Last Updated 2017-05-11
- Product Name :
- bizhub 368/bizhub 308/ineo 368/ineo 308
- Version of TOE :
- G00-09
- Product Type :
- Multi-Function Printer
- Certification No. :
- C0546
- Date :
- 2017-03-29
- Version of Common Criteria:
- 3.1 Release4
- Conformance Claim :
- EAL2 Augmented with ALC_FLR.2
- PP Identifier :
- U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std. 2600.2™-2009)
- Vendor :
- KONICA MINOLTA, INC.
-
- POC :
- Makoto Kobayashi
- Division :
-
R&D Administration Division,
R&D Headquarters
- Phone :
- +81-42-660-9201
- E-mail :
-
- Evaluation Facility :
-
Mizuho Information & Research Institute, Inc.
Information Security Evaluation Office
- Certification/Validation Report :
(589 KB)(2017-05-11) - CC Certificate Image :
(445 KB)(2017-04-07) - Security Target :
(534 MB)(2017-05-11)
PRODUCT DESCRIPTION
Description of TOE
The TOE is an MFP (Multi-Function Printer) that offers Copy, Scan, Print, Fax, and Document storage and retrieval functions.
The TOE provides security functions that conform to U.S. Government Approved Protection Profile - U.S. Government Protection Profile for Hardcopy Devices Version 1.0 (IEEE Std 2600.2™-2009) which is the MFP security requirement specification, to prevent unauthorized disclosure and alteration of user’s document data.
TOE Security functions
The TOE provides the following security functions.
| - | Identification and authentication Function to identify and authenticate users. |
| - | User restriction control function Function to restrict available functions of users and to control the access to document data other than accumulated documents only to the authorized users. |
| - | Accumulated documents access control function Function to control the access to accumulated documents only to the authorized users. |
| - | HDD encryption function Function to encrypt the data that is stored in HDD. |
| - | Residual information deletion function Function to overwrite and delete the data stored in HDD, so that they cannot be reused. |
| - | Audit log function Function to record audit log related to security functions. |
| - | Network communication protection function Function to encrypt communication data on the LAN. |
| - | Self-test function Function to verify the integrity of executable codes of HDD encryption function and security functions. |
| - | Security management function Function to control the management of security functions only to the authorized users. |
| - | External interface separation function Function to prevent unauthorized transfer to LAN from external interface like public phone etc. |