UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The Voice Video Endpoint must use encryption for signaling and media traffic.


Overview

Finding ID Version Rule ID IA Controls Severity
V-66757 SRG-NET-000371-VVEP-00037 SV-81247r2_rule Medium
Description
Without protection of the transmitted information, confidentiality and integrity may be compromised as unprotected communications can be intercepted and either read or altered. TLS can be utilized to secure SIP and SCCP signaling by configuring the session manager in a secure mode. DoD-to-DoD voice communications are generally considered to contain sensitive information and therefore DoD voice and data traffic crossing the unclassified DISN must be encrypted. Cryptographic mechanisms such as Media Access Control Security (MACsec) implemented to protect information include cryptographic hash functions that have common application in digital signatures, checksums, and message authentication codes.
STIG Date
Voice Video Endpoint Security Requirements Guide 2017-04-06

Details

Check Text ( C-67407r1_chk )
Verify the Voice Video Endpoint uses encryption for signaling and media traffic.

If the Voice Video Endpoint does not use encryption for signaling and media traffic, this is a finding.
Fix Text (F-72857r1_fix)
Configure the Voice Video Endpoint to use encryption for signaling and media traffic.