The organization must define and document the Call Detail Record (CDR) storage requirements.

From Voice Video Policy Security Technical Implementation Guide

Part of SRG-POL-300148

Associated with: CCI-001848

VVSP-01-000035_rule The organization must define and document the Call Detail Record (CDR) storage requirements.

Vulnerability discussion

Organizations consider the types of auditing to be performed and the audit processing requirements when allocating audit storage capacity. Allocating sufficient audit storage capacity reduces the likelihood of such capacity being exceeded and resulting in the potential loss or reduction of auditing capability.Off-loading is a process designed to preserve the confidentiality and integrity of audit records by moving the records from the primary information system to a secondary or alternate system. It is a common process in information systems with limited audit storage capacity; the audit storage is used only in a transitory fashion until the system can communicate with the secondary or alternate system designated for storing the audit records, at which point the information is transferred.For Voice Video systems, session events produce CDRs used for traffic and forensic analysis. The CDR contains the who, what, where, when, and how for the Voice Video elements handling signaling and media traffic. The CDR must have sufficient storage capability to ensure that the organizations records are maintained prior to off-loading for long-term storage.

Check content

Review the CDR policy and supporting documentation for the CDR storage requirements. The CDR storage requirements must meet the minimum storage requirements for all auditing systems, as defined by DoD. If the CDR policy or supporting documentation does not contain CDR storage requirements, this is a finding.

Fix text

Develop and document in the CDR policy or supporting documentation the CDR storage requirements. The CDR storage requirements must meet the minimum storage requirements for all auditing systems, as defined by DoD.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer