Samsung Security Solutions
Samsung Security Solutions
Security Compliance Solutions
Samsung Security Features
You may not realize it, but every business can benefit from security. Think of it this way: Would you be
comfortable allowing your competitors full access to your information? Is there sensitive financial information
or private customer information such as Credit Cards and Social Security numbers that should be protected?
Vulnerabilities that you may never have considered exist everywhere.
For example, confidential information could be accidentally or even intentionally copied from stored documents,
taken from the output tray, or faxed without authorization. Any information stored on a local PC can be printed
without authorization. Information such as stored documents, email documents or print data can be intercepted
from across a WAN, the internet/intranet, or VPN. A user from outside can even obtain or intercept confidential
company or sensitive customer information through a fax line or corporate LAN without permission.
Worse yet, without security features, certain types of companies could be operating under regulatory noncompliance, leading to regulatory agency penalties or lawsuits from affected customers and clients.
Some of the most common vulnerabilities
associated with an unsecure MFP include:
• Lawsuits
• Identity Theft
• Loss of Access The importance of the information that is flowing through private and public
devices has resulted in the need for broad regulations to protect this information.
• Unauthorized Use
• Stolen Information
• Loss of Production
Samsung is continuously working with our industry partners to create compatible
MFPs that meet the regulatory requirements of today’s information infrastructure.
The MFP security features presented in this paper are able to meet or exceed the
current regulatory requirements of our customers.
Rest secure in the knowledge that Samsung is looking out for you. We include
security features at no additional cost (not the case with our competitors). Our
leading-edge security features are based on industry standard requirements set
forth by several regulatory and privacy organizations. These security features
meet the needs of vertical market customers such as the federal government,
education, healthcare and financial services.
Some of the important regular and industry standards that
affect the security requirements for Printers/MFPs:
Ask yourself these questions:
• Does your multifunction device feature an access code to lock out
unauthorized users?
• Can your network administrator remotely enable/disable your MFP’s ports to
control usage?
• Can digital images on your device’s hard disk drive be overwritten or encrypted?
• Does your MFP track usage by group or user?
• Do you need to authenticate your users?
• Do you have a secure method to erase all data at the end of the lease?
Access Security
Network and Fax Security
Scanning Security
Document Security
• HIPPA
• SOX
• GLBA
• FERPA
• FISMA
• HSPD-12
• Common Criteria
• IEEE™ 2600-2008, IEEE 2600.1-2009, IEEE 2600.2-2009
Samsung has the answers to these and all your security
questions and requirements.
Management Security
Data Security
Samsung security solutions.
Security with simplicity.
If you work with sensitive information, from healthcare to finance to government, the need for security is a given.
And with multiple network access points, it can be a complex situation.
As one of the world’s foremost technology leaders, Samsung can offer your company solutions that make security
simple. We understand the intricacies and sensitivities of system security, and create machines that are easy to
incorporate into your existing processes.
We also remember you have a job to do and a business to run, so we make our machines easy to use, as well.
Samsung provides businesses across the country with advanced features that are simple to use, and that are
designed to save time and money. In fact, we invest billions every year to continually provide you with the very
latest in technology and reliability.
No matter what kind of delicate information you’re working with, whether you’re a small physician group or a major
government contractor, your business can rest secure in the knowledge that Samsung is working for you.
Attacker
Access Control
Fax Security
LAN
Regulatory
Compliance
Network Security
PSTN
Internet
Data Security
System Administrator
Intranet
Scanning Security
Resistance to Viruses
or Malicious Software
Unauthorized User
Access Control
Network Security
Secure Printing
Allows a user to set a PIN or to use their access card (requires
optional solutions) in order to retrieve a print job from the device.
The job remains on the hard disk drive (HDD) until the user
retrieves the job or the data is removed from the HDD.
USERNAME
Tom Anderson
PASSWORD
xxxx
Admin Authentication
The MFP requires the system administrator
to enter authentication before permitting
access to the system management items.
System administrators include SyncThru™ Web
Service administrators and the local system
administrators. The authentication process
for the SyncThru™ Web Service administrator
uses an account and a password on the user
interface, while the authentication process for
the local MFP system administrator uses a PIN
number on the MFP user interface.
login
USER
Secure Communications
All communications to and from most Samsung
MFP’s can utilize Secure Socket Layer (SSL) for
secure transmission over the network, and most
Samsung devices also support SMB, IPv6, 802.1x, IPSec, and
SNMP3. Some MFPs also support Trusted Platform Module (TPM).
Printer
USERNAME
Tom Anderson
PASSWORD
xxxx
login
HTTPS
Allows web traffic to be encrypted, so that remote management
via the printer and MFP’s web pages can be performed securely.
