Quantcast Other considerations - hdbk232a0160

Share on Google+Share on FacebookShare on LinkedInShare on TwitterShare on DiggShare on Stumble Upon
Custom Search
 
  
 


MIL-HDBK-232A
3.2
There is no means for remote access to any CBX services.
3.3
Incoming calls (trunk or local) come to a console or telephone and
are answered manually.  There is no voice activated pickup,
automatic pickup (e.g., by telephone answering units and ADP
terminals), or other responses of any kind to incoming calls except
annunciation (initiated by the CBX) to the called station.
4.
Administrative security measures:  Administrative procedures are needed
to ensure that none of the protective measures are intentionally or
inadvertently degraded as a result of hardware or software chances to the
system.  Some of the administrative procedures are described functionally
as requirements to be achieved.  Their implementation may be any
combination of physical security, systems configuration (hardware,
software, and layout), personnel security, and technical countermeasures
appropriate to the particular CBX and installation in question.
4.1
An appropriate minimum level of security clearance is determined by
the cognizant agency for personnel having access for any purpose (to
include installation and maintenance) to the station equipment, CBX
components, wiring, and distribution frames located within the PCZ.
Persons not possessing the minimum clearance will not be permitted
access to the system except outside the PCZ or under suitable
administrative safeguards.
4.2
Positive barriers exist to prevent all system diagnostics and CBX
software modifications except those from specific programming
stations located within the PCZ.
4.3
Only specific designated individuals with appropriate security
clearance have physical access to the programming stations and may
change the system software or hardware configuration.
4.4
The integrity and efficacy of the protective measures are to be
assured with a regular program of countermeasures inspections.
4.5
Frequently reload the operational program medium from the
certifiably correct master to assure that no unauthorized changes
have occurred.
4.6
All system documentation including instructions, manuals,
installation and service practices, system configuration records,
etc. arc to be kept with the CBX in the PCZ.
4.7
Dial access or barrier codes are not acceptable means for denying
unauthorized persons access to any CBX features or control
operations.
II.  Other considerations:  Most telephone installations of interest to the
U.S. Intelligence Community involve other telephone security considerations
in addition to the fundamental problem of on-hook audio.  Application of the
below listed supplementary measures will realize the full potential of the
CBX to address those concerns:  these measures are recommended by TSP
wherever operationally feasible.
124





 


Privacy Statement - Copyright Information. - Contact Us

Integrated Publishing, Inc.