Canon Paper Shredder Mail Server Security, Smtp Authentication, POP Authentication Before Smtp

Page 28

Section 4 – Network Security

There are three possible scenarios that are explored:

Data with a virus attached in the e-mail:

All file attachments except for ‘TIFF” files received in the e-mail are discarded immediately after reception.

Viruses pretending to be TIFF files:

TIFF image files are compressed with formats such as MH, MR, and MMR. The imageRUNNER ADVANCE system compresses the ‘TIFF’ format at reception and after regenerating the image encodes the image again. When processed correctly, the original image is discarded and a new image is created, printed, and transferred. If an error occurs during the process, the data from the ‘TIFF’ file is not transferred but is discarded, and a message notifying the user of the error is added to the e-mail text and is printed.

Text within e-mail is a virus:

E-mail text data gives the Date, From, Message-Id, To, or Subject data written at the top of the received e-mail for printing and transfer. The e-mail text data is comprised of character strings. If binary data such as data with a virus is used in the e-mail text, the data will be damaged and data with a virus will be discarded. Even if the data with a virus is visible data with a script for- mat, it is not possible to recognize it as a script because Date, From, Message-Id, To, or Subject data is attached at the top.

4.2– Mail Server Security

When the Scan and Send on imageRUNNER ADVANCE devices is enabled, the internal mail service is enabled and supports the POP and SMTP protocols. To protect the service against attack or improper use, administrators can enable additional security features such as SMTP Authentication and POP Authentication before SMTP.

SMTP Authentication

To prevent unauthorized users from making use of the device’s internal SMTP server, administrators can enable SMTP Authentication and designate a username and password to connect to the server. In addition, administrators can enable SSL for all SMTP send and receive operations.

POP Authentication Before SMTP

As an additional layer of security, imageRUNNER ADVANCE systems support the ability for administrators to enable or disable the POP Authentication before SMTP feature. POP Authentication before SMTP forces a successful login to a POP server prior to being able to send mail via SMTP.

28

White Paper: Canon imageRUNNER ADVANCE Security

 

 

Page 27 Page 29
Image 28
Page 27 Page 29
Contents White Paper Canon imageRUNNER Advance Security Table of Contents Introduction Imaging & Printing Security Overview Security Market OverviewKey Security Concentration Areas Authentication Device-Based AuthenticationDevice Security ImageRUNNER Advance Controller SecurityCard-Based Authentication UniFLOW Card AuthenticationAdvanced Authentication-Proximity Card Authorized Send for CAC/PIVPassword-Protected System Settings Access ControlAccess Management System Privileges by Access Level Address Book Password Function Level AuthenticationScan and Send Security Access Code for Address Book Destination Restriction FunctionPrint Driver Security Features Third Party Meap Application and DevelopmentUSB Block Print Job AccountingInformation Security Document SecuritySecure Printing Secured Print / Encrypted Secured PrintMail Box Security Document Storage Space ProtectionAdvanced Box Security Other Document Security Capabilities Watermark / Secure WatermarkCopy Set Numbering Data at Rest Data SecurityHDD and RAM Data Protection Standard HDD Format HDD Data Encryption KitHDD Data Erase Kit Timing of OverwriteInformation Security Removable HDD Kit Performance Impact Using the HDD Data Erase KitJob Log Conceal Function Essentials Workflow Composer Data in TransitEncrypted Secured Print Fax Security Other Fax FeaturesSuper G3 Fax Board and Multi Line Fax Board Fax Storage Space Advanced Box Fax Forwarding & Fax Received NotificationFax Destination Confirmation Fax Mail Box and Advanced Box Fax SecurityNetwork and Print Security Canon Network Printer Kit Only Network SecurityEnabling/Disabling Protocols/Applications Media Access Control MAC Filtering IP Address Filtering SSL Encryption IPv6 SupportAuthentication and Encryption Method Wireless LANKey Exchange Protocol Snmp Community String IeeeScan and Send Virus Concerns for E-mail Reception POP Authentication Before Smtp Smtp AuthenticationMail Server Security Restricting Device Setup Screens Access Management SystemSecurity Monitoring & Management Tools ImageWARE Enterprise Management ConsoleLogging & Auditing Document Scan Lock & TraceCanon imageRUNNER Advance Tracker Canon imageWARE Accounting ManagerImageWARE Secure Audit Manager Common Criteria Canon Solutions & Regulatory RequirementsCommon Criteria Certification Authorized Send for CAC/PIV Conclusion Addendum Canon Security Recommendations Quick ReferenceCanon imageRUNNER Advance HDD Security FunctionsCanon U.S.A., Inc One Canon Plaza Lake Success, NY
Top Page Image Contents