(or Access Card)
Scanning Security
IP ADDRESS
MAC and IP Filtering
MAC and IP Filtering
Limits access to select MAC/IP
addresses.
MAC
ADDRESS
IP ADDRESS
LDAP (Lightweight Directory Access Protocol)
An application protocol for querying and modifying directory
services running over TCP/IP.
User Authentication
Authenticates users against the
customer’s corporate directory via LDAP,
LDAP over SSL, or Kerberos.
LDAP
LIGHTWEIGHT
DIRECTORY
ACCESS
PROTOCOL
Network Authentication (Secure Scanning)
The Samsung MFP prevents unauthorized use of
the installed network options (Network Scanning,
Scan-to-Email, and Scan-to-Server). The network
options available are determined by the system
administrator. To access a network service,
the user is required to use their access card or
provide a user name and password, which is
then validated by the designated authentication
server. User Authentication can protect the
MFP from unauthenticated user access.
Unauthenticated users can see the basic status
of the MFP, but cannot configure MFP settings.
User Authentication needs to authenticate
users who want to change MFP settings or use
functions like Copy, Fax, Scan and Printing.
User Authentication can be configured by Local
Authentication or LDAP Authentication.
Card Reader Support (Requires optional solution)
Ensures that only badged employees can access the network
through its devices. Includes HID Cards or CAC/PIV Cards.
Address Book Lookup via LDAP over SSL
Ensures all information is exchanged via LDAP, including the
user’s credentials, name, email address and fax.
Data Security
HDD Erase
Eliminates residual data by overwriting the
entire disk (automatic or on-demand).
HDD Encryption
Allows all residual data on the hard drive
of devices to be encrypted. Numbers are
encrypted to preserve the confidentiality and
privacy of the data. All HDD data can be
erased on demand at the end of the lease.
Fax Security
Secure Fax Reception
Samsung fax devices comply with ITU (International
Telecommunications Union) standards. If any of the data
received by the fax device does not meet these standards, the
transmission is rejected.
Samsung’s Secure Receiving mode feature can prevent received
faxes from being accessed by unauthorized people. You can turn
on Secure Receiving mode to restrict printing of received faxes
when the machine is unattended. In Secure Receiving mode, all
incoming faxes go into memory. A four-digit PIN is established at
the set-up of this feature and must be entered in order to retrieve
the stored faxes.
USERNAME
Tom Anderson
PASSWORD
xxxx
login
Regulatory Compliance
Federal Government/Military Requirements:
Common Criteria Certification
Common Criteria Certification provides independent, objective
validation of the reliability, quality and trustworthiness of IT
products. It is a standard that customers can rely on to help them
make informed decisions about their IT purchases. Common
Criteria sets specific information assurance goals including strict
levels of integrity, confidentiality and availability for systems and
data, accountability at the individual level, and assurance that all
goals are met. Common Criteria Certification is a requirement of
hardware and software devices used by the federal government
on national security systems. In 1994, Common Criteria were
created for IT security evaluation standards worldwide. ISO 15408
resulted when these Common Criteria became international
standards in 1999. Some MFPs are also certified for IEEE 2600.12009 and 2600.2-2009 standards.
System Audit Logs
The Secure Management system
provides logs, backup and email
notification, to give users an overall view
of their secure documents even after
they have been printed and stored.
Samsung
Electronics
Co., Ltd.
MultiXpress
C9350ND
Vertical Market Regulations
Vertical
Regulation
Description
Banking
BASEL II
Basel II is the second of the Basel Accords, which are recommendations on banking laws and regulations issued by the Basel Committee on Banking Supervision. The purpose of Basel
II, which was initially published in June 2004, is to create an international standard that banking regulators can use when creating regulations about how much capital banks need to
put aside to guard against the types of financial and operational risks banks face.
Banking/Financial
SEC 17a-4
This Act requires the creation and maintenance of records of securities transactions for the purpose of review and audit in order to better protect investors and the U.S. economy.
Banking/Financial
GLBA
Gramm-Leach-Bliley Act contains a Safeguards Rule which requires financial institutions to have in place a comprehensive security program to ensure the security and confidentiality of
customer information.
Education
FERPA
Family Educational Rights and Privacy Act regulations provide that educational agencies and institutions that receive funding under a program administered by the U.S. Department of
Education must provide students with access to their education records, an opportunity to seek to have the records amended, and some control over the disclosure of information from
the records.
General
US Patriot Act
US Patriot Act is federal legislation in the U.S passed soon after the Sep 11, 2001 terrorist attacks. The Act expands the authority of U.S. law enforcement for the stated purpose of
fighting terrorist acts in the U.S. and abroad.
