[MFD] Security Consideration for MFD Requirements document

[MFD] Security Consideration for MFD Requirements document

Nancy.Chen at okidata.com Nancy.Chen at okidata.com
Fri Jul 16 17:59:42 UTC 2010


Hi All,

Here is my suggested text with Ira's agreement. Also thanks for Ira's 
minor editorial changes.

"An MFD is a network device which is subject to many threats to the
confidentiality and integrity of sensitive data transmitted over the 
network
as well as data at rest within the MFD. Many MFDs today also have the
ability to interact with and access external resources, which poses 
security
threats to other resources on the network. The design of future Imaging
Services should consider the following security measures in protecting MFD
data and operational security as well as its surrounding network resource
security:

(1) Include the ability to use industry standard network security 
protocols
to authenticate users' right to MFD operations that have direct or 
indirect
impacts on the confidentiality and integrity of the sensitive data at rest
according to the local site security policy.
(2) Include the ability to use industry standard secure network protocols 
to
transmit sensitive data over the network according to the local site
security policy.
(3) Include the ability to use Industry standard cryptographic algorithms
compliant to the local site policy to protect internal MFD data at rest.
(4) Include security state attributes that can be monitored and/or 
validated
by Industry standard network access protocols to prevent or minimize the
threats that the MFD can pose to other network resources if these security
state attributes are compromised.
(5) Include service operation and internal data access control policies in
order to support the local site security policy.
(6) Include the ability to generate and store audit log records in 
Industry
standard formats for all security related events in accordance with the
local site security policy."

-Nancy

--------------------------------------------------------------------------------------------------
Nancy Chen, PWG Vice-Chair
Principal Engineer
Solutions and Technology
Oki Data
2000 Bishops Gate Blvd.
Mt. Laurel, NJ 08054
Phone: (856)222-7006
Email: Nancy.Chen at okidata.com
-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.pwg.org/pipermail/mfd/attachments/20100716/786cdcd1/attachment-0001.html>


More information about the mfd mailing list