Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
VTC ports and protocols cross DoD/Enclave boundaries without prior registration in the DoD Ports and Protocols Database.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-17718 | RTS-VTC 4520.00 | SV-18892r1_rule | DCPP-1 | Medium |
| Description |
|---|
| A portion of the DoDI 8550.1 PPS policy requires registration of those PPS that cross any of the boundaries defined by the policy that are “visible to DoD-managed components”. The following PPS registration requirement applies to VTC traffic that crosses the IP based Enclave boundary to the DISN WAN or another enclave. |
| STIG | Date |
|---|---|
| Video Services Policy STIG | 2014-06-26 |
Details
| Check Text ( C-18988r1_chk ) |
|---|
| [IP]; Interview the IAO and validate compliance with the following requirement: Ensure all protocols and services that cross the enclave boundary and/or any of the defined DoD boundaries (along with their associated IP ports) used by VTC systems for which he/she is responsible are registered in the DoD Ports and Protocols Database in accordance with DoDI 8550.1. Review network diagrams, device documentation, to identify what VTC/VTU/MCU Ports/Protocols/Services are used by the VTC system. Once these Ports/Protocols/Services have been determined and confirmed for use, verify that these same Ports/Protocols/Services are registered and approved for use in the DoD Ports and Protocols Database in accordance with DoDI 8550.1. Note: Reference tables are provided in the STIG |
| Fix Text (F-17615r1_fix) |
|---|
| [IP]; Perform the following tasks: - Determine what Ports/Protocols/Services are used by the VTC system within the enclave and which cross the enclave boundary as well as what other boundaries they traverse. - Register all Ports/Protocols/Services are used by the VTC system in the PPS database. |