STIGQter STIGQter: STIG Summary: Voice Video Services Policy Security Technical Implementation Guide Version: 3 Release: 17 Benchmark Date: 25 Oct 2019:

The DISN Core access circuit is NOT properly sized to accommodate the calculated Assured Service Admission Control (ASAC) budgets for AS voice and video calls/sessions OR the required budgets have not been calculated.

DISA Rule

SV-21741r1_rule

Vulnerability Number

V-19600

Group Title

Deficient Design: Access Circuit Call Budgets

Rule Version

VVoIP 6155 (DISN-IPVS)

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

In the event the VVoIP system connects to the DISN WAN for VVoIP transport between enclaves AND the system is intended to provide assured service communications to any level of C2 user (Special C2, C2, C2(R)), ensure Session Admission Control (SAC) for the DISN Core access circuit(s) is supported by engineered bandwidth budgets for VoIP and Video calls/sessions in support of Assured Service.
NOTE: SAC in support of Assured Service is also referred to as Assured Service Admission Control (ASAC)
NOTE: The VoIP budget covers the following types of services:
Voice VoIP, FoIP, MoIP, or SCIP over IP calls
NOTE: Per call/session units are defined in the UCR and are unidirectional. They must be doubled to support bi-directional communications between users which is the typical phone call.
NOTE: Instructions for determining voice call budgets for a DISN WAN access circuit can be found in the UCR section 5.3.3.11 Provisioning

Check Contents

Inspect the documentation related to the size of the access circuits and the SAC budgets used in its sizing to determine compliance with the requirement.

This is a finding in the event access circuit sizing does not take the required ASAC budgets into account.

Vulnerability Number

V-19600

Documentable

False

Rule Version

VVoIP 6155 (DISN-IPVS)

Severity Override Guidance

Inspect the documentation related to the size of the access circuits and the SAC budgets used in its sizing to determine compliance with the requirement.

This is a finding in the event access circuit sizing does not take the required ASAC budgets into account.

Check Content Reference

M

Potential Impact

Reduced service availability and the inability to place a priority call

Responsibility

Information Assurance Officer

Target Key

594

Comments