beautypg.com

Rationale, Security objectives policies rationale – Konica Minolta BIZHUB 920 User Manual

Page 73

background image

8. Rationale

8.1.

Security Objectives Policies Rationale

Table 8.1 shows the correspondence relation of the security objectives policy to the threat and

assumptions.

Table 8.1 Correspondence between Threats, Assumptions, and Security Objectives Policies

Threat/Assumption/

organizational security policy

Security objectives policy

T

H

D

D

A

C

C

E

S

S

T

A

C

C

E

S

S

T

I

M

P

A

D

M

I

N

A

S

M

P

L

A

C

E

A

S

M

N

E

T

A

S

M

A

D

M

I

N

A

S

M

C

E

A

S

M

U

S

R

O.IA

(Identification and authentication when using)

O.MANAGE

(Provision of the management function)

O.CE (Provision of the CE function)

O.DATAACCESS

(Access limit to the document data)

O.AUDIT (Record of the audit information)

OE.PLACE (Management of the installed place)

OE.NET (Management of the network)

OE.USR (Instruction for the general user)

OE.ADMIN

(Personal condition for the administrator)

OE.CE (Assurance of CE)

OE.HDD Access limit to the HDD itself

Copyright© 2005 KONICA MINOLTA BUSINESS TECHNOLOGIES, INC., All Rights Reserved