Cosmos Security Feature Overview Product Planning Group Samsung IT Solutions Business 12 July 2010.

Slides:



Advertisements
Similar presentations
Internet Protocol Security (IP Sec)
Advertisements

Castelle FaxPress Plus™ FaxPress Premier and FaxPress Enterprise
Overview Business Risk Secure MFP Program Device Security Access Security Document Security End of Life Security.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
Data Security The Best Data Security In The Industry.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Canon Security Solutions For imageRUNNER Series imageCHIP Devices.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
Chapter 7 HARDENING SERVERS.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Chapter 8 Web Security.
Lexmark Print Management
A+ Guide to Software, 4e Chapter 11 Supporting Printers and Scanners.
1 Enabling Secure Internet Access with ISA Server.
The New Sharp Standard Security vs. the Data Security Kit.
OPSEC Awareness Briefing Multi-Function Printer (MFP) Security.
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
Managing Local and Network Printer Chapter 11 powered by dj.
Information Security Introduction to Information Security Michael Whitman and Herbert Mattord 14-1.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.
Security Imperatives in a New Workplace Partnering to Protect Digital Information in the 21st Century Presented by Michael Ferris, Alaska Enterprise Solutions.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
ISOM MIS3150 Data and Info Mgmt Database Security Arijit Sengupta.
Hands-On Microsoft Windows Server 2008
CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.
Hands-On Microsoft Windows Server 2008
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Confidential Document.
Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
Chapter 6 Configuring Windows Server 2008 Printing
Network Security Lecture 9 Presented by: Dr. Munam Ali Shah.
Secure Your Documents. Protect Your Data. Lexmark Security for Solutions-Capable Printers and MFPs.
Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.
Cryptography and Network Security (CS435) Part Fourteen (Web Security)
Web Security : Secure Socket Layer Secure Electronic Transaction.
Chapter 21 Distributed System Security Copyright © 2008.
Kerberos Named after a mythological three-headed dog that guards the underworld of Hades, Kerberos is a network authentication protocol that was designed.
1 Security Protocols in the Internet Source: Chapter 31 Data Communications & Networking Forouzan Third Edition.
Hands-On Microsoft Windows Server Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.
Guide to MCSE , Second Edition, Enhanced1 The Windows XP Security Model User must logon with: Valid user ID Password User receives access token Access.
IP Security. P R E S E N T E D B Y ::: Semester : 8 ::: Year : 2009 Naeem Riaz Maria Shakeel Aqsa Nizam.
Switch Features Most enterprise-capable switches have a number of features that make the switch attractive for large organizations. The following is a.
BEST Guard – Information Logging. bEST Guard Records all actions executed on an MFP Produkt type: Server based application (software only) Development.
1 SmarThru Workflow STWF Introduction Troubleshooting Practices Q&A Contents.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 10: Planning and Managing IP Security.
Database Security Cmpe 226 Fall 2015 By Akanksha Jain Jerry Mengyuan Zheng.
1 Chapter 7 WEB Security. 2 Outline Web Security Considerations Secure Socket Layer (SSL) and Transport Layer Security (TLS) Secure Electronic Transaction.
IPSec is a suite of protocols defined by the Internet Engineering Task Force (IETF) to provide security services at the network layer. standard protocol.
Securing Web Applications Lesson 4B / Slide 1 of 34 J2EE Web Components Pre-assessment Questions 1. Identify the correct return type returned by the doStartTag()
IS 4506 Windows NTFS and IIS Security Features.  Overview Windows NTFS Server security Internet Information Server security features Securing communication.
1 (c) 2013 FabSoft. MOST Cloud Service What is a Cloud Service? A cloud service is internet-based, meaning that MOST is hosted on a server farm on the.
Securing Access to Data Using IPsec Josh Jones Cosc352.
IP Security (IPSec) Matt Hermanson. What is IPSec? It is an extension to the Internet Protocol (IP) suite that creates an encrypted and secure conversation.
VIRTUAL SERVERS Chapter 7. 2 OVERVIEW Exchange Server 2003 virtual servers Virtual servers in a clustering environment Creating additional virtual servers.
Unit 2 Personal Cyber Security and Social Engineering Part 2.
SemiCorp Inc. Presented by Danu Hunskunatai GGU ID #
IST 201 Chapter 11 Lecture 2. Ports Used by TCP & UDP Keep track of different types of transmissions crossing the network simultaneously. Combination.
Working at a Small-to-Medium Business or ISP – Chapter 8
Configuring Windows Firewall with Advanced Security
SECURING NETWORK TRAFFIC WITH IPSEC
Secure Sockets Layer (SSL)
Printer Admin Print Job Manager
IIS.
Chapter 8: Monitoring the Network
Configuring Internet-related services
Designing IIS Security (IIS – Internet Information Service)
Presentation transcript:

Cosmos Security Feature Overview Product Planning Group Samsung IT Solutions Business 12 July 2010

Contents 1. Introduction 2. Secure User 3. Secure Data 4. Secure Network 5. Secure Document 6. Secure Management

MFP Security 1.Introduction

4 As an information input and output device, a MFP requires the same level of security as other IT devices. Both paper-based printed information and electronically stored information pass through MFPs, requiring MFP security to be a part of the overall IT security strategy. MFP Hardcopy Vulnerability - Unintentional / intentional removal - Copying - Peeking MFP Electronic Vulnerability - Ethernet (network connection) - Hard Drive (Stored document from fax, , and scan) - Phone Line (Fax)

