| |
 |
Information Security That Benefits Manufacturing
|
The Ricoh Group views information security
measures as risk management tools and as strategic tools to increase
operational efficiency and strengthen control of intellectual
property. One example is the authentication structure for electronic
components advocated by the Imaging System Production Business
Group, the Production Strategic Center and the Electronic Components
Technical Administration Office.
Balancing Information
Use and Confidentiality |
 |
|
|
Electronic components are at the core of products. There are countless
variations of these many items. This variety poses a serious challenge
to information control of these components. A number of questions
must be answered for better control. For example, what is an efficient
way to administer control that encompasses collection, classification,
maintenance and storage of electronic components? What is the
path from the present state to a collective procurement scheme
for these components? How should such components be refined and
enhanced for increased operability and ease of use so that they
can be exactly what they need to be? The goal here is that their
best service is extended for product development and design and
for the manufacturing launch at the factory. Also, what confidentiality
control should be in place? Leaking information to third parties
and abusing information could cause fatal damage to a corporation.
Actions taken by Ricoh were: (1) development of easy-to-use databases
with extensive information; and (2) authentication and access
control and access restriction based on information security technologies.
The dual measure, which ensures that "needed persons gain access
to needed information when they need to," helped Ricoh solve
the dual problems, which appeared to be mutually exclusive. This
is one area in which Ricoh has successfully balanced information
use and confidentiality, and has achieved good results.
Mechanism of sharing
and centralizing information related to components
 |
Authentication
System for Electronic Components |
|
|
|
Known as Σ-E, named after the database used, the authentication
system for electronic components manages information on about
83,000 of these items. Component information is classified based
on functions, performance capabilities, and applications. Information
is also compiled on certified components, prohibited components
and discontinued components. The system also enables searches
for electronic components containing harmful substances. It offers
added convenience to users, as schematic diagrams are linked to
corresponding lists of components in the database, allowing users
to also get information on needed components when searching for
schematics. Moreover, technical specifications and cost information
of soon-to-be released components of Ricoh and component manufacturers
are also available for browsing. This information is vital to
a corporation, and for this reason, it is subject to stringent
security policies and information security control. Currently,
a few thousand employees are authorized to access the information
contained in the database using their IDs and passwords. Needless
to say, the system is designed so that employees with no reason
to access the information are not allowed to. Not even the system
administrator is an exception, and can access only limited information.
| Authentication for electronic
components |
 |
|
 |
Initiated in 1996, the authentication structure and the system
for electronic components have withstood over 10 years of real-life
testing. In this period, several major challenges have been successfully
met and upgrades have been performed on a few occasions.
The 32-member team of the Electronic Components Technical Administration
Office works hard even today to further improve the system while
carrying out maintenance activities. Their efforts have led to
deep trust by those who work with them within the Group, and ∑-E
has become indispensable for Ricoh's new product development.
∑-E also plays a role in the building of better relationships
with Ricoh's business partners and others with whom personnel
is exchanged, as the system is presented to them as a solution.
Although not actively publicized, this activity will be continued
by Ricoh.
As demonstrated by these examples, the Ricoh Group brought information
security measures up to a new level. They did this not only by
addressing risk management but also by making the measures available
for strategic use. These efforts contribute to more efficient
design and manufacturing launches, improved productivity, and
reductions of direct and indirect costs including costs of components.
They also help give Ricoh stronger control of intellectual property.
|
|
|
|
