xerox freeflow print server v2 - xerox security content freeflow print server v2 ... even if the...

Download Xerox FreeFlow Print Server v2 - Xerox Security Content FreeFlow Print Server v2 ... even if the Xerox Corporation, ... and make plans to deliver the feature when there is a business

Post on 15-Apr-2018

227 views

Category:

Documents

2 download

Embed Size (px)

TRANSCRIPT

  • October 2017

    Xerox FreeFlow Print Server v2 Information Assurance Disclosure Version: 1.0

    Xerox Brenva HD Production Inkjet Press

  • 2017 Xerox Corporation. All rights reserved. Xerox, Xerox and Design, Brenva, and FreeFlow are trademarks of Xerox Corporation in the United States and/or other countries. BR #22288. Other company trademarks are also acknowledged.

  • 3

    Table of Contents 1.0 Security Process Introduction .................................................................................. 6

    1.1 Purpose ............................................................................................................................................ 61.2 Overview ......................................................................................................................................... 61.3 Target Audience ......................................................................................................................... 61.4 Disclaimer ....................................................................................................................................... 7

    2.0 Security Assurance & Assessment Process ................................................... 73.0 FreeFlow Print Server Device Description ..................................................... 8

    3.1 Security-relevant Subsystems ........................................................................................... 83.1.1 Physical Partitioning ............................................................................................................... 83.1.2 FreeFlow Print Server Purpose .................................................................................... 93.1.3 Memory Components .......................................................................................................... 103.1.4 External Connections .......................................................................................................... 103.1.5 Peripheral Devices (DVD Drive and USB Ports) ................................................ 10

    3.2 Web Graphical User Interface ........................................................................................ 103.2.1 Web User Interface Purpose .......................................................................................... 10

    3.2.1.1 Saved Jobs ............................................................................................................................. 103.2.1.2 Background Forms Manager ...................................................................................... 103.2.1.3 Print From File ...................................................................................................................... 113.2.1.4 Job Forwarding .................................................................................................................... 113.2.1.5 Color Management ............................................................................................................ 113.2.1.6 Resource Management .................................................................................................. 113.2.1.7 Job Accounting .................................................................................................................... 113.2.1.8 System-Level Preferences and Options .............................................................. 12

    3.2.2 Security Features and Capabilities ............................................................................. 123.2.2.1 Web-UI Feature Access Controls ............................................................................ 123.2.2.2 Secure Job Scheduling ................................................................................................... 123.2.2.3 User/Group Management ............................................................................................. 123.2.2.4 Password Security ............................................................................................................. 133.2.2.5 Web-UI Logging .................................................................................................................. 153.2.2.6 Web-UI Host Filtering ...................................................................................................... 153.2.2.7 Queue Lock/Unlock ........................................................................................................... 153.2.2.8 Print Service Access Control ...................................................................................... 16

    3.3 Marking IOT Interface ................................................................................................. 163.3.1 Marker Interface Purpose ................................................................................................. 163.3.2 Marking Data Security ........................................................................................................ 16

    3.4 Software Structure & Technologies ............................................................................. 16

  • 3.4.1 Open-Source Components .............................................................................................. 173.4.2 Operating System Layers ................................................................................................. 173.4.3 Network Protocol Layers ................................................................................................... 18

    3.5 Logical Network Access & Interface Security ........................................................ 183.5.1 TLS/SSL Cryptographic Module ................................................................................... 183.5.2 FIPS 140-2 Encryption ....................................................................................................... 193.5.3 SSH Cryptographic Module ............................................................................................. 203.5.4 IPSec Protocol Security ..................................................................................................... 213.5.5 UDP/TCP Ports ....................................................................................................................... 21

    4.0 FreeFlow Print Server System Access ......................................................... 254.1 User & Group Access & Roles ....................................................................................... 25

    4.1.1 System Administrator Access ........................................................................................ 254.1.2 Windows User & Group Accounts ............................................................................... 254.1.3 FreeFlow Print Server User & Group Accounts ................................................ 27

    4.2 User Authentication Methods ...................................................................................... 274.2.1 SSL/TLS Authentication .................................................................................................... 284.2.2 SSH Authentication .............................................................................................................. 284.2.3 Kerberos Authentication .................................................................................................... 284.2.4 SMB Authentication .............................................................................................................. 284.2.5 IPSec Authentication ........................................................................................................... 294.2.6 SNMPv3 Authentication ..................................................................................................... 29

    4.3 Web-UI Feature Access Control .................................................................................... 304.3.1 Job Management Access Control ............................................................................. 304.3.2 Queue Management Access Control .................................................................... 314.3.3 Color Management Access Control ........................................................................ 314.3.4 System Level Setting Access Control ................................................................... 324.3.5 System Level Setting Access Control ................................................................... 34

    5.0 General Security Features / Capabilities ....................................................... 345.1 Security Profile ......................................................................................................................... 34

    5.1.1 Security Profile Default Settings ................................................................................... 355.1.2 Security Profile Feature Descriptions ........................................................................ 365.1.3 Security Profile UDP/TCP Port Settings .................................................................. 40

    5.2 User Based Roles (RBAC) ................................................................................................ 415.3 Password Security ................................................................................................................. 425.4 Firewall & Protocol Filtering .............................................................................................. 465.5 Anti-Virus Software Protection ........................................................................................ 475.6 Audit Logging ............................................................................................................................ 48

    5.6.1 Windows OS Audit Log ............................................

Recommended

View more >