STIGQter STIGQter: STIG Summary: Voice Video Services Policy Security Technical Implementation Guide Version: 3 Release: 17 Benchmark Date: 25 Oct 2019:

The dual homed DISN core access circuits are NOT implemented such that each one can support the full bandwidth engineered for the enclave plus additional bandwidth to support surge conditions in time of crisis.

DISA Rule

SV-21743r1_rule

Vulnerability Number

V-19602

Group Title

Deficient imp’n: C2 enclave; Dual Circuit Capacity

Rule Version

VVoIP 6140 (DISN-IPVS)

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Ensure a bandwidth engineering study is performed to determine the WAN bandwidth needs for the site to include surge capacity.

Ensure each redundant DISN Core access circuit has the same capacity such that one is able to support the entire engineered bandwidth needs of the enclave.

Check Contents

Inspect the documentation for the access circuits and the bandwidth engineering study to determine compliance with the requirement.

This is a finding in the event each circuit cannot handle the entire engineered load for the enclave including surge capacity.

Vulnerability Number

V-19602

Documentable

False

Rule Version

VVoIP 6140 (DISN-IPVS)

Severity Override Guidance

Inspect the documentation for the access circuits and the bandwidth engineering study to determine compliance with the requirement.

This is a finding in the event each circuit cannot handle the entire engineered load for the enclave including surge capacity.

Check Content Reference

M

Potential Impact

Reduced availability and the inability to complete a C2 call

Target Key

594

Comments