Print Controller Design Guide for Information Security
Page 53 of 86
• The language processing system is only capable of processing legal data in pre-defined formats.
Therefore, even in the case that illegal fonts or firmware were downloaded to the MFP/LP on-board
memory, such data could not be executed as a program nor be processed by any of the MFP/LP’s
internal modules.
Printing Encrypted Image Data
As stated above, PDF Direct Print handles the sending of encrypted PDF files. The main use of this
function is for sending encrypted PDF files in cases where it is not possible to encrypt the
communication path itself. Once the password for opening the file has been programmed from the
MFP/LP operation panel or from WebImageMonitor, it is possible to then safely send the printing data
over the communication path. Even if the PDF file sent as printing data were intercepted on its way to
the MFP/LP, the contents of the data are secure since the data is already encrypted.
As stated above, the password for opening the file can also be programmed from inside
DeskTopBinder. Since this allows the user to assign unique passwords to each individual PDF file, this
function can be used to distribute confidential documents. Since both the printing data and distributed
PDF file itself are sent along the communication path in an encrypted state, their contents are secure.
Even if the PDF file were intercepted at the PC or server point, the contents of the file cannot be
accessed. In addition, the password itself is also protected since it is encrypted using the group
password already programmed in DeskTopBinder.
As stated above, the PDF interpreter cross-references the password programmed in the MFP/LP with
the encrypted password sent from the PC, and destroys the incoming data when these passwords do
not match. In addition, the incoming data is also destroyed if accompanying information alerts the
MFP/LP that printing of this file is prohibited. Since the MFP/LP will reject such data, it is not possible
for the data to introduce any illegal programs or be processed by any MFP/LP modules.
Logs
At the conclusion or cancellation of a job, the print results are stored in the job log in the HDD (for
details on the job/access logs, see 1.8 Job/Access Logs)
. The “reason code” contained in the results
allows the operator to distinguish between jobs that were cancelled due to failed authentication and all
other reasons.
To Next Page
Loading...
