Recommended Security Settings - 4. Private (Home) Network
This sheet provides a list of the security settings configured for this environment type.
Security settings are configured to respond to external threats to a home network or the wireless access point function of the machine.
IMPORTANT
- These settings do not completely guarantee the security of the machine.
- The item names in this list of settings may differ or not exist, depending on the model of your machine.
Security Settings Configured for This Environment Type
The values are reflected for the following settings.
[LUI]: Settings on the control panel.
[RUI]: Settings in the Remote UI.
| Item | Setting Value | Threat Responded to | |
|---|---|---|---|
| [LUI]: Printer settings > Firmware update > Update notification settings | Enable | Denial of Service | |
| [LUI]: LAN settings > Wi-Fi > Advanced > WSD settings > WSD scan from this printer | Disable | Tampering | Repudiation |
[LUI]: LAN settings > Wi-Fi > Advanced > LPR protocol settings [RUI]: System info and LAN settings > Advanced setup > LPD print > Enable LPR protocol |
Disable | Tampering | Information Disclosure |
[LUI]: LAN settings > Wi-Fi > Advanced > RAW protocol [RUI]: LAN settings > Advanced setup > LPD print > Enable RAW protocol |
Disable | Tampering | Information Disclosure |
| [RUI]: LAN settings > Advanced setup > SNMP settings / SNMPv1 settings | Disable | Information Disclosure | |
| [LUI]: Printer settings > Web service setup > Web service connection setup > IJ Cloud Printing Center setup > History setting for this service | Do not save | Spoofing | Information Disclosure |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Maximum | 1.3 | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Minimum | 1.2 | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Encryption algorithm > AES-256-CBC | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Encryption algorithm > AES-128-CBC | Off | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Encryption algorithm > AES-256-GCM | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Encryption algorithm > AES-128-GCM | Off | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Key exchange algorithm / RSA | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Key exchange algorithm / ECDHE | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > Key exchange algorithm / X25519 | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > HMAC algorithm / SHA1 | Off | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > HMAC algorithm / SHA256 | On | Information Disclosure | |
| [RUI]: Security > TLS server settings > Advanced TLS settings > HMAC algorithm / SHA384 | On | Information Disclosure | |
[LUI]: LAN settings > (Wi-Fi / Wireless Direct / Wired LAN) > Advanced > Easy wireless connect [RUI]: System info and LAN settings > LAN settings > Advanced setup > Easy wireless connect settings |
Disable | Information Disclosure | [RUI]: Security > Encryption settings > Prohibit use of weak encryption | On | Tampering | Information Disclosure |
