STIGQter STIGQter: STIG Summary: Network Infrastructure Policy Security Technical Implementation Guide Version: 9 Release: 10 Benchmark Date: 24 Jan 2020:

Enabling a connection that extends DISN IP network connectivity (e.g., NIPRNet and SIPRNet) to any DoD Vendor, Foreign, or Federal Mission Partner enclave or network without a signed DoD CIO approved sponsorship memo is prohibited. For classified connectivity it must be to a DSS approved contractor facility or DoD Component approved foreign government facility.

DISA Rule

SV-15497r2_rule

Vulnerability Number

V-14741

Group Title

Classified circuit terminates in non-DoD facility

Rule Version

NET1826

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Terminate all leased circuits connecting to DoD Vendor, Foreign, or Federal Mission Partner enclave or network without a signed DoD CIO-approved sponsorship memo.

Terminate all leased circuits for a classified network that is not connecting to a DSS-approved contractor facility or DoD Component-approved foreign government facility.

Check Contents

Review the topology diagram of the classified network.

If there are any leased circuits connecting to DoD Vendor, Foreign, or Federal Mission Partner enclave or network without a signed DoD CIO-approved sponsorship memo, this is a finding.

If classified connectivity is not to a DSS-approved contractor facility or DoD Component-approved foreign government facility, this is a finding.

Vulnerability Number

V-14741

Documentable

False

Rule Version

NET1826

Severity Override Guidance

Review the topology diagram of the classified network.

If there are any leased circuits connecting to DoD Vendor, Foreign, or Federal Mission Partner enclave or network without a signed DoD CIO-approved sponsorship memo, this is a finding.

If classified connectivity is not to a DSS-approved contractor facility or DoD Component-approved foreign government facility, this is a finding.

Check Content Reference

M

Target Key

838

Comments