 |
» |
|
|
 |
HP provides a wide array of secure printing and imaging solutions for HP LaserJet printers and HP MFPs to help you simply and easily elevate the status of these devices to active components of your overall security plan. We use security standards and recommended protocols to help safeguard your business with capabilities that better secure your devices, protect critical information on the network, and simplify the way you monitor and maintain your printing and imaging environment.
HP devices support a wide range of industry standard security protocols, as well as class-differentiating functions and solutions allowing for secure management, device integrity, privacy and access control.
| • |
HP devices have the ability to address security needs of specific industries, such as Healthcare, Financial Services and Government. |
|
| • |
IP security available through JetDirect allows for strong authentication, confidentiality and integrity of communications, and can secure network printing and scanning protocols. |
|
| • |
HP is the first printer vendor with a security checklist approved by the National Institute of Standards and Technology (NIST). |
|
Secure the device |
|
|
| Secure all confidential and business-critical data on your HP device and ensure only authorized individuals have access to that data. HP has features in place that protect information and eliminate unauthorized usage of your devices. Important options to consider when securing your devices include: |
|
 User authentication
|
|
Identifies the user and controls what they are allowed to do.
HP MFP access controls can require users to be authenticated before accessing MFP functions via the device control panel and can restrict access to digital sending functions and digital sending e-mail destinations based on the user. HP MFPs can also control access to installed functions and installed applications based on the user.
Device usage may also be tracked with associated users. With HP Digital Sending Software, all HP MFPs and digital senders offer server-based Windows NTLM, LDAP, Kerberos, and Novell authentication and authorization that integrates with your existing infrastructure to verify user identity.
Server-based and device based access– All HP MFPs and digital senders offer server-based Windows NTLM, LDAP, Kerberos, and Novell authentication and authorization that integrates with your existing infrastructure to help your organization manage user access, prevent unwanted printing and digital sending, and help secure access to the management utility to prevent unwanted device configurations. With the exception of the HP 9085mfp and HP Color 9850mfp, all HP MFPs have device-based LDAP authentication (embedded from HP or installable from Capella Technologies). In addition, most HP MFPs have device-based Kerberos available. The HP Officejet 9130 All-in-One supports authentication, as well, via the optional C8267A Secure Digital Sending Solution DIMM. A wide variety of numeric keypad, proximity, and swipe-card solutions are also available, providing a very rich set of capabilities to meet your particular needs.
Color access control– HP's suite of color access control features, available on some HP LaserJet MFPs and printers, lets you closely monitor color use, enable or disable color by individual users or groups or even applications, disable color printing and copying entirely until it's needed for special projects, and report costs back to specific clients, projects, workgroups, or departments. |
|
|
HP Secure Erase for Imaging and Printing
|
|
To meet the need for higher level printing and imaging security, Hewlett-Packard created HP Secure Erase for Imaging and Printing.
This capability allows the administrator to erase any print, scan, fax and copy jobs from storage devices. Several levels of erase security are provided to help ensure data cannot be accessed by unauthorized users. Click here for further information on availability and specifications:
|
|
|
HP and third party PIN retrieval and pull printing
|
|
Have documents held and released only to the person who printed them.
