Transcription
Multi functional printer(digital copier)bizhub PRO 1050 SeriesSecurity TargetVersion : 10December 21, 2004Konica Minolta Business Technologies, Inc.Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved
Document Revision HistoryVersion12Description- Initial version- Modification for the schematic diagram ofbasic function processing.3- Corrections for the matters identified byevaluation. (1)4- Corrections for the matters identified byevaluation. (2)5- Corrections for the matters identified byevaluation. (3)6- Corrections for the matters identified byevaluation. (4)7- Corrections for the matters identified byevaluation. (5)8- Corrections for the matters identified byevaluation. (6)9- Corrections for the matters identified byevaluation. (7)10- Corrections for the matters identified byevaluation. 404/15/2004Masaru UshioKazuo YasudaJun Yokobori05/20/200405/20/200405/20/2004Masaru UshioKazuo YasudaJun Yokobori06/07/200406/07/200406/07/2004Masaru UshioKazuo YasudaJun Yokobori07/24/200407/24/200407/24/2004Masaru UshioKazuoYasudaJun Yokobori09/17/200409/17/200409/17/2004Masaru UshioKazuo YasudaJun Yokobori10/04/200410/04/200410/04/2004Masaru UshioKazuo YasudaJun Yokobori10/06/200410/06/200410/06/2004Masaru UshioKazuo YasudaJun Yokobori10/12/200410/12/200410/12/2004Masaru UshioKazuo YasudaJun Yokobori11/29/200411/29/200411/29/2004Masaru UshioKazuo YasudaJun Yokobori12/21/200412/21/200412/21/2004Masaru UshioKazuo YasudaJun YokoboriCopyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reservedii
Table of Contents1.ST Introduction .71.1.ST Identification . 71.1.1.ST Identification and Management . 71.1.2.TOE Identification and Management. 71.1.3.Used CC Version. 71.2.ST Overview . 81.3.CC Conformance . 81.4.Reference . 82.TOE Description.102.1.TOE Type. 102.2.Terminology. 102.3.TOE Overview . 102.4.Related Persons and Their Roles for bizhub PRO 1050 Series. 112.5.TOE Structure . 132.6.Functional Structure of bizhub PRO 1050 Control Software. 142.6.1.Basic Function . 142.6.2.Management Function. 172.6.3.CE Function . 172.7.3.Asset to be protected . 17TOE Security Environment.193.1.Assumptions. 193.2.Threats . 194.Security Objectives Policies.204.1.Security Objectives Policies for the TOE . 204.2.Security Objectives Policies for the Environment . 205.IT Security Requirements .225.1.TOE Security Requirements . 225.1.1.TOE Security Functional Requirements . 22Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reservediii
5.1.2.TOE Security Assurance Requirements . 565.2.Security Functional Requirements for the IT environment. 575.3.Security Function Strength. 596.TOE Summary Specification .606.1.TOE Security Function . 606.1.1.Identification and Authentication Function. 606.1.2.Access Control Function. 626.1.3.Audit Function . 636.1.4.Management Support Function . 646.2.Security Function Strength. 656.3.Assurance Measures. 667.PP Claim.718.Rationale .728.1.Security Objectives Policies Rationale . 728.2.Security Requiremetns Rationale. 758.2.1.Security Functional Requirements Rationale. 758.2.2.TOE Security Functional Requirements Dependency. 808.2.3.TOE Security Functional Requirements Interaction . 828.2.4.Consistency of Security Function Strength to Security Objectives Policies . 838.2.5.Assurance Requirement Rationale . 848.3.TOE Summary Specification Rationale . 858.3.1.Conformity of Security Functional Requirements to TOE Summary Specification . 858.3.2.Security Function Strength Rationale . 908.3.3.Assurance Measures Rationale . 908.4.PP Claim Rationle. 90Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reservediv
List of FiguresFigure 2.1 Operating Environment of bizhub PRO 1050 series .11Figure 2.2 TOE Structure. 13Figure 2.3 Processing Architecture of Basic Function. 15Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reservedv
List of TablesTable 2.1 Correspondence between User Functions and Basic Functions . 15Table 5.1 Auditable Events . 34Table 5.2 List of Management Requirements . 49Table 5.3 List of TOE Security Assurance Requirements. 56Table 6.1 Assurance Requirements and Related Documents for EAL3. 66Table 8.1 Correspondence between Threats, Assumptions, and Security Objectives Policies. 72Table 8.2 Correspondence between Security Objectives Policies and IT Security Functional Requirements . 76Table 8.3 Dependence Relationship of TOE Security Functional Requirements. 80Table 8.4 Correspondence between IT Security Functions and Security Functional Requirements 85Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reservedvi