5 Document Information Leakage Unauthorized Access Data Disclosure Unauthorized Device Configuration Change Network Intrusion Multifunctional Device PC Document PC Document

Secure Network Secure Document Secure Data Secure Management Only authorized users can use device functions Enterprise Authentication Function Level Authorization Protect anonymous access to enterprise network through the device Data Encryption (Job, HDD, PDF) Image Overwrite Secure Scan Image Sending Encryption to protect data from information security breach SSL/TLS IP Sec, IP v6 Protocol & Port Mgmt. IP/MAC Filtering Protect hardcopy documents to prevent document security breach Confidential Print Secure Fax Watermark Stamp Track print jobs and manage security configuration Job Auditing / Logging notofiation Secure User

Authentication Authorization Accounting 2.Secure User

8 Authentication Method Basic Authentication User is asked to login when they select options only available to administrator Device Authentication User is asked to login before using all device functions Application Authentication User cannot use the selected functions without logging in

9 Authentication Mode Application Authentication NEW

10 Local Authentication Authenticates the users through the local domain by using a user name and password Remote Authentication Authenticates the users through the enterprise network authentication env ironment utilizing LDAP, ADS or SMB. Role / Group Management The Administrator can set up the Role and Group Authorization. The Administrator can assign Role and Group for each user Accounting Administrator can assign quota management for each user There are two accounting Method Accounting by using Local User Database Accounting by using SWAS5

11 Local Authentication Remote Authentication

12 Log in Policy Setting users can try to log-in 3 times in 3 minutes and if they fail, they cannot try to log-in for 3 minutes. NEW

13 Role Management Local Accounting

14 User Profile

Data Encryption / Digital Signature 3.Secure Data

16 HDD Encryption When the data stored in HDD, the data is encrypted. When data is read out, the data is decrypted. Encryption algorithm –AES 256/CBC If the HDD is stolen, no one can read the Data HDD Image Overwrite Image Overwrite Function to erase the data created during the copying, copying scanning. Overwrite Method DoD M, Australian ASCI 33, German standard VSITR, Custom (1 time~9times) Encrypted PDF Encryption of Scanned PDF files Selectable Encryption Level High (128-bit AES: Acrobat 7.0 or later) Middle (128bit RC4: Acrobat 5.0 or later) Low (40bit RC4: Acrobat 3.0 or later) PDF with digital signature Digital signature ensures for author and not modifying in transmission Secure (SMTPs)-Scan to From MFP to SMTP server data is sent thorough secure channel ( SSL)

17 HDD Image Overwrite Area HDD Image Overwrite Method

 Secure PDF provides to add passwords and restrictions to document Add Digital Signature Secure PDF  User can make or select the certificate for Digital Signature via SWS2.0  Set supports the option to add digital signature in PDF. Architecture (Description / Figure)

Architecture During opening, pop-up window asks the password. (Input User or Owner Password) We can apply RC4 or AES128 algorithm. User PW : 123

Network Security 4.Secure Network

21 SSL / TLS Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide security and data integrity for communications over TCP/IP networks SNMPv3 SNMP enables network administrators to manage network performa nce, find and solve network problems, and plan for network growth. SNMPv3 has enhanced security feature and Administration capability IP Sec IPSec is designed to provide interoperable, high quality, cryptograp hically-based security for IPv4 and IPv6. The set of security services offered includes access control, connectionless integrity, data origin authentication

22 Protocol and Port Management Protocol Management can select whether a network protocol is use d or not. According to a user’s network policy, some protocols can b e disabled and this can protect an MFP from an external network att ack like a port scan. Additionally Protocol Management can reduce network traffic. IP / MAC address filtering IP Filtering to configure available IP Address Ranges. Only registered IP devices can print or scan through network. This can protect MFPs from unknown network devices MAC address filtering is capable of rejecting the request comes from particular Ethernet MAC address

23 IP Address Filtering MAC Address Filtering

Hardcopy Security 5.Secure Document

25 Confidential Print Restricting unauthorized people to access / see the printed docume nts. User input the PIN number through printer driver when sending the document to the device Print out procedure -Walk up to device  Job Status button  Select Secured Job  Input User ID and PIN number  Select Job  Pint out Secure Fax Restricting unauthorized people to access / see the received Fax All received Fax documents are stored in memory Print out procedure  Same as Confidential Print

26 Watermark for Copy - Print text over copied documents “Top Secret” “Urgent” “Confidential” “Draft” Customized Charactors are selectable Print Page ( All or First Page only), Text Color / Size, Printing Position are Selectable Stamp - Add tracking information on copied document Item: Page Number, Time & Date, User ID Print Page (All or First Page only), Text Color / Size, Printing Position are selectable

27 Watermark Setting Stamp Setting

Track Jobs, Operation, Security Event 6.Secure Management

29 Logging - Job Log Who (ID), Job Function (Print, Scan, Copy…..), When - Security Event Log Security related event Log (Authentication, PWD Change…) - Operation Log Operation Log (Configuration Change etc. ) Notification - Job Complete Notification Notifies job completion alert via - Device Alert Notification Notifies error status via to administrator Secure Management

END

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.