Search

User GuideIM C2000/C2500/C3000/C3500/C4500/C5500/C6000 series

Encrypting Network Communication

TLS version 1.3 is available for network communication encryption. Also, CHACHA20 256bit can be selected for the encryption strength.

Also, you can now specify whether to activate HSTS.

IM 2500/3000/3500/4000/5000/6000 series support encryption using TLS1.3 and CHACHA20 256bit regardless of the installed version of RICOH Always Current Technology.

Function

Up to version 1.2

Version 2.0

Version 2.2

TLS/SSL version

  • TLS1.0/1.1/1.2

  • SSL3.0

  • TLS1.0/1.1/1.2/1.3

  • SSL3.0

-

Encryption strength

  • AES 128bit, 256bit

  • 3DES 168bit

  • RC4 128bit

  • AES 128bit, 256bit

  • CHACHA20 256bit

  • 3DES 168bit

  • RC4 128bit

-

HSTS

Unavailable

Unavailable

Available

TLS/SSL version

The default setting for TLS1.3 is [Inactive].

To use TLS1.3, set it to [Active] in [Device Management][Configuration][Security][SSL/TLS][SSL/TLS Version] using Web Image Monitor.

Encryption strength

Specify the encryption strength in [Device Management][Configuration][Security][SSL/TLS][Encryption Strength Setting] using Web Image Monitor.

HSTS

When HSTS is active, Web Image Monitor is always accessed via HTTPS.

"HSTS" is selected for [Active] in the factory default settings, but in order to communicate via HTTPS using HSTS, a certificate issued by a certificate authority is required. Obtain a certificate and install it on the machine.

Encrypting Network Communication

After installing the certificate, specify HSTS with the following items from Web Image Monitor. If you change the settings on either screen, the settings on the other screen will change accordingly.

  • [Device Management][Configuration][Security][SSL/TLS] "Permit SSL/TLS Communication" "HSTS"

  • "HSTS" in "SSL/TLS" in [Device Management][Configuration][Security][Network Security]

When activate HSTS, specify the max-age attribute as well.

Note

  • If a certificate issued by a certificate authority is not installed, communication via HTTP will be performed even if [Active] is selected for "HSTS".

  • When accessing Web Image Monitor for the first time after activating HSTS, it communicates via HTTP.

  • The max-age attribute of HSTS is reset each time Web Image Monitor is accessed. For example, if you specify the max-age attribute to 15552000 seconds (6 months) and access Web Image Monitor one month later, the setting will be valid for six months from that point.

  • In order to communicate via HTTPS using HSTS, select [Ciphertext Priority] or [Ciphertext Only] in [Permit SSL/TLS Communication] in [Network Security] or [SSL/TLS].