Toe security environment, Assumptions, Threats – Konica Minolta BIZHUB 920 User Manual

3. TOE Security Environment

3.1.

Assumptions

ASM.PLACE

Installation condition for the TOE

The TOE shall be installed in the area where only the product-related person can operate.

ASM.NET

Setting condition for the internal network

The TOE shall be connected with the internal network that the disclosure of document data will

not occur.

ASM.ADMIN Reliable

administrator

The administrator shall not carry out an illegal act.

ASM.CE

Personal condition for the CE

The CE shall not carry out an illegal act.

ASM.USR

Management of the general user

The general user shall not disclose his/her own User BOX password.

3.2.

Threats

T.ACCESS

Unauthorized access to the BOX

When a general user uses the user function from the operation panel, there is a possible threat of

disclosing the document data that the other general user owns in his/her User BOX.

T.HDDACCESS Unauthorized access to the HDD

When a general user connects the HDD1 with an illegal device, there is a possible threat of

disclosing the document data in the HDD1.

When a general user connects the HDD2 with an illegal device, there is a possible threat of

disclosing the document data in the HDD2.

T.IMPADMIN

Impersonation of the CE and administrator

When a general user uses illegally the interfaces for CE function and administrator function,

there is a possible threat of disclosing the document data.

Copyright© 2005 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved