IEEE 2600 : 2008

INFORMATION TECHNOLOGY: HARDCOPY DEVICE AND SYSTEM SECURITY

Institute of Electrical & Electronics Engineers

More details

More info

1 Overview
  1.1 Scope
  1.2 Purpose
  1.3 Document structure
2 Definitions, special terms, acronyms, and abbreviations
  2.1 Definitions
  2.2 Special terms
  2.3 Acronyms and abbreviations
3 Introduction to hardcopy devices
  3.1 Hardcopy device overview
  3.2 Generic architecture
  3.3 Similarities and differences between HCDs and other IT devices
  3.4 Determining the appropriate security strategy for an HCD
4 Operational environments
  4.1 Background
  4.2 Operational Environment A
  4.3 Operational Environment B
  4.4 Operational Environment C
  4.5 Operational Environment D
  4.6 Choosing the most applicable operational environment
5 Hardcopy device assets
  5.1 Overview
  5.2 HCD asset definitions
  5.3 Asset values in the operational environments
6 Hardcopy device threats
  6.1 Overview
  6.2 Threat summaries
  6.3 Threat vectors and descriptions
  6.4 Threat risk levels
7 Threat mitigation techniques
  7.1 Mitigating threats to HCD Availability
  7.2 Mitigating threats to HCD Physical Resources
  7.3 Mitigating threats to HCD User Document and User Function Data
  7.4 Mitigating threats to HCD Confidential and Protected Data
  7.5 Mitigating threats to HCD software
  7.6 Mitigating threats to the HCD External Environment
8 Compliance
  8.1 Compliance security objectives for HCD manufacturers
  8.2 Compliance security objectives for IT professionals
Annex A (informative) Best practices
Annex B (informative) Bibliography

Abstract

Describes security requirements (all aspects of security including but not limited to authentication, authorization, privacy, integrity, device management, physical security and information security) for manufacturers, users, and others on the selection, installation, configuration and usage of hardcopy devices (HCDs) and systems; including printers, copiers, and multifunction devices (MFDs).