STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020: STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:SV-18721r1_rule
V-17594
RTS-VTC 1030.00 [IP][ISDN]
RTS-VTC 1030.00
CAT II
10
[IP][ISDN]; Perform the following tasks:
- Configure the VTU to display the source of the incoming call and to the extent possible, the identity of the caller, such that the user can make an informed decision to answer the call or not.
- Maintained directories with current information regarding user information related to other VTUs with which the VTU is expected to communicate unless calling VTUs provide the caller information along with the source information.
- Train users to not answer incoming calls from unknown sources in the event doing so could disclose sensitive or classified information in the area of the VTU.
- Train users to not answer incoming calls from unknown sources or sources that may not have appropriate clearance or a need-to-know during a conference since doing so could improperly disclose sensitive or classified information to the caller.
[IP][ISDN] Interview the IAO to validate for compliance with the following requirement:
If the VTU is capable of receiving incoming calls while inactive or while active, ensure the following:
- The VTU displays the source of the incoming call and to the extent possible, the identity of the caller, such that the user can make an informed decision to answer the call or not.
- Directories are maintained with current information regarding user information related to other VTUs with which the VTU is expected to communicate unless calling VTUs provide the caller information along with the source information.
- Users are trained to not answer incoming calls from unknown sources in the event doing so could disclose sensitive or classified information in the area of the VTU.
- Users are trained to not answer incoming calls from unknown sources or sources that may not have appropriate clearance or a need-to-know during a conference since doing so could improperly disclose sensitive or classified information to the caller.
Note: During APL testing, this is a finding in the event this requirement is not supported by the VTU.
Interview the IAO and have him/her demonstrate on a sampling of the VTUs in the system
V-17594
False
RTS-VTC 1030.00
[IP][ISDN] Interview the IAO to validate for compliance with the following requirement:
If the VTU is capable of receiving incoming calls while inactive or while active, ensure the following:
- The VTU displays the source of the incoming call and to the extent possible, the identity of the caller, such that the user can make an informed decision to answer the call or not.
- Directories are maintained with current information regarding user information related to other VTUs with which the VTU is expected to communicate unless calling VTUs provide the caller information along with the source information.
- Users are trained to not answer incoming calls from unknown sources in the event doing so could disclose sensitive or classified information in the area of the VTU.
- Users are trained to not answer incoming calls from unknown sources or sources that may not have appropriate clearance or a need-to-know during a conference since doing so could improperly disclose sensitive or classified information to the caller.
Note: During APL testing, this is a finding in the event this requirement is not supported by the VTU.
Interview the IAO and have him/her demonstrate on a sampling of the VTUs in the system
I
Other
1418