IEEE 2600 Security Standard

This section describes the IEEE 2600 defined security requirements and how the functions of this machine meet these requirements.
Security Requirement
Function on the Machine
Description
User Authentication/User Information Management:
Preventing Unauthorized Use of the Machine By Authenticating Users
SSO-H (Single Sign-On H)
SSO-H enables you to manage the machine's users by performing authentication with registered user names and passwords.
Manages user information such as user names and passwords, as well as Department IDs and roles (privileges).
Access Restrictions:
Restricting Use of Functions By User
ACCESS MANAGEMENT SYSTEM KIT
You can set access restrictions for functions, such as the Print or Copy function, for each user.
Audit Log*2:
Overseeing Security-Related User Operations
Generate/Export Audit Logs
You can generate user authentication logs and job logs, and export the logs in CSV format from the Remote UI.
Temporary Data Erase:
Completely Erasing Unnecessary Temporary Data from the Memory
Complete Data Erase
You can erase unnecessary data from the memory of the machine by overwriting the data.
Data Protection*3:
Protecting Data and Confidential Information on the hard disk
HDD Data Encryption Kit*1
You can encrypt data stored on the hard disk such as information registered in the Address Book and password information.
Network Data Protection:
Protecting Data Transmissions with Encrypted Communication
IPSec
IPSec protects data sent and received over an IP network from threats such as theft, modification, and impersonation, using security policies created for encrypted communication.
Software Verification:
Self-Verification of Security Functions
IPSec
If IPSec settings are enabled, the self-test for the code module is automatically performed when the machine starts.
*1
Indicates optional products.
*2
[Network]/[Memory Media] for [Scan and Store]/[Access Stored Files] is not included in the scope of the audit.
*3
Files stored in memory media are not encrypted.
0JJC-1XJ