 |
|
|
|
|
|
|
| Security @ Xerox Home |
| | | | | | |
 |
| | | | | | |
 |  | | Product Security | | | At Xerox, security issues are front and center. As a leader in the development of digital technology, Xerox has demonstrated a commitment to keeping digital information safe and secure by identifying potential vulnerabilities and proactively addressing them to limit risk. Customers have responded by looking to Xerox as a trusted provider of secure solutions with many standard and optional security features. | | | |
| | Xerox office systems are the highest-speed devices in the industry to receive Common Criteria Certification. Six of Xerox Corporation’s high-speed digital copiers and advanced multifunction systems have become the fastest office systems in the industry to earn the international standard in information security. The systems join a list of six Xerox mid-speed office products to make it even easier for customers to meet both their document production needs and the strict security requirements in the government, military, healthcare, legal and financial sectors. | | Specific security options certified on Xerox systems include:
- Image Overwrite Option: The Image Overwrite security option electronically shreds information stored on the hard disk of devices as part of routine job processing. Electronic erasure can be performed automatically at job completion or on demand. The Xerox Image Overwrite security process implements a three-pass algorithm originally specified by the U.S. Department of Defense.
- Embedded Fax: While firewalls work at the network periphery to prevent unauthorized access to a customer's environment, unprotected fax connections in multifunction devices can be an open "back door" into the network. Xerox is the only manufacturer that can offer a Common Criteria certified product that assures complete separation of the fax telephone line and the network connection.
| | Other security features available on various Xerox multifunction systems include:
- Internal Auditron: Requires authorization in order for people to use the walk-up copy features of the device. Administrators can also limit the number of copies available for each user, track usage at an account or department level, and download data to a PC to generate audit reports.
- Network Authentication: Access to scan, e-mail and fax features is restricted by validating network user names and passwords prior to use of these functions.
- Removable Disk Drive Accessory: Administrators can physically remove hard drives, virtually eliminating the risk of unauthorized access to classified data.
- Secure Print: Jobs are safely stored at the device until the owner enters a PIN to release them. This controls unauthorized viewing of documents sent to the printer.
| | | | - Removable Hard Drive: The removable hard drive solution allows customers to physically remove the hard drive for the purpose of "locking the data away" at night, or to increase the efficiency of their resources by using separate hard drives for classified and non-classified information.
| | - Hard Drive Erasure: Algorithms completely and permanently delete all files after printing.
| | - Security Management Feature: The Security Management feature enables authorized users to setup and control the secure operation of the printing system so that they all operate coherently and adjust to your various security needs and policies.
| | - Authentication Feature: Any type of interaction between a user and a system or device is associated with a security account. The association, or logon session, is the basis for granting access to any of your users. Once the logon session is established, the user can interact with the printer or access data, subject to restrictions based on the user's identity.
| | - Basic Access Authentication Feature: Basic Authentication is an industry-standard method of authenticating a remote user of Internet Services (HTTP) or the Internet Printing Protocol (IPP).
It optionally forces users to authenticate themselves before they can access the device over HTTP. When used in conjunction with TLS/SSL, it allows for both, authentication (BSS) and integrity/privacy (TLS/SSL) production.
| | - Access Control Feature: With the Access Control feature, authenticated users are assigned privileges with varying levels of access to features, data, or database objects and attributes.
| | - IP Filtering Feature: Internet Protocol (IP) Filtering provides a system administrator with a means of restricting access to the system to a specific set of IP addresses. This provides a first level of defense against unauthorized use of the system. Computers whose IP addresses are outside of the allowed set are not permitted to print.
| | - Transport Layer Security Feature: FreeFlow DocuSP®'s Transport Layer Security feature allows high level of protection of the data exchanged - such as higher-level security information like user passwords or confidential print jobs - over a network. Transport Layer Security v1.0 (RFC2246) is a network security protocol widely used for applications that require secure HTTP communications.
| | - Security Certificate Feature: Using existing operating system capabilities FreeFlow enables the creation of security certificates. A security certificate enables client server authentication encryption using Secure Socket Layer (SSL) 3.0. Encryption provides a secure method to transmit sensitive data, such as credit card information, across the internet.
| | - Microsoft Active Directory Services: The Microsoft Active Directory Services allows the printer to interoperate with Microsoft Active Directory Services (ADS). With this service users can reuse network accounts for login at the printer, instead of exclusively using the locally defined user accounts.
| |
|
| |
Feed: Get Xerox Security Bulletins