Canon Paper Shredder- Manuals

6 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security When used in Domain Authentication mode, a user must successfully authenticate using valid credentials on the system’s control panel, Remote UI utility, or web browser when accessed via a network prior to gaining access to...

7 White Paper: Canon imageRUNNER ADVANCE Security System Manager Screen Store ID and Password Screen Section 2 — Device Security Authorized Send for CAC/PIV supports two-factor authentication by prompting users to insert their card into the device’s card reader and requiring them to enter their PIN....

8 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security Access Management System The Access Management System, which is standard on imageRUNNER ADVANCE systems, can be used to tightly control access to device functionality. Restrictions can be assigned to users and groups, to r...

9 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security When the Access Management System has been enabled, users must log in to the device using SSO user authentication. Access Management System supports authentication through local device authentication as well as Active Dire...

10 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security Access Code for Address Book End-users will also have the capacity to place an access number code on addresses in the Address Book. When registering an address, users can then enter an Access Number to restrict the displa...

11 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security USB Block USB Block allows the System Administrator to help protect the imageRUNNER ADVANCE systems against unauthorized access through the built-in USB interface. Access to the device’s USB interface for desktop access a...

12 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Protecting your organization’s confidential information is a mission that Canon takes seriously. From your documents, faxes and e-mails to the underlying data on the internal hard disk drive and in memory, Canon has ...

15 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Document Storage Space Protection Mail Box Security Each imageRUNNER ADVANCE system ships standard with Mail Boxes for storage of scanned and printed data. Mail Box security is provided by the ability to designate a ...

16 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security To prevent the storage of executable files that may contain viruses and other malicious code, system administrators can restrict the types of documents that can be saved to only printable formats, such as PDF, TIFF, ...

18 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security The Device Signature PDF and the Device Signature XPS mode use the device signature certificate and key pair inside the machine to add a digital signature to the document, which enables the recipient to verify the de...

19 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security System administrators can choose to force all scan and copy jobs to apply Document Scan Lock & Tracking code onto each print job, as well as choose whether to allow all or prohibit all copy, scan, send and fax jo...

20 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Standard HDD Format* Best practices, and often company policies, usually recommend that systems be completely wiped by the system administrator prior to the device being reallocated to a new location or prior to the ...

21 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security HDD Data Erase Kit The optional HDD Data Erase Kit, which is now Standard on all Next Generation imageRUNNER ADVANCE Systems, enables system administrators to configure their imageRUNNER ADVANCE to overwrite the inte...

22 White Paper: Canon imageRUNNER ADVANCE Security 1. Copy/Print Mode: a. Group Sort When a user programs a job to be sorted into group sets with no finishing specified, the page data would be overwritten every time a ‘set’ is complete. b. Collate Sort When a user programs a job to be sorted into co...

23 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security 3. Send/Scan Job: b. Send/Scan Data When a user sends or scans a job to another destination, all page data will be deleted or overwritten immediately after the entire job has been sent. c. Fax/I-Fax Data When the “Fa...

24 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Workflow Composer Canon imageRUNNER ADVANCE Workflow Composer enables users and administrators to create custom workflows that automate redundant tasks and provide integration with back-end systems via connectors. Ad...

25 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Super G3 Fax Board Communication Mechanism The modem on the Super G3 Fax Boards does not have Data Modem capability, but only Fax Modem capability. As a result, TCP/IP communication through the phone line is impossib...

26 White Paper: Canon imageRUNNER ADVANCE Security Section 3 — Information Security Fax Storage Space Fax Mail Box and Advanced Box Fax Security Incoming faxes on imageRUNNER ADVANCE systems can be automatically routed to a designated Mail Box or Advanced Box, which can be password-protected to prev...

27 White Paper: Canon imageRUNNER ADVANCE Security Section 4 — Network Security 4.1 – Network and Print Security (Canon Network Printer Kit Only) Canon imageRUNNER ADVANCE systems include a number of highly configurable network security features that assist in securing information when the optional ...

28 White Paper: Canon imageRUNNER ADVANCE Security Section 4 — Network Security IP Address and Port Filtering Using the RX/Print Settings function, the System Manager can limit network access to the device to specific IP addresses or ranges for printing and Settings/Browsing. Up to eight individual ...

29 White Paper: Canon imageRUNNER ADVANCE Security Section 4 — Network Security Authentication and Encryption Method: One of the following methods must be set for the device.  AH (Authentication Header) A protocol for certifying authentication by detecting modifications to the communicated data, in...

30 White Paper: Canon imageRUNNER ADVANCE Security establishes a point-to-point connection only if authentication is successful. The Extensible Authentication Protocol (EAP) is attached to both wired and wireless LAN networks, allowing multiple authentication methods such as cards and one-time passw...