PIN and Pull Printing allow print jobs to be saved electronically in the device, or on an external server, until the authorized user is ready to print them. The user provides a simple PIN code, or uses an authentication method supported for other HP MFP walk-up operations, to release the print job. HP printers and MFPs provide native support for PIN printing, while
|
|
|
Protect information on the network |
|
|
| With more and more devices on the network, your business is at greater risk. Protect the integrity of your entire network infrastructure, including imaging and printing, with HP secure solutions--data encryption and secure networking protocols and data paths. |
|
HP Jetdirect
|
|
If your IT environment uses IPsec networking, utilize the new HP Jetdirect 635n card to take advantage of the IPsec secure networking
| » |
HP Jetdirect 635n IPv6/IPsec Print Server |
| • |
HP Jetdirect Whitepapers:
|
| • |
Learn more about Secure Networking Protocols
| • |
Practical deployment of IPsec (15.8 MB, PDF) and Practical deployment of IPv6 (1.7 MB, PDF) |
| • |
SNMPv3. SNMPv3 provides strong authentication and encryption of management communications and is used by HP Web Jetadmin to provide fleet management of HP imaging and printing devices. For more information see the Security FAQ. |
| • |
HTTPS. HTTPS using SSL/TLS provides web protocol security and provides secure management using the device's embedded web server, as well as security for web services such as consumable reordering. |
|
|
|
|
DSS Secure Send
|
|
If your IT environment is a traditional networking environment, DSS secure send capabilities provide encryption to secure the transfer to the DSS server. The secure send capability of the Digital send software for HP MFPs provides a secure path from the MFP across the network. Digitally sent documents are encrypted as part of the secure path the applications, folders and email. |
|
|
Additional capabilities
|
|
| • |
Fax protected from LAN implementation prevents bridging of LAN-to-fax or fax-to-LAN |
| • |
Secure IPP support
The secure form of the IPP protocol using SSL/TLS is available on the HP Jetdirect 625n and HP Jetdirect 635n cards and requires some additional configuration. Secure IPP is primarily intended for small networks lacking sophisticated IT administration. While Secure IPP may be used in large enterprise environments, IPsec is the recommended protocol for securing printing and scanning functions. |
|
|
|
Effectively monitor and manage |
|
|
| Easily monitor and maintain the security of your I&P system, and more readily comply with audit and privacy requirements with HP security solutions. From fleet configuration to checklists to audit trails, HP helps boost security and reduce risk. |
|
HP Web Jetadmin
|
|
Not only can HP WJA secure itself against unwanted users, it can secure the devices it manages against unwanted access.
| • |
Use the new "discovery of un-password protected Embedded Web Server (EWS) passwords" feature of HP WJA to easily make sure passwords are set. |
| • |
Utilize the extensive fleet management capabilities of HP WJA to efficiently manage the security setting across the fleet. |
|
|
|
Report Generation Plug-in 3.0 (RGP)
|
|
The free plug-in to HP WJA allows you to utilize audit features to track behavior and get user-level tracking of jobs. |
|
|
HP Output Server
|
|
HP Output Server provides secure and reliable delivery of critical business documents from ERP systems such as SAP R/3 and Oracle. |
|
|
Powerful 3rd party audit capabilities
|
|
HP partners with some of the industry's leading security software solution providers to bring customers advanced offerings through unique partner integrations. See the HP Solutions Idea Book for further details. |
|
|
Configuration checklists
|
|
The U.S. National Institute of Standards and Technology has instituted a security checklist program. Checklists can be developed not only by IT vendors, but also by consortia, academia, industry, federal agencies and other governmental organizations, and others in the public and private sectors. A security configuration checklist (sometimes referred to as a lockdown guide, hardening guide or benchmark configuration) is essentially a document that contains instructions or procedures for configuring an IT product to a baseline level of security. Many technology devices have approved security checklists. However, Hewlett-Packard is the first printer/MFP manufacturer to have a security checklist approved and published by NIST. Unlike other certifications, which often certify only certain features, the checklist program locks down or secures the entire HP MFP solution.
HP considers security checklists as a means to significantly improve the security capabilities' ease of configuration for imaging and printing products. HP submitted a security checklist for the HP LaserJet 4345 (1.65MB, PDF) in September 2005 . At the time of submission, HP was the only hardcopy manufacturer to submit a checklist for review. HP plans to develop additional checklists for hardcopy devices in the future. |
|
|
|
|
|
|
|
|
|
Spotlight
Printable resources
| » |
HP Access Control Printing Solutions (203KB, PDF) NEW! |
|
|
| » |
White Paper - Key Data and Privacy Regulations for Businesses (288KB, PDF) |
|
|
| » |
White Paper - Practical Considerations for Imaging and Printing Security (171KB, PDF) |
|
|
| » |
HP Security Solutions FAQ's (665KB, PDF) |
|
|
| » |
HP LaserJet MFP end-to-end Security (152KB, PDF) |
|
|
| » |
JetDirect 635n IPv6/IPsec internal print server (116KB, PDF) |
|
|
| » |
IPv6 FAQ's (91KB, PDF) |
|
|
| » |
The Philosophy of Security whitepaper (300KB, PDF) |
|
|
| » |
HP LaserJet and Color LaserJet MFP Security Checklist (133MB, PDF) |
|
|
| » |
HP Jetdirect and SSL/TLS - whitepaper (10.2MB, PDF) |
|
|
|
|
|
|
Printable version
