STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:

An IP-based VTC system implementing a single CODEC supporting conferences on multiple networks having different classification levels must be implemented in a manner such that configuration information for a network having a higher classification level is not disclosed to a network having a lower classification level.

DISA Rule

SV-55750r1_rule

Vulnerability Number

V-43021

Group Title

RTS-VTC 7120 [IP]

Rule Version

RTS-VTC 7120

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Architect, implement, and configure the system such that the A/B, A/B/C, or A/B/C/D switch connects the CODEC to an unused switch position while it is being reconfigured during transition from one network to another.
OR
Architect, implement, and configure the system such that the CODEC configuration is purged before it is switched to the next network, then the CODEC is power cycled for the required time period as the A/B, A/B/C, or A/B/C/D switch connects the CODEC to the next network, then the CODEC is reconfigured for that network.
OR
If a manual switching procedure is used, physically disconnect the CODEC from any network while it is reconfigured for the next network.

Check Contents

Review the VTC system architecture documentation and observe system operation while transitioning between networks to verify one of the following:
• The CODEC is switched to a disconnected/unused switch position while it is being purged/reconfigured .
• The CODEC is purged while connected to one network, then power cycled as it is switched to the next network, then reconfigured for that network.
• Alternately, if a manual switching procedure is used, ensure the CODEC is physically disconnected from any network while being reconfigured.
If none of these procedures is being followed, this is a finding.

Vulnerability Number

V-43021

Documentable

False

Rule Version

RTS-VTC 7120

Severity Override Guidance

Review the VTC system architecture documentation and observe system operation while transitioning between networks to verify one of the following:
• The CODEC is switched to a disconnected/unused switch position while it is being purged/reconfigured .
• The CODEC is purged while connected to one network, then power cycled as it is switched to the next network, then reconfigured for that network.
• Alternately, if a manual switching procedure is used, ensure the CODEC is physically disconnected from any network while being reconfigured.
If none of these procedures is being followed, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1418

Comments