HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario descargar pdf (Pagina 78)

Secure Internet Print Protocol

When enabled, the Internet printing protocol over SSL (IPPS) provides a secure method for sending

print jobs to the device over the Internet or an intranet. (A properly configured IPPS client system is

required.) Secure IPPS uses identity certificates in the device. Consider installing CA signed

certificates before enabling. Select the check box to assess Secure Internet Print Protocol (IPPS) and

then select whether to enable or disable the item. IPP can use HTTPS as the transport mechanism to

achieve secure IPP printing and is best known as IPPS.

The IPP over HTTPS transport binding and URI scheme specification was defined to enable high

availability combined with secure operation in popular dynamic environments such as wireless

hotspots in airports, hotels and cafes. The secure form of the Internet Printing Protocol (IPP) uses

SSL/TLS, with TLS as the best practice recommendation. By securing IPP, clear text print job data is

replaced with secure, encrypted data. Securing IPP doesn’t require additional network hardware and

provides easy compliance with some data protection laws. IPP encryption protects against data

leakage from network communications, assuming SSL/TLS is secure and assuming there are no

compromised Certificate Authorities issuing bogus certificates for your domain. Instead of utilizing

device default self-signed certificates, security is enhanced by deploying unique identity certificates

with higher levels of encryption strength and key length. HP IPSC version 2.1 provides an easy,

automated method for deploying unique identity certificates across the printer fleet.

Port 631 is used for both IPP and IPPS, referring to an IPP print service or a network managed by such

a service for the purpose of IETF consistency. IPP/IPPS targets of attack are typically associated with:

 induced congestion of the network via the compromising of the routing infrastructure

 the compromising of normal IPP behavior via forged packets or TLS version downgrades

 the corruption of documents being transferred over IPP

 Faked or rogue IPP secure print service

 Unauthorized or unauthenticated IPP clients

If IPP printing is desired or required, it is recommended that IPPS be used to secure the print job data

and certificates to authenticate the client. Company firewall protection can also be deployed to

protect against outside abuse. If IPPS printing is not required, disabling the protocols is

recommended.

1 2 ... 73 74 75 76 77 78 79 80 81 82 83 ... 115 116

Sin comentarios

HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario Pagina 78