31 White Paper: Canon imageRUNNER ADVANCE Security mail for printing and transfer. The e-mail text data is comprised of character strings. If binary data such as data with a virus is used in the e-mail text, the data will be damaged and data with a virus will be discarded. Even if the data with a vi...

32 White Paper: Canon imageRUNNER ADVANCE Security Section 5 — Security Monitoring & Management Tools Canon provides a number of tools to help organizations enforce their internal company policies and meet regulatory requirements. Whether a single imageRUNNER ADVANCE system is deployed, or a fle...

33 White Paper: Canon imageRUNNER ADVANCE Security Section 6 — Logging & Auditing Few security procedures can completely prevent the intentional leak of confidential information while maintaining high productivity, but if an occurrence does happen it is important to be able to trace it to the so...

34 White Paper: Canon imageRUNNER ADVANCE Security  Track by device  Track by Individual, group or department  Track by black-and-white or color copy/print jobs  Multi-tiered billing codes for charge back purposes  Analyze department/device workload  Enforce usage limits  Export reports  Inp...

35 White Paper: Canon imageRUNNER ADVANCE Security Section 7 — Canon Solutions & Regulatory Requirements Canon is dedicated to providing the most secure multifunctional printers available on the market today. Many of our products meet or exceed the requirements of government agencies and private...

36 White Paper: Canon imageRUNNER ADVANCE Security Section 7 — Canon Solutions & Regulatory Requirements information assurance. IEEE 2600.1 defines requirement specifications for office use as well as government agencies where high level of assurance is required. The IEEE2600.1 Common Criteria c...

37 White Paper: Canon imageRUNNER ADVANCE Security Section 8 — Conclusion Since initially introduced, the highly successful Canon imageRUNNER series of devices have rapidly grown in both the breadth and depth of features and functions. With each release, these devices have become increasingly integr...

38 White Paper: Canon imageRUNNER ADVANCE Security Section 9 — Addendum 9.1 – Canon Security Recommendations Quick Reference Each customer’s needs are different, and while the security of corporate data is ultimately the responsibility of the customer, the security technologies outlined below may he...

39 White Paper: Canon imageRUNNER ADVANCE Security Section 9 — Addendum 9.2 – Canon imageRUNNER ADVANCE Security Features Supported Device List Security Features iR-ADV C9000PRO/ C7000/C5000/ C2000 Series iR-ADV 8000/6000/ 4000 Series iR-ADV C5200/C2200, 6200/8200 Series Device Based Authentication ...

40 White Paper: Canon imageRUNNER ADVANCE Security 9.3 – IEEE 2600.1 CC Functional Requirements 9.4 – IEEE 2600.1 CC Settings/Registration Items Preferences

41 White Paper: Canon imageRUNNER ADVANCE Security 9.4 – IEEE 2600.1 CC Settings/Registration Items Function Settings Management Settings *1 Same as the setting at the time of shipment *2 A general user cannot operate the following functions when [ON] is selected for [Restrict Auto Reset Time]. - [A...

White Paper: Canon imageRUNNER ADVANCE Security The information provided in this document is the most current information available at the time of its creation. Canon hereby expressly disclaims all warranties of any kind, express or implied, statutory or non-statutory, in relation to the information...

Canon imageRUNNER ADVANCE systems also ship with SSO-H, which supports directauthentication against an Active Directory domain using Kerberos or NTLMv2 as the authentication protocol. SSO-H does not require any additional software to perform the user authentication as it is able to directly communic...

The following describes the various Base access levels (roles) that are available: The following functions and features can be restricted: 8 White Paper: Canon imageRUNNER ADVANCE Security Section 2 — Device Security Privileges by Access Level Predefined Role Access Privileges Administrator Given pr...

When the Access Management System has been enabled, users must log in to the device using SSOuser authentication. Access Management System supports authentication through local deviceauthentication as well as Active Directory using SSO-H*, which includes support for KerberosAuthentication. Once a us...

Print Driver Security Features Print Job Accounting A standard feature in Canon’s printer drivers, print job accounting requires users to enter anadministrator-defined password prior to printing, thereby restricting device access to thoseauthorized to print. Printing restrictions can be set using De...

Protecting your organization’s confidential information is a mission that Canon takes seriously. From your documents, faxes and e-mails to the underlying data on the internal hard disk drive and in memory, Canon has built in many controls to help ensure that your information does notbecome compromis...

Document Storage Space Protection Mail Box Security Each imageRUNNER ADVANCE systemships standard with Mail Boxes for storageof scanned and printed data. Mail Boxsecurity is provided by the ability to designate a unique password for access.Once a document is stored in the Mail Box(if the Mail Box is...

