Title

An IDS/IPS must protect the IP-based VTC system within the enclave. (Cat II impact)

Discussion

An enclave supporting an IP-based VTC system that must communicate across an IP WAN must be protected by the existing network IDS/IPS or by the implementation of an IDS/IPS that is dedicated to the VTC enclave. The IDS/IPS must comply with the requirements of the IDS/IPS Security Technical Implementation Guide. Please refer to the “IDPS Security Guidance at a Glance” for additional implementation guidance for Network Intrusion Detection/Prevention Systems.

Check Content

Review network documentation and verify that the existing enclave network IDS/IPS is protecting the VTC system or that a dedicated IDS/IPS is protecting the VTC enclave. If there is no IDS/IPS protecting the VTC system, this is a finding.

Fix Text

Obtain and configure a dedicated IDS/IPS or configure the existing enclave IDS/IPS to protect the VTC system.

Additional Identifiers

Rule ID: SV-55757r1_rule

Vulnerability ID: V-43028

Group Title: RTS-VTC 6020 [IP]

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.