The organization must comply with DoDI 8551.01 for functions, ports, protocols, and services.

From Voice Video Policy Security Technical Implementation Guide

Part of SRG-POL-300291

Associated with: CCI-000388

VVSP-01-000057_rule The organization must comply with DoDI 8551.01 for functions, ports, protocols, and services.

Vulnerability discussion

Information systems provide a wide variety of functions and services. Some of the functions and services, provided by default, may not be necessary to support essential organizational operations (e.g., key missions, functions). Organizations review functions and services provided by information systems or individual components of information systems to determine which functions and services are candidates for elimination. Organizations can use network scanning tools, intrusion detection and prevention systems, and end-point protections such as firewalls to prevent the use of prohibited functions, ports, protocols, and services.The organization can either make a determination of the relative security of the function, port, protocol, and/or service or base the security decision on the assessment of other entities. Bluetooth, FTP, and peer-to-peer networking are examples of less-than-secure protocols.

Check content

Review the Voice Video configuration management policy and associated configuration management controls to confirm the organization complies with DoDI 8551.01 for functions, ports, protocols, and services. The Voice Video system compliance with DoDI 8551.01 requires that all ports, protocols, and services (PPS) used by the Voice Video system are registered in the DoD Ports and Protocols Database. Core infrastructure components and Voice Video endpoints of the Voice Video system also must be registered. This is applicable to all PPSs within the enclave and the PPSs that cross the enclave boundary (or any of the defined DoD boundaries). Compliance also requires proper registration of all PPSs used by the Voice Video system, including core infrastructure devices and all Voice Video endpoints, even when not crossing a boundary. If the Voice Video configuration management policy and associated configuration management controls do not confirm the organization complies with DoDI 8551.01 for functions, ports, protocols, and services, this is a finding.

Fix text

Document as part of the Voice Video configuration management policy compliance with DoDI 8551.01 for functions, ports, protocols, and services. The Voice Video system compliance with DoDI 8551.01 requires that all ports, protocols, and services (PPS) used by the Voice Video system are registered in the DoD Ports and Protocols Database. Core infrastructure components and Voice Video endpoints of the Voice Video system also must be registered. This is applicable to all PPSs within the enclave and the PPSs that cross the enclave boundary (or any of the defined DoD boundaries). Properly register all PPSs used by the Voice Video system, including core infrastructure devices and all Voice Video endpoints, even when not crossing a boundary.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer