Protected Distribution System (PDS) Construction - Point of Presence (PoP) and Terminal Equipment Protection. This requirement concerns security of both the starting and ending points for PDS within proper physically protected and access controlled environments.

From Traditional Security

Part of PDS Construction - PoP and Terminal Equipment Protection

Associated with IA controls: DCSR-3, PESS-1, ECCT-2

SV-40980r3_rule Protected Distribution System (PDS) Construction - Point of Presence (PoP) and Terminal Equipment Protection. This requirement concerns security of both the starting and ending points for PDS within proper physically protected and access controlled environments.

Vulnerability discussion

A PDS that is not constructed and physically protected as required could result in the covert or undetected interception of classified information.

Check content

This potential finding concerns security requirements for the physical locations of both the starting and ending points for Protected Distribution Systems (PDS)within a physical enclave. Check to ensure: 1. The PDS originates within the room or area containing the SIPRNet Point of Presence (PoP) for the facility, which must be in a Secret or above Secure Room, Vault or SCIF. 2. PDS terminal equipment (wall jacks) are located in a Secret or higher Controlled Access Area (CAA), Secret or higher vault, Secret or higher Secure Room or in a SCIF. 3. PDS terminating in areas not a Secret or higher CAA may terminate in an Information Processing Systems (IPS) Container, which is a specially designed safe for operation of classified network equipment. 4. If an IPS container is used ensure it is located within at least a Limited Controlled Area (LCA).

Fix text

This requirement concerns security requirements for the physical locations of both the starting and ending points for Protected Distribution Systems (PDS)within a physical enclave. All of the following requirements must be met: 1. The PDS must originate within the room or area containing the SIPRNet Point of Presence (PoP) for the facility, which must be in a Secret or above Secure Room, Vault or SCIF. 2. PDS terminal equipment (wall jacks) must be located in a Secret or higher Controlled Access Area (CAA), Secret or higher vault, Secret or higher Secure Room or in a SCIF. 3. As an alternative to #2 above, any PDS terminating in areas not a Secret or higher CAA may terminate in an Information Processing Systems (IPS) Container, which is a specially designed safe for operation of classified network equipment. 4. If an IPS container is used it must be located within at least a Limited Controlled Area (LCA).

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer