attachment-0001
<br><font size=2 face="sans-serif">Hi All,</font>
<br>
<br><font size=2 face="sans-serif">Here is my suggested text with Ira's
agreement. Also thanks for Ira's minor editorial changes.</font>
<br>
<br><font size=2 face="sans-serif">"An MFD is a network device which
is subject to many threats to the<br>
confidentiality and integrity of sensitive data transmitted over the network<br>
as well as data at rest within the MFD. Many MFDs today also have the<br>
ability to interact with and access external resources, which poses security<br>
threats to other resources on the network. The design of future Imaging<br>
Services should consider the following security measures in protecting
MFD<br>
data and operational security as well as its surrounding network resource<br>
security:<br>
</font>
<br><font size=2 face="sans-serif">(1) Include the ability to use industry
standard network security protocols<br>
to authenticate users' right to MFD operations that have direct or indirect<br>
impacts on the confidentiality and integrity of the sensitive data at rest<br>
according to the local site security policy.<br>
(2) Include the ability to use industry standard secure network protocols
to<br>
transmit sensitive data over the network according to the local site<br>
security policy.<br>
(3) Include the ability to use Industry standard cryptographic algorithms<br>
compliant to the local site policy to protect internal MFD data at rest.<br>
(4) Include security state attributes that can be monitored and/or validated<br>
by Industry standard network access protocols to prevent or minimize the<br>
threats that the MFD can pose to other network resources if these security<br>
state attributes are compromised.<br>
(5) Include service operation and internal data access control policies
in<br>
order to support the local site security policy.<br>
(6) Include the ability to generate and store audit log records in Industry<br>
standard formats for all security related events in accordance with the<br>
local site security policy."</font>
<br>
<br><font size=2 face="sans-serif">-Nancy</font>
<br><font size=2 face="sans-serif"><br>
--------------------------------------------------------------------------------------------------<br>
Nancy Chen, PWG Vice-Chair<br>
Principal Engineer<br>
Solutions and Technology<br>
Oki Data<br>
2000 Bishops Gate Blvd.<br>
Mt. Laurel, NJ 08054<br>
Phone: (856)222-7006<br>
Email: Nancy.Chen@okidata.com</font><br />--
<br />This message has been scanned for viruses and
<br />dangerous content by
<a href="http://www.mailscanner.info/"><b>MailScanner</b></a>, and is
<br />believed to be clean.