{"product_id":10512,"v_id":10512,"product_name":"Lexmark MS610e(LW20.PR4.P235CC), MS810e(LW20.DN4.P231CC), MS812e(LW20.DN7.P231CC), M3150(LW20.PR4.P235CC), M5155(LW20.DN4.P231CC), M5163(LW20.DN4.P231CC), M5170(LW20.DN7.P231CC), and CS510(LW20.VY4.P231CC) Single Function Printers","certification_status":"Not Certified","certification_date":"2014-01-31T00:01:00Z","tech_type":"Multi Function Device","vendor_id":{"name":"Lexmark International, Inc.","website":"http://www.lexmark.com"},"vendor_poc":"Sean Gibbons","vendor_phone":"859-232-2000","vendor_email":"gibbonss@lexmark.com","assigned_lab":{"cctl_name":"COACT, Inc. Labs"},"product_description":"<p>The TOE provides the following functions related to SFPs:</p>\r\n<p>A)&nbsp;&nbsp;&nbsp; Printing &ndash; producing a hardcopy document from its electronic form</p>\r\n<p>All of the SFPs included in this evaluation provide the same security functionality. Their differences are in the speed of printing and support for color operations.</p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme.&nbsp; The evaluation demonstrated that the Lexmark MS610e(LW20.PR4.P235CC), MS810e(LW20.DN4.P231CC), MS812e(LW20.DN7.P231CC), M3150(LW20.PR4.P235CC), M5155(LW20.DN4.P231CC), M5163(LW20.DN4.P231CC), M5170(LW20.DN7.P231CC), and CS510(LW20.VY4.P231CC) Single Function Printers meet the security requirements contained in the Security Target.</p>\r\n<p>The criteria against which the Lexmark Single Function Printers were judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1. &nbsp;The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1.</p>\r\n<p>The COACT, Inc. CAFE Lab determined that the evaluation assurance level (EAL) for the Lexmark Single Function Printers is EAL 2 augmented with ALC_FLR.2.&nbsp;&nbsp;&nbsp; The TOE, configured as specified in the installation guide, satisfies all of the security functional requirements stated in the Security Target.</p>\r\n<p>A Validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by the COACT, Inc. CAFE Lab. The evaluation was completed in January 2014. &nbsp;Results of the evaluation and associated validation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report.</p>","environmental_strengths":"<p>The TOE&rsquo;s Security Functions are:</p>\r\n<p><strong>Audit Generation</strong> - The TOE generates audit event records for security-relevant events and transmits them to a remote IT system using the syslog protocol.</p>\r\n<p><strong>Identification and Authentication</strong> - The TOE supports I&amp;A with a per-user selection of internal accounts (processed by the TOE) or integration with an external LDAP server (in the operational environment).&nbsp; PKI authentication may also be specified, in which case all authentication must use PKI.&nbsp; A Backup Password mechanism may also be enabled.</p>\r\n<p><strong>Access Controls</strong> - Access controls configured for functions (e.g. fax usage) and menu access are enforced by the TOE.</p>\r\n<p><strong>Management</strong> - Through web browser sessions, authorized administrators may configure access controls and perform other TOE management functions.</p>\r\n<p><strong>D.DOC Wiping</strong> - In the evaluated configuration, the TOE automatically overwrites RAM used to store user data as soon as the buffer is released.<strong> </strong></p>\r\n<p><strong>Secure Communication</strong> - The TOE protects the confidentiality and integrity of all information exchanged over the attached network by using IPSec with ESP for all network communication.</p>\r\n<p><strong>Self Test</strong> - During initial start-up, the TOE performs self tests on its hardware components and the integrity of the building blocks and security templates.</p>","features":[]}