STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:

The IP-based VTC system must use H.235-based signaling encryption.

DISA Rule

SV-55764r1_rule

Vulnerability Number

V-43035

Group Title

RTS-VTC 1240 [IP]

Rule Version

RTS-VTC 1240

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Obtain equipment that supports H.235-based signaling encryption and configure the equipment to implement encryption.

Check Contents

Review the documentation to determine that the VTC equipment supports H.235-based signaling encryption and review configuration of the equipment to verify that it is being implemented. If the equipment does not support H.235-based signaling encryption or it has not been implemented, this is a finding.

Vulnerability Number

V-43035

Documentable

False

Rule Version

RTS-VTC 1240

Severity Override Guidance

Review the documentation to determine that the VTC equipment supports H.235-based signaling encryption and review configuration of the equipment to verify that it is being implemented. If the equipment does not support H.235-based signaling encryption or it has not been implemented, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1418

Comments