Ricoh

Ricoh Network Security White Paper

CaptureIntroduction

This document describes potential network threats and recommended precautions for them.

The products have built-in network services for providing a variety of features for wired and wireless network clients, such as network scanning, printing or faxing, and also client services for accessing network servers running outside the products, such as an LDAP server, Netware server, or Mail server.

This document focuses on how-to protect against potential threats from external attacks. As the products are designed for use inside an Intranet where network clients and servers are protected by firewalls, the products rely on the Intranet’s security policy, like the  security provided by other network servers and clients. However, some customers require more strict security levels for network devices, because potential threats from inside the firewalls are increasing, and some configurations even use a secure connection to the Internet as a part of the Intranet.

To satisfy these demands, the products are all evaluated by security scanning applications during development, and also are checked for known vulnerability issues reported by Internet security organizations, such as CERT Coordination Center (CERT/CC : HTTP://www.cert.org/ ). Whenever we find security vulnerabilities in the products, we provide appropriate countermeasures.

Port Based Network Services and Potential Security Issues

Some MFP/LP services allow write access from network clients. Because of this, some customers may feel that the products are not secure. In fact, the products are secure and provide security measures against potential threats to specific services, but some of these measures can make the services unavailable. For example, disabling the LPD port will make the products unavailable to LPR clients.

Pages

Subscribe to RSS - Ricoh