The Lexmark MFP Controller Software Version 907.207b is the MFP Controller Software that drives the Lexmark MFP and implements the TOE Security Functions of Fax Communications Control, User Authentication, Device Configuration Protection, and Touch Screen Lock, and TOE Self Protection. The TOE resides within the Lexmark MFP.
\r\nThe Lexmark MFP is a multi-functional printer system with scanning, fax, and networked capabilities. It consists of a printer unit and a scan unit with an integrated touch-sensitive operator panel which are connected via a dedicated network connection. The printer is exclusively oriented towards receiving print jobs and producing hardcopy pages, while the scan unit coordinates and controls the use of the scan function, interacts with the user through the integrated touch-panel, and distributes scanned data appropriately.
\r\nThe Target Of Evaluation (TOE) is the application software that resides within a network-connected scan unit of a family of Multifunction Printers (MFPs). The TOE executes on a Printed Circuit Board (PCB) with a Linux kernel. Both the PCB and Linux kernel were treated as IT Environment in this evaluation. The scan unit must be mated with a printer in order to be functional. No portions of the printer are part of the TOE.
","evaluation_configuration":null,"security_evaluation_summary":"The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The evaluation demonstrated that the MFP Controller Software Version 907.207b meets the security requirements contained in the Security Target.
\r\nThe criteria against which the MFP Controller Software Version 907.207b was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.2. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.2. The COACT, Inc. CAFE Lab determined that the evaluation assurance level (EAL) for the MFP Controller Software Version 907.207b is EAL 2. The TOE, configured as specified in the installation guide, satisfies all of the security functional requirements stated in the Security Target.
\r\nA Validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by the COACT, Inc. CAFE Lab. The evaluation was completed in February 2006. Results of the evaluation and associated validation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report.
","environmental_strengths":"The MFP Controller Software Version 907.207b provides identification and authentication, Fax Communication Control, Device Configuration Protection, MFP Touch Screen Lock Functions, and TSF Self Protection.
\r\nIdentification and Authentication: The TOE requires users to enter an ID and password before they can copy, fax, or e-mail from the MFP.
\r\nFax Communication Control: The Fax Communications Control security function assures that the information on the TOE, and the information on the network to which the TOE is attached, is not exposed through the phone line that provides connectivity for the analog fax function.
\r\nDevice Configuration Protection: The TOE supports a single system administrator account that has an administrative ID of “MarkNet” This administrative ID cannot be changed. The TOE’s administrative password is configurable. The administrative account cannot be deleted, or disabled. There are no means to add any authority to touch screen user accounts. System Administrators can perform such tasks as creating user accounts, updating user passwords, and changing touch screen lock parameters. The MFP device includes parameters that can be configured by an administrator. The Device Configuration Protection function restricts the ability to configure those parameters by requiring authentication against the TOE’s administrative account.
\r\nMFP Touch Screen Lock Function: The MFP Touch Screen Lock function allows the MFP’s touch screen to be locked, effectively disabling the device’s functions such as copy and scan-to-email. This helps to secure the device from unauthorized use at times when the office environment is idle, or unattended. An administrator must enable the function and set the unlock password for use with the function.
\r\nTSF Self Protection: The MFP protects itself by ensuring that the TOE security policy is enforced before security functions within the TSC are allowed to proceed. This behavior is inherent in the design of the TOE. The TOE’s architecture restricts processes on the TOE from being used in a malicious manner.
","features":[]}