- Product Name :
- Canon imageRUNNER ADVANCE C55900KG/C5500 Series 2600 model
- Version of TOE :
- Product Type :
- Multifunction Product
- Certification No. :
- Date :
- Version of Common Criteria:
- 3.1 Release4
- Conformance Claim :
- EAL2 Augmented with ALC_FLR.2
- PP Identifier :
- U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)
- Vendor :
- Canon Inc.
- POC :
- Yoichi Toyokura
- Division :
- OIP Product Planning
- Phone :
- E-mail :
- Evaluation Facility :
- ECSEC Laboratory Inc.
Description of TOE
The TOE is a MFP (Multifunction Product) that offers Copy, Print, Universal Send, Fax, I-Fax, and Mail Box capabilities.
The TOE is capable of fully implementing the functionality required by the U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) defined as the Protection Profile for MFP.
TOE security functionality
The TOE embodies the following security functions.
|-||User Authentication Function
Function for identifying and authenticating the user.
|-||Function Use Restriction Function
Function for restricting the use of the MFP depending on the authority of the user.
|-||Job Output Restriction Function
Function for restricting access to print, cancel, and other jobs to the user that executed the job and the administrator.
|-||Forward Received Jobs Function
Function for restricting the machine from forwarding received data directly to the LAN.
|-||HDD Data Erase Function
Function for erasing unnecessary data from the hard disk by overwriting the data.
|-||HDD Data Encryption Function
Function for encrypting all data stored in the HDD.
|-||LAN Data Protection Function
Function for protecting all IP packets that are communicated with an IT device.
Function for testing the integrity of the executable code at startup.
|-||Audit Log Function
Function for generating audit logs on security events and allowing them to be viewed by the administrator.
Function for restricting device settings that influence security to be made only by the administrator.
Security functional requirements
This TOE implements the following security functional requirements.
|Security audit||Non-repudiation of origin/receipt||Cryptographic functionality||Access control|
|Data authentication||Export data protection||Information flow control||Import data protection|
|Internal transfer data protection||Residual information protection||Rollback||Stored data integrity|
|Transfer data confidentiality||Transfer data integrity||Identification and authentication||Security management|
|Privacy Control||Security functionality protection||Resource utilisation management||TOE access control|