The TOE is a multi-function device with print, copy, scan and FAX options (hereafter referred to as a MFD). A Data Security Kit (DSK) is available to upgrade existing printers and copiers to the evaluated configuration.
\r\nA MFD may store temporary document image data in RAM, on a hard disk drive (HDD), or in FLASH memory, depending on the hardware configuration. The MFD provides DATA CLEAR and DATA ENCRYPTION functions to enhance the security of the MFD. The DATA CLEAR function overwrites the encrypted temporary document image data (resulting from the DATA ENCRYPTION function) with random data up to seven times at the completion of each print, scan or copy job. When clearing temporary document image data from a FAX job, the DATA CLEAR function writes zeros (0) into the FLASH memory, overwriting the document images.
\r\nOne component of the DATA CLEAR function is the hard disk drive (HDD)-erase function. With automatic HDD-erase, after the completion of any copy, print or scan operation encrypted temporary document image data is overwritten by random data. Invoking HDD-erase mitigates the risk that the HDD will retain readable document data when a job is completed. The DSK also allows a Key Operator to manually clear the entire HDD up to seven times on occasions such as loss of power to the copier, or when removal of the HDD is necessary. If a hard disk is not present, the MFD will create a RAM disk. This RAM disk is a virtual disk drive and is treated the same as the hard disk drive; thus, a hard disk is not required for operation. Data written to the RAM disk is also encrypted and overwritten up to seven times.
\r\nIn the event of a power failure, any encrypted data currently on the HDD remains. After a successful power up, with the “Power Up Auto Clear” enabled, the DATA CLEAR function ensures that all residual data (prior to the loss of power) on the HDD and/or FLASH memory is overwritten.
\r\nProtection of Security Function:
\r\nThe MFD is a dedicated machine that provides copy/print/scan/fax functionality as defined by the hardware configuration, and the firmware contained in the MFD. The DATA CLEAR and DATA ENCRYPTION functions are firmware confined to a circuit board that can only be accessed by disassembling the machine. All firmware, when executed, are considered to be trusted subjects. The MFD does not have the capability to execute other software/firmware.
The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process. The evaluation demonstrated that the User Data Protection function, job encryption and the security management functions of the Sharp Corporation Multifunction Device with Data Security Kit (AR-FR4, AR-FR5, or AR-FR6) product meets the security requirements contained in the Security Target.
\r\nThe criteria against which the Sharp Corporation Multifunction Device with Data Security Kit (AR-FR4, AR-FR5, or AR-FR6) was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.1. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. Computer Sciences Corporation determined that the evaluation assurance level (EAL) for the product is EAL 2. The product, configured as installed by the Sharp Corporation technician, satisfies all of the security functional requirements stated in the Security Target. A validator, on behalf of the CCEVS Validation Body, monitored the evaluation carried out by Computer Sciences Corporation. The evaluation was completed in November 2002. The results of the evaluation can be found in the Evaluation Technical Report, Sharp Corporation Multifunction Device with Data Security Kit (AR-FR4, AR-FR5, or AR-FR6) prepared by Computer Sciences Corporation.
","environmental_strengths":"The Data Security Kit (AR-FR4, AR-FR5, or AR-FR6) is a factory- or field-installed option for the Sharp family of Multi Function Devices. Previously, MFDs that buffered data to RAM or a HDD retained the data after job completion. This raised the possibility that the data could be retrieved from a removed hard disk drive. In the case of sensitive information, the only way to ensure data would not fall into the wrong hands was to physically install/remove and secure the drive. The MFD with the DSK installed eliminates the need for installation and removal of the hard drive because temporary image data is stored in encrypted form, and then overwritten with random binary patterns at the completion of the job. Additionally, the Power Up Auto Clear feature ensures that the DATA CLEAR function is performed without operator intervention when the device is turned on.
","features":[]}