions.
- Network communication protection function
  Function to encrypt communication data on the LAN.
- Self-test function
  Function to verify the integrity of the executable codes of security functions.
- Security management function
  Function to control the management of security functions only to the authorized users.
- External interface separation function
  Function to prevent unauthorized transfer to LAN from external interface like public phone etc.

Security functional requirements

This TOE implements the following security functional requirements.

Security audit Non-repudiation of origin/receipt Cryptographic functionality Access control
Data authentication Export data protection Information flow control Import data protection
Internal transfer data protection Residual information protection Rollback Stored data integrity
Transfer data confidentiality Transfer data integrity Identification and authentication Security management
Privacy Control Security functionality protection Resource utilisation management TOE access control
Trusted path/channels