Security objectives for the environment, Security objectives rationale – Dell C5765DN MFP Color Laser Printer User Manual
Page 28
Dell C5765dn Security Target
- 24 -
4.2. Security Objectives for the Environment
Table 9 defines the security objectives for the TOE environment.
Table 9: Security Objectives for the Environment
Security
Objectives(Identifier)
Description
OE.ADMIN
A system administrator who is assigned by an organization administrator
as an appropriate and reliable person for this TOE management and who
receives necessary training to manage the TOE.
OE.USER
The system administrator shall ensure that users have competence by
training users about the TOE operation and precautions according to the
policies of their organization and the product guidance.
OE.SEC
A system administrator shall configure and set the TOE properly according
to the security policy of organization and the product guidance document
to manage the TOE.
In addition, a system administrator shall manage the external IT
environment according to the security policy of organization and the
product guidance document.
OE.PHYSICAL
The TOE shall be placed in a secure or monitored area that provides
protection from unmanaged physical access to the TOE.
4.3. Security Objectives Rationale
The security objectives are established to correspond to the assumptions specified in Security Problem
Definition, to counter the threats, or to realize the organizational security policies. Table 10 shows
assumptions / threats / organizational security policies and the corresponding security objectives.
Moreover, Table 11 shows that each defined security problem is covered by the security objectives.
Table 10: Assumptions / Threats / Organizational Security Policies and the Corresponding Security
Objectives
Security Problems
Security Objectives
A.ADMIN
A.USER
A.SECMODE
A.ACCESS
T
.RECOVER
T
.CONF
DA
T
A
T.
C
O
M
M
_
T
A
P
T.
D
A
T
A
_
S
E
C
T
.CONS
UM
E
P.
F
AX_OPT
P.
V
E
R
IF
Y
P.
OVER
W
RI
TE
O.AUDITS
O.CIPHER
O.COMM_SEC