STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020: STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:SV-18854r1_rule
V-17680
RTS-VTC 1164.00 [IP][ISDN]
RTS-VTC 1164.00
CAT II
10
[IP][ISDN]; Perform the following tasks:
- Configure the CODEC and/or MCU to automatically display an indication on all endpoints participating in a conference that the conference is being monitored.
OR
- Develop a SOP that addresses manual notification by SAs and chair persons that the conference is being monitored.
[IP][ISDN]; Interview the IAO to validate compliance with the following requirement:
Ensure conference participants are made aware that a conference is being monitored by someone that is not a direct participant of the call or conference.
Interview the IAO to determine if this requirement is covered by an automatic indicator that appears on all participating endpoints OR is covered in a SOP and user training/agreements. Interview the IAO and monitoring “operator/facilitator” to determine their awareness and implementation of the requirement.
V-17680
False
RTS-VTC 1164.00
[IP][ISDN]; Interview the IAO to validate compliance with the following requirement:
Ensure conference participants are made aware that a conference is being monitored by someone that is not a direct participant of the call or conference.
Interview the IAO to determine if this requirement is covered by an automatic indicator that appears on all participating endpoints OR is covered in a SOP and user training/agreements. Interview the IAO and monitoring “operator/facilitator” to determine their awareness and implementation of the requirement.
I
The inadvertent disclosure of sensitive or classified information to a SA that is monitoring a VTU that may not have an appropriate need-to-know or proper security clearance.
Information Assurance Officer
1418