- Product Name :
- bizhub C658/bizhub C558/bizhub C458/ineo+ 658/ineo+ 558/ineo+ 458/Sindoh D722/Sindoh D721/Sindoh D720/Sindoh CM6011/Sindoh CM5101/Sindoh CM4091
- Version of TOE :
- Product Type :
- Multi-Function Printer
- Certification No. :
- Date :
- 2017-11-22(Assurance Continuity)
- Version of Common Criteria:
- 3.1 Release4
- Conformance Claim :
- EAL2 Augmented by ALC_FLR.2
- PP Identifier :
- U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)
- Vendor :
- KONICA MINOLTA, INC.
- POC :
- Tsutomu Tsukamoto
- Division :
- R&D Administration Division,
- Phone :
- E-mail :
- Evaluation Facility :
- Mizuho Information & Research Institute, Inc.
Information Security Evaluation Office
Certificate Image :
Description of TOE
The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions.
The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data.
TOE Security functions
The TOE provides the following security functions.
|-||Identification and authentication
Function to identify and authenticate users.
|-||User restriction control function
Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users.
|-||Accumulated documents access control function
Function to control the access to accumulated documents only to the authorized users.
|-||HDD encryption function
Function to encrypt the data that is stored in HDD.
|-||Residual information deletion function
Function to overwrite and delete the data stored in HDD, so that they cannot be reused.
|-||Audit log function
Function to record audit log related to security functions.
|-||Network communication protection function
Function to encrypt communication data on the LAN.
Function to verify the integrity of executable codes of HDD encryption function and security functions.
|-||Security management function
Function to control the management of security functions only to the authorized users.
|-||External interface separation function
Function to prevent unauthorized transfer to LAN from external interface like public phone etc.
Security functional requirements
The TOE implements the following security functional requirements.
|Security audit||Non-repudiation of origin/receipt||Cryptographic functionality||Access control|
|Data authentication||Export data protection||Information flow control||Import data protection|
|Internal transfer data protection||Residual information protection||Rollback||Stored data integrity|
|Transfer data confidentiality||Transfer data integrity||Identification and authentication||Security management|
|Privacy Control||Security functionality protection||Resource utilisation management||TOE access control|