14 White Paper: Canon imageRUNNER ADVANCE Security Administrators can manage the Advanced Box feature through the Remote UI interface and perform the following actions: • Create user accounts and define type (Admin vs. End User)• Activate authentication and enable Personal Space• Register network de...

15 White Paper: Canon imageRUNNER ADVANCE Security Digital Signature PDF (Device and User Signature) Within Scan and Send, users can add digital signatures that verify the source and authenticityof a PDF or XPS document. When recipients open a PDF or XPS file that has been saved with adigital signat...

16 White Paper: Canon imageRUNNER ADVANCE Security The Scan Lock feature enables the following restrictions to be applied to a document: • Complete Restriction: No one can make any copy/send/fax.• Password Authentication: Allows the ability to make copy/send/fax only if the proper password is entere...

17 White Paper: Canon imageRUNNER ADVANCE Security information from environments, where sensitive information is processed, by analyzing the hard disks from these devices. In order to help protect your sensitive and confidentialinformation Canon imageRUNNER ADVANCE systems include a standard hard di...

Essentials Workflow Composer Canon imageRUNNER ADVANCE Essentials includes the Workflow Composer component toenable users and administrators to create custom workflows that automate redundant tasksand provide integration with back-end systems via connectors. Administrators are able to create workflo...

3.3 – Fax Security Super G3 Fax Board and Multi Line Fax Board Canon imageRUNNER ADVANCE systems that support Super G3 fax capabilities with the optionalSuper G3 Fax Board installed can be connected to the Public Switched Telephone Network for sendingand receiving of fax data. In order to maintain t...

Advanced Box Fax Forwarding & Fax Received Notification Similar to the Fax Forwarding function, imageRUNNER ADVANCE systems support the capabilityto define separate forwarding rules based on the line upon which the fax was received. Eachfax can be routed to a specific shared or personal space Ad...

4.1 – Network and Print Security (Canon Network Printer Kit Only) Canon imageRUNNER ADVANCE systems include a number of highly configurable network security features that assist insecuring information when the optional Network Print Kit is installed. Standard network security features include the ab...

See the imageRUNNER ADVANCE system manual for the specific device in question for additionalinstructions on registering IPSec-based security policies. Authentication and Encryption Method: One of the following methods must be set for the device. • AH (Authentication Header) A protocol for certifying...

There are three possible scenarios that are explored: • • D Da atta a w wiitth h a a vviirru us s a atttta acch he ed d iin n tth he e e e--m ma aiill:: All file attachments except for ‘TIFF” files received in the e-mail are discarded immediately afterreception. • • V Viirru us se es s p prre ette e...

Canon provides a number of tools to help organizations enforce their internal company policies andmeet regulatory requirements. Whether a single imageRUNNER ADVANCE system is deployed, or afleet of them, these solutions provide the ability to audit usage and limit access to features and functions en...

Few security procedures can completely prevent the intentional leak of confidential information whilemaintaining high productivity, but if an occurrence does happen it is important to be able to trace itto the source. Canon has developed a number of cutting-edge technologies to provide administrator...

6.2 – Canon imageWARE Accounting Manager Canon imageWARE Accounting Manager provides enhanced audit tracking capabilities to the end-userenvironment. In addition to tracking usage by Department ID or SSO account, imageWARE AccountingManager in conjunction with SSO will provide the ability to track u...

Canon is dedicated to providing the most secure multifunctional printers available on the markettoday. Many of our products meet or exceed the requirements of government agencies and privateentities as they relate to security certifications and industry regulations. 7.1 – Common Criteria Beginning o...

Since initially introduced, the highly successful Canon imageRUNNER series of devices have rapidlygrown in both the breadth and depth of features and functions. With each release, these devices havebecome increasingly integrated within the IT and network infrastructure. As with any networkeddevice, ...

9.1 – Canon Security Recommendations Quick Reference Each customer’s needs are different, and while the security of corporate data is ultimately the responsibility of the customer, the security technologies outlined below may help support your organization's information security needs. The following...

36 White Paper: Canon imageRUNNER ADVANCE Security 9.2 – Canon imageRUNNER ADVANCE HDD Security Section 9 – Addendum Common Criteria Certification EAL3 N/A Supported Devices iR ADV C5051, C5045, C5035, C5030,C7065, C7055, C9075 PRO, C9065 PRO iR ADV C5051, C5045, C5035, C5030,C7065, C7055, C9075 PRO...

The information provided in this document is the most current information available at the time of its creation. Canonhereby expressly disclaims all warranties of any kind, express or implied, statutory or non-statutory, in relation to theinformation provided in this document. In no event shall Cano...