1. ST Introduction1.1.1.1.1.ST IdentificationST Identification and ManagementTitle:Multi functional printer (digital copier) bizhub PRO 1050 SeriesSecurity Target1.1.2.Version:10Created on:December 21, 2004Created by:Konica Minolta Business Technologies, Inc.TOE Identification and ManagementTitle:Japan : bizhub PRO 1050 zentai seigyo software・This software consists of two components below.Gazou seigyo program (Gazou seigyo I1)Controller seigyo program (IP control P1)Overseas : bizhub PRO 1050 control software・This software consists of two components below.Image control program (Image control I1)Controller control program (IP control P1)Note)”Image control program” and “Controller control program” foroverseas are the same products as “Gazou seigyo program” and“Controller seigyo program” for Japan respectively, withdifferent calling names.Version:Created by:Image control program (Image control I1): 11-0000Controller control program (IP controller P1): 10-0000Konica Minolta Business Technologies, Inc.“bizhub PRO 1050 zentai seigyo software” for Japan is the same product as “bizhub PRO 1050control software” for overseas, with different calling name. It is called bizhub PRO 1050 controlsoftware, hereafter.1.1.3.Used CC VersionJIS X 5070:2000Note)The following references are used for Japanese version.Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved7
- Common Criteria for Information Technology Security EvaluationPart 1:Introduction and general modelAugust 1999 Version 2.1 CCIMB-99-031- Common Criteria for Information Technology Security EvaluationPart 2:Security functional requirementsAugust 1999 Version 2.1 CCIMB-99-032- Common Criteria for Information Technology Security EvaluationPart 3:Security assurance requirementsAugust 1999 Version 2.1 CCIMB-99-0331.2.ST OverviewThis Security Target (ST) describes bizhub PRO 1050 control software installed in digital MFPbizhub PRO 1050 series (it is called bizhub PRO 1050 series, hereafter.) manufactured by KonicaMinolta Business Technologies, Inc.Bizhub PRO 1050 control software prevents the document data from disclosing during the use offunctions such as copier and printer. To protect the document data, it has a “User BOX” function anda variety of management capabilities, additional highly confidential HDD (Hard Disk Drive) to storethe document.1.3.CC ConformancePart 2 ExtensionPart 3 ConformantEAL3 Conformant1.4.Reference- Common Criteria for Information Technology Security EvaluationPart 1: Introduction and general modelAugust 1999 Version 2.1 CCIMB-99-031- Common Criteria for Information Technology Security EvaluationPart 2: Security functional requirementsAugust 1999 Version 2.1 CCIMB-99-032- Common Criteria for Information Technology Security EvaluationPart 3: Security assurance requirementsAugust 1999 Version 2.1 CCIMB-99-033- Common Criteria CCIMB Interpretations-0210- Common Criteria Addendum-0210Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved8
- ISO/IEC 15408, Information Technology – Security techniques – Evaluation criteria forIT security – Part1, 99/12- ISO/IEC 15408, Information Technology – Security techniques – Evaluation criteria forIT security – Part2, 99/12- ISO/IEC 15408, Information Technology – Security techniques – Evaluation criteria forIT security – Part3, 99/12Copyright 2004 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved9
2.TOE Description2.1.TOE TypeThe TOE is software product with the digital MFP that is installed the network function.2.2.TerminologyNo.1TermUser BOXDescriptionThis is the directory to store the document data (Referto No.2 below).2Document dataThis is the electronic data converted from theinformation such as characters and figures.3Paper documentThis is the paper document with the information suchas characters and figures.4Operation panelThis is the touch panel display with each operationbuttons, attached to the main frame of bizhub PRO1050 series.5Internal networkThis is the LAN in an office which introduces bizhubPRO 1050 series, and is connected with the c
bizhub PRO 1050 bizhub PRO 1050 control software Modem Image control program Controller control program TOE Client PC Figure 2.1 Operating Environment of bizhub PRO 1050 Series The TOE has a function to send and receive the document data in the internal network, therefore, bizhub PRO 1050 series including the TOE is connected with the internal network and public telephone line
