Title

Transport circuits are not encrypted. (Cat II impact)

Discussion

Requirement: The IAO will ensure that all circuits leaving the B/C/P/S are bulk encrypted. The transport system is responsible for the delivery of voice and data circuits from one switch node to another. Though not classified, this type of information is sensitive. To ensure the security of all information being exchanged between nodes and to protect it from unauthorized monitoring and man in the middle attacks, the ISSO/IAO should ensure all circuits are bulk encrypted.

Check Content

Interview the IAO or SA and confirm compliance through discussion, review of site policy, diagrams, documentation, DAA approvals, etc as applicable.

Fix Text

Bulk encrypt all trunking circuits leaving and entering the DSN switching facility of installation.

Additional Identifiers

Rule ID: SV-8439r1_rule

Vulnerability ID: V-7953

Group Title: Transport circuits are not encrypted.

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.