Title

The Voice Video Session Manager supporting Command and Control (C2) communications must associate multilevel precedence and preemption (MLPP) attributes when exchanged between unified capabilities (UC) systems. (Cat II impact)

Discussion

If MLPP attributes are not associated with the information being transmitted between systems, then access control policies and information flows which depend on these MLPP attributes will not function and unauthorized access may result. Without the implementation of safeguards which allocate network communication resources based on priority, network availability, and particularly high priority traffic, may be dropped or delayed. DoD relies on the implementation of MLPP to ensure that flag officers and senior staff are provided higher priority for communications than other users. For VoIP and videoconferencing systems, Voice Video Session Managers must communicate using protocols and services that provide expedited packets to users and other systems.

Check Content

Verify the Voice Video Session Manager supporting C2 communications associates MLPP attributes when exchanged between UC systems. If the Voice Video Session Manager supporting C2 communications does not associate MLPP attributes when exchanged between UC systems, this is a finding.

Fix Text

Configure the Voice Video Session Manager supporting C2 communications to associate MLPP attributes when exchanged between UC systems.

Additional Identifiers

Rule ID: SV-206832r508661_rule

Vulnerability ID: V-206832

Group Title: SRG-NET-000225

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.