Transport circuits are not encrypted.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-7953	DSN11.01	SV-8439r1_rule	ECCT-1 ECSC-1	Medium

Description
Requirement: The IAO will ensure that all circuits leaving the B/C/P/S are bulk encrypted. The transport system is responsible for the delivery of voice and data circuits from one switch node to another. Though not classified, this type of information is sensitive. To ensure the security of all information being exchanged between nodes and to protect it from unauthorized monitoring and man in the middle attacks, the ISSO/IAO should ensure all circuits are bulk encrypted.

Description

Requirement: The IAO will ensure that all circuits leaving the B/C/P/S are bulk encrypted. The transport system is responsible for the delivery of voice and data circuits from one switch node to another. Though not classified, this type of information is sensitive. To ensure the security of all information being exchanged between nodes and to protect it from unauthorized monitoring and man in the middle attacks, the ISSO/IAO should ensure all circuits are bulk encrypted.

STIG	Date
Defense Switched Network STIG	2015-01-02

Details

Check Text ( C-7334r1_chk )
Interview the IAO or SA and confirm compliance through discussion, review of site policy, diagrams, documentation, DAA approvals, etc as applicable.

Fix Text (F-7528r1_fix)
Bulk encrypt all trunking circuits leaving and entering the DSN switching facility of installation.