Reassuring: Third-party validation of security claimsData and document security is one of the greatest challenges facing IT professionals and users. Not surprisingly, manufacturers make all sorts of claims about their equipment’s security features. Independent validation of such claims is obviously needed. Fortunately, Common Criteria, a program designed to meet the security testing needs of IT manufactures and users, has established an internationally recognised evaluation standard.
Comprehensive: Océ provides fully featured security The Digital Access Controller used in nine of Océ’s most popular multifunctional systems, the Océ VarioPrint 2045/2055/2065, Océ VarioPrint 2050/2060/2070, Océ VarioPrint 2060, Océ 3145 Océ3155 and Océ3165, has recently received Common Criteria Certification. Like many other vendors, Océ aims to protect the privacy of a customer’s documents and the integrity of his network through its systems’ security features. Unlike others, Océ’s unique document and network security features comply with the EAL2+ assurance level. These features include secure printing, e-shredding, management functions, an IP network filter and an integrity guard.
Confidence-building: Common Criteria evaluates IT products
Common Criteria’s long-term goal is to help increase the level of trust users can have in information systems and networks through security testing, evaluation and assessment programs that are genuinely cost-effective for the user. In other words, Common Criteria helps users select off-the-shelf IT products that meet their security requirements. Océ customers can now have every confidence in the controller used in nine Océ systems.
Certified: Océ systems satisfy key security issues
Common Criteria Certification for the controller used in nine Océ systems reflects the comprehensive security strategy Océ has developed to counteract the threat posed by ‘cyber-attacks’. The main focus of the Océ strategy is on secure network connectivity, document access and document storage. Common Criteria Certification provides independent validation that the controller has satisfactorily dealt with these security issues.
The following security features are certified:
Secure document access & storage:
- Secure printing: Documents can be kept private by adding a pin code to a print job
- E-shredding: Prevents recovery of discarded documents
Secure network connectivity:
- Firewall: A built-in IP network filter blocks unwanted network traffic to/from the controller
- Integrity guard: Ensures the integrity of the controller software
Secure management:
- Management functions: A secure yet easy-to-use web-enabled management interface
Furthermore, security can be maximised by bundling and further optimising the following security features:
Secure document access:
- Secure printing can be initiated from Océ printer drivers to prevent unauthorised printing of specific print jobs
- Scans are automatically exported to a password-protected scan server
- User accounts can be set up to prevent unauthorised device and/or mailbox access
- Tracking and accounting is supported by an internal tracking system
- External card reader authorisation and control systems are also available
Secure document storage:
- Mailbox clean-up: Automatic mailbox clean-up can be used to prevent documents from being stored too long
- E-shredding: This unique data-overwrite function prevents recovery of your deleted documents. The unique Océ shredding technology (patent pending) keeps the system productive and yet minimises the ‘window of opportunity’ to the time taken to print a document. Data are automatically erased from the hard drive immediately after they are discarded – making it impossible to recover them using publicly available data recovery software. An additional time-consuming overwrite is performed as a background task to prevent loss of productivity. This e-shredding function conforms with the US Department Of Defence DOD 5220.22-M Directive and can be fully customised to a user’s needs
- Removable hard drive: A removable hard drive can be used to physically lock away the hard drive
Secure network connectivity:
- Firewall: A specific network service that is not required can be easily switched off. The IP network filter will automatically be reconfigured after the network settings are changed and automatically block unused ports to prevent abuse of these ports. Clear feedback is given about which ports are enabled
- Client filters: Access to individual network services can be protected using a client filter (e.g. to prevent circumvention of the print server or grant access solely to the print server)
- Integrity guard: As a second defence behind the firewall, the controller guard checks the integrity of the controller’s software and, if necessary, automatically repairs the software
Secure management:
- Management functions: The controller can be managed by means of a standard web browser via a secure HTTP/SSL connection. The management functions are protected by a powerful password mechanism. All the Océ systems are factory delivered at the highest security level but whatever security level is chosen, configuration is quick and easy.
Outstanding: Océ offers unique level of security
Océ customers operating any of the nine certified systems will enjoy a number of security features unique to Océ. An IP port filter acts as an effective firewall against worms and viruses – and an integrity test and repair function provides a welcome second line of defence against those threats. While many competitors offer secure printing, only Océ has had this feature certified. Once printed, the discarded documents are erased by the unique e-shredding option. All these functions are managed by a secure, password-protected web interface, which can be used to further tune the security offered to individual needs. Good reasons why Océ customers will sleep easier at night.
|
