Security White Paper
Guidance for
Canon Printer and Multifunction Devices
Functionality in Support of
NIST SP 800-171 and NIST SP 800-172
This white paper describes the cybersecurity measures of Canon devices (Canon printers/multifunction printers) for managing and protecting important information. This white paper also indicates how Canon devices follow security guidelines regarding cybersecurity.
For the target models referred to as "Canon devices" in this White paper, see the following URL.
https://oip.manual.canon/USRMA-7492-zz-CSPS-enUS/
Canon Inc. may update the list of Canon devices and terms of this white paper from time to time in its sole discretion by posting the same in the Manual Portal Site, and we encourage you to review the updates prior to implementing any changes as described herein.
Manual Portal Site: https://oip.manual.canon/
This White Paper covers the following Cybersecurity Guidelines:
• NIST SP 800-171, which is required for organizations, such as corporations and other businesses, universities, NPOs, etc., that conduct business with government bodies such as the United States Department of Defense and Japanese Ministry of Defense
• NIST SP 800-172, a supplement to NIST SP 800-171
These guidelines define requirements for organizations and their systems that manage important information, rather than requirements for specific products and their functions. Most of the guidelines require certain actions to be taken by organizations.
However, it is important that organizations understand how Canon devices in their systems handle and manage important information. The purpose of this white paper is to aid such understanding. Moreover, the institutionalization of CMMC*1 2.0 as a third-party assessment/authentication process based on the requirements of NIST SP 800-171 and NIST SP 800-172 is currently under consideration. Canon Inc. will update this white paper when CMMC becomes institutionalized.
This white paper was created by Canon Inc. and checked together with McAfee Enterprise.
*1 CMMC (Cybersecurity Maturity Model Certification): A system defined by the United States
Department of Defense for certifying cybersecurity maturity models.
Security White Paper Contents
- Preface
- Cybersecurity Measures on Canon Devices
- Identify / Protect
- Detect / Respond / Recover
- Functionality of Support of Cybersecurity Guidelines
- Cybersecurity guidelines
- NIST SP 800-171
- NIST SP 800-172
- Canon Printer / Multifunctionality in Support of Cybersecurity Guidelines
- Summary
- Appendix
- NIST SP 800-171 Requirement Compatibility Chart
- NIST SP 800-172 Requirement Compatibility Chart
- Third Party Review
Guidance for Canon Printer and Multifunction Devices Functionality 4
in Support of NIST SP 800-171 and NIST SP 800-172
Version 1.00
January 15, 2022