General
SOX
The Sarbanes-Oxley act was enacted to protect shareholders from accounting errors and fraudulent practices. It defines which records are to be stored and for how long.
Healthcare
HIPAA
Title II of the Health Insurance Portability and Accountability Act (HIPAA), known as the Administrative Simplification (AS) provisions, requires the establishment of national standards for
electronic health care transactions and national identifiers for providers, health insurance plans and employers. It helps people keep their information private.
Government
Common Criteria
Standard for certifying security features on a device.
Government
IEEE 2600-2008
Security standard for printers/MFPs.
Product Information
SCX-8030ND/8040ND
CLX-9250ND/9350ND
SCX-6545N/6555N
CLX-6250FX
SCX-5935FN
CLX-8540ND
SCX-5835FN
ML-4050ND
ML-4551NDR
CLP-770ND
Product Category
Multifunction A3
Color
Multifunction A3
Multifunction
Color
Multifunction
Multifunction
Color
Multifunction
Multifunction
Printer
Printer
Color Printer
Functions
Print/Copy/
Scan/Fax1
Print/Copy/
Scan/Fax1
Print/Copy/
Scan/Fax1
Print/Copy/
Scan/Fax
Print/Copy/
Scan/Fax1
Print/Copy/
Scan/Fax1
Print/Copy/
Scan/Fax
Print
Print
Print
Speed
30/40 ppm
25/35 ppm
45/55 ppm
25/25 ppm
35 ppm
40/40 ppm
35 ppm
40 ppm
45 ppm
33/33 ppm
Access Codes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
N/A
N/A
N/A
User Authentication
Yes
Yes
Yes
Yes
Yes
Yes
Yes
N/A
N/A
N/A
Secure Printing
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes2
Yes2
Yes2
3rd Party Access
Control
Yes
Yes
Yes
Yes
Yes
Yes
No
No
No
No
CAC
Yes5
Yes5
Yes
Yes
Yes5
Yes
Yes
N/A
N/A
N/A
Confidential Fax
Yes3
Yes3
Yes3
Yes
Yes3
Yes3
Yes
N/A
N/A
N/A
Separate Fax &
Network Connections
Yes3
Yes3
Yes3
Yes
Yes3
Yes3
Yes
N/A
N/A
N/A
Junk Fax Filter
Yes3
Yes3
Yes3
Yes
Yes3
Yes3
Yes
N/A
N/A
N/A
Common Criteria
Yes
Yes
Yes
Yes
Yes
Yes
Yes
N/A
N/A
N/A
EAL Validation Level
EAL34
EAL34
EAL3
EAL3
EAL3
EAL3
EAL3
N/A
N/A
N/A
Hard Disk Encryption
Yes
Yes
Yes
Yes
Yes
Yes
Yes2
Yes2
Yes2
Yes2
Overwrite Method
Random Data
Random Data
Random Data
Random Data
Random Data
Random Data
Random Data
Random Data
Random Data
Random Data
Auto Overwrite After
Each Job
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes2
Yes2
Yes2
Manual Overwrite
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes2
Yes2
Yes2
IP Filtering
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
MAC Address Filtering
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
Yes
No
Port Management
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
Yes
No
IPv6, IPSec
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
Yes
Yes
SMNPv3
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
No
Yes
SMB Support
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
No
No
SSL
Yes
Yes
Yes
Yes
Yes
Yes
Yes
No
Yes
Yes
TPM
Yes
Yes
N/A
N/A
N/A
N/A
N/A
N/A
N/A
N/A
Embedded Log File
Yes
Yes
Yes
Yes
Yes
Yes
Yes
N/A
N/A
N/A
Scan to E-mail
Yes
Yes
Yes
Yes
Yes
Yes
Yes
N/A
N/A
N/A
Security Features
Access Control Features
Fax Security
Data Security
Network Security
Audit Trail
Optional Function 2Included with Optional Hard Disk Drive 3Included with Optional Fax Function 4IEEE 2600.1-2009 5Q2-2011
1
samsung.com/printer
Product Support: 1-866-SAM-4BIZ • 1-800-SAMSUNG
ENERGY STAR
SAMSUNG Toner Recycling Program
samsung.com/starus
©2011 Samsung Electronics America, Inc. Samsung is a registered mark of Samsung Electronics Co., Ltd.
Specifications and designs are subject to change without notice. Non-metric weights and measurements
are approximate. All brand, product, service names and logos are trademarks and/or registered trademarks
of their respective manufacturers and companies. Simulated screen images. See samsung.com for
detailed information. Printed in USA on 50% recycled (30% post-consumer waste) paper using soy inks.
PNT-SECURITYBRO-APR11T
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertising