Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-8302 | VVoIP 5105 | SV-8797r2_rule | ECSC-1 | Low |
Description |
---|
Voice services in support of high priority military command and control precedence must meet minimum requirements for reliability and survivability of the supporting infrastructure. Design requirements for networks supporting DoD VVoIP implementations are in the UCR, specifying assured services supporting DoD IP based voice services. The UCR defines LAN design requirements for redundancy of equipment and interconnections, minimum requirements for bandwidth, specifications for backup power, and the maximum number of endpoints tolerable by a single point of failure. Policy sets the minimum requirements for the availability and reliability of VVoIP systems Special-C2 users is 99.999%, C2 users is 99.997%, C2Routine only users (C2R) and non-C2 users is 99.9%. |
STIG | Date |
---|---|
Voice Video Services Policy STIG | 2015-12-29 |
Check Text ( C-23781r2_chk ) |
---|
If the system does not support a minimum of 96 instruments, this is not applicable. Review site documentation to confirm the LAN supporting VVoIP services for C2 users provides assured services in accordance with the UCR. Determine the types of users supported on the VVoIP network by referring to the Procedures Guide to determine applicability of this requirement. Specific attention should be given in the areas of: - Bandwidth and traffic engineering (25% voice, 25% video, 50% data) - No single point of failure affecting service to greater than 96 instruments. - Equipment reliability - Equipment redundancy above the access layer - Equipment robustness and bandwidth capability - Connection redundancy above the access layer - Connection bandwidth capability - Access layer switch size (number of phones served) - Backup power for all equipment: + 2 hours for all equipment and instruments supporting C2 users + 8 hours for all equipment and instruments supporting Special-C2 users If the LAN supporting VVoIP services for C2 users does not provide assured services in accordance with the UCR, this is a finding. This applies to all types of C2 users. This requirement differs from VVoIP 5100 in the availability and reliability supporting C2 and Special-C2 users are higher than C2R, non-C2, and administrative users. |
Fix Text (F-20217r2_fix) |
---|
Implement and document that the LAN supporting VVoIP services for C2 users provides assured services in accordance with the UCR. |