Certified/Validated Products List

bizhub 367/bizhub 287/bizhub 227/
bizhub 136DN/bizhub 128DN/bizhub 122DN/
ineo 367/ineo 287/ineo 227/
Sindoh N502/Sindoh N501/Sindoh N500/
Sindoh MF3091/Sindoh MF2101/Sindoh MF2041/
Sindoh N512/Sindoh N511/Sindoh N510/
Sindoh N517/Sindoh N516/Sindoh N515

Last Updated 2016-06-06
Product Name :
bizhub 367/bizhub 287/bizhub 227/bizhub 136DN/bizhub 128DN/bizhub 122DN/ineo 367/ineo 287/ineo 227/Sindoh N502/Sindoh N501/Sindoh N500/Sindoh MF3091/Sindoh MF2101/Sindoh MF2041/Sindoh N512/Sindoh N511/Sindoh N510/Sindoh N517/Sindoh N516/Sindoh N515
Version of TOE :
Product Type :
Multi-Function Printer
Certification No. :
Date :
Version of Common Criteria:
3.1 Release4
Conformance Claim :
EAL2 Augmented with ALC_FLR.2
PP Identifier :
U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)


Description of TOE

The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions.
The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data.


TOE Security functions

This TOE provides the following security functions.

- Identification and authentication
  Function to identify and authenticate users.
- User restriction control function
  Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users.
- Accumulated documents access control function
  Function to control the access to accumulated documents only to the authorized users.
- HDD encryption function
  Function to encrypt the data that is stored in HDD.
- Residual information deletion function
  Function to overwrite and delete the data stored in HDD, so that they cannot be reused.
- Audit log function
  Function to record audit log related to security functions.
- Network communication protection function
  Function to encrypt communication data on the LAN.
- Self-test function
  Function to verify the integrity of executable codes of HDD encryption function and security functions.
- Security management function
  Function to control the management of security functions only to the authorized users.
- External interface separation function
  Function to prevent unauthorized transfer to LAN from external interface like public phone etc.

Security functional requirements

This TOE implements the following security functional requirements.

Security audit Non-repudiation of origin/receipt Cryptographic functionality Access control
Data authentication Export data protection Information flow control Import data protection
Internal transfer data protection Residual information protection Rollback Stored data integrity
Transfer data confidentiality Transfer data integrity Identification and authentication Security management
Privacy Control Security functionality protection Resource utilisation management TOE access control
Trusted path/channels