Organizational security policies, Assumptions – Dell C5765DN MFP Color Laser Printer User Manual

Dell C5765dn Security Target

- 22 -

3.2. Organizational Security Policies

Table 6 below describes the organizational security policy the TOE must comply with.

Table 6: Organizational Security Policy

Organizational Policy

(Identifier)

Description

P.FAX_OPT

TOE shall ensure that the internal network cannot be accessed via

public telephone line.

P.VERIFY

The TOE shall execute self-test to verify the integrity of TSF executable

code and TSF data.

P.OVERWRITE

The TOE shall execute HDD overwrite to delete the used document

data in the internal HDD.

3.3. Assumptions

Table 7 shows the assumptions for the operation and use of this TOE.

Table 7: Assumptions

Assumption

(Identifier)

Description

Personnel Confidence

A.ADMIN

A system administrator shall have the necessary knowledge of TOE

security functions to perform the given role of managing the TOE and

shall not operate the TOE with malicious intent.

A.USER

TOE users shall be trained and have competence about the TOE

operation and precautions according to the policies of their

organization and the product guidance.

Protection Mode

A.SECMODE

A system administrator shall configure and set the TOE properly

according to the security policy of organization and the product

guidance document to manage the TOE and its external environment.

A.ACCESS

The TOE is located in a restricted or monitored environment that

provides protection from unmanaged access to the physical

components and data interfaces of the TOE.