Security related to Canon products
With the popularisation of the Internet and wireless LAN technology, a diverse range of electronic devices are now capable of connecting to a network, enabling the remote operation of various functions.
By connecting to a network, information devices can become vulnerable to unauthorised third-party access, which could lead to such security issues as unauthorised usage of the device.
To minimise the likelihood of such issues, devices must make use of proper settings and be used in a secure environment.
To help ensure that our customers can use Canon products with peace of mind, we recommend that users implement the following security measures -
1. Create an administrator ID and password
In order to strengthen the security of your Canon product, please create an administrator ID and password. Administrators can limit access to a multifunction printer and control which functions are made available to individual users. This helps to prevent unauthorised access to the device and protects data held in the machine’s configuration.
2. Use a private IP address
When setting up your printer, assign a private(internal) IP address. This gives you more control over access to the device than assigning a public(external) IP address which may permit unauthorised access over the internet to the device and it’s functions.
3. Configure a firewall (using a router etc)
When installing your Canon product on an internal/home network check your router/firewall set up to ensure that the device is not visible from the internet (unless this is your intention). If this is a physical connection check the cable is plugged into an internal port. If this is on a corporate network you may need to contact your network administrator for guidance.
4. Encrypt communications
If your Canon device is capable of supporting encryption we recommend that this is enabled to ensure communication between your device and the printer remains secure. This would mean that you are communication with the devices using https or equivalent.
Security measures for specific Canon products
We are aware of news articles regarding research from University Alliance Ruhr concerning potential vulnerability for networked printers via the PostScript programming language used widely across our industry. No Canon devices were tested in the research.
Canon works constantly to ensure the highest level of security in all of our products and solutions, including networked printers. We take the security of our customer’s information seriously and its protection is our utmost priority. Our MFD Hardening Guide, explains and advises on the best configuration settings for secure implementation.
Information regarding security measures for specific Canon products and their set-up procedures are outlined below. Please note, the information is only available in English –
Vulnerability in WPA2 Wi-Fi Encryption Protocol
We have yet to confirm that any damage has been incurred by users of Canon products as a result of this vulnerability. However, in order for our customers to continue using our products with peace of mind, we will provide information for how you should deal with this vulnerability on an affected product. Once we have confirmed which products could be affected, we will update this page with further guidance.
Recently, a researcher made a vulnerability known as KRACKs public in the standard wireless LAN (Wi-Fi) encryption protocol WPA2. This vulnerability allows an attacker to intentionally intercept the wireless transmission between the client (terminal equipped with Wi-Fi functionality) and the access point (the router etc.) to perform potentially malicious activity. For that reason, this vulnerability cannot be exploited by anyone outside the range of the Wi-Fi signal or by anyone in a remote location using the internet as an intermediary.
Report a security issue
If you are aware of a security issue relating to a Canon product, system or service, we would like to hear from you.
How to contact us
If you believe you have discovered a security issue with a Canon product or have a security incident to report, please email email@example.com. Please include a detailed summary of the security issue, the exact name of the product, software version and the nature of the issue. Please also include an email address and telephone number so we can contact you if we require more information.
Non-security support enquiries
Please note that this email address is only for reporting security issues and not for general support issues. Please visit our Support pages for help with any other issue.
We take security issues seriously and will respond swiftly to fix verifiable issues however some of our products are complex and take time to update. When properly notified of legitimate issues, we will do our best to acknowledge your email, investigate the issue and fix them as quickly as possible.