Canon Paper Shredder User Manual

36

White Paper: Canon imageRUNNER ADVANCE Security

Section 7 — Canon Solutions & Regulatory Requirements

information assurance. IEEE 2600.1 defines requirement specifications for office use as well as
government agencies where high level of assurance is required. The IEEE2600.1 Common Criteria
certification evaluates whether security functions provided by products and technology are properly
implemented. The IEEE2600.1 Protection Profile is part of a suite of standards developed by the Hardcopy
Device and System Security Working Group, sponsored by the IEEE Information Assurance Standards
Committee of the IEEE Computer Society. Canon participated in the development of the P2600 suite of
Protection Profiles as a member of the Hardcopy Device and System Security Working Group.

With specified processes, configurations and settings implemented upon installation, the entire Next
Generation imageRUNNER ADVANCE line will be certified within 6 months of each product launch, to
achieve and maintain the necessary security requirements as defined in the IEEE 2600.1 standard.

Certified Device- Canon’s imageRUNNER ADVANCE modelscan be considered an IEEE 2600.1 CC
Certified model when the following options are installed and active on the device:

 iR-ADV Security Kit for IEEE 2600.1

o

IEEE 2600 License Certificate

o

Bootable CD with certified system software

o

IEEE 2600 User Manual CD

o

Installation Manual

 HDD Data Encryption & Mirroring Kit

After installation and configuration is completed, an end user can verify and check a device configuration
screen to verify that it is an IEEE 2600.1 Common Criteria certified configuration.

Please note, various settings made at installation might require disabling functions or features of the device
to achieve and maintain certification.
Given the common controller architecture used by Canon’s imageRUNNER ADVANCE architecture, the
imageRUNNER ADVANCE Series models, when equipped with necessary accessories, along with specific
installations and configurations, can be considered compliant with the IEEE 2600 standard, although they
have not been submitted for certification.

7.4 –CAC/PIV Solutions for HSPD-12 Compliance

HSPD-12 requires the establishment of a standard for identification of Federal Government employees

. The

Presidential Directive calls for the use of a common identification credential for both logical and physical
access to federally controlled facilities and information systems.

Advanced Authentication (AA) CAC/PIV

AA CAC/PIV is a MEAP application which enables a user to authenticate to a MEAP enabled device via a
Federal Government issued CAC or PIV card. AA CAC/PIV can also be used in conjunction with the
Access Management System (AMS) limiting function access based on defined roles.

Authorized Send CAC/PIV

Designed to meet the needs of the United States Department of Defense and numerous government
agencies, the Authorized Send CAC/PIV option for imageRUNNER ADVANCE systems provides a means
for the devices to maintain high productivity for walk-up users to output hard copies of the documents they
need while restricting access to the Send To features to users who have been authenticated using their
Common Access Card (CAC) and/or Personal Identity Verification (PIV) card.

For more information on the CAC/PIV Solutions, please refer to the Device Security section.