DEFENSE SWITCHED NETWORK INFORMATION ASSURANCE ...

More documents

Recommendations

Info

• If the system supports lines, the following manual calls should be attempted: Analog to Analog, IP to IP, Analog to IP, and IP to Analog. Confirm that all test calls are completed and all IP handsets are identified. • Trunks allow a group of inlet switches or circuits to connect at the same time. The service provider can provide a lesser number of circuits than might otherwise be required, allowing many users to “share” a smaller number of connections and achieve capacity savings. If the system supports trunks, the following manual calls should be attempted: Analog over trunk and IP over trunk. Confirm that all test calls were completed. 3. Discover Host Finding all the hosts in use by the system is the first step in the technical evaluation. Detecting all the possible hosts and their corresponding IP address information is required to begin any further technical evaluation. 4. Conduct Ping Sweep A general ping sweep will determine what hosts are available via the Internet Control Message Protocol (ICMP). This is generally an ICMP echo request (type 8) to elicit an ICMP echo reply (type 0) from a host. 5. Conduct Transmission Control Protocol (TCP) Sweep The TCP sweep provides insight into available hosts when ICMP is disabled. A TCP sweep will attempt to make TCP connections to a host range on a specified port list. The client will send a Synchronize (SYN) and, if the host is available on that port, the client will receive a SYN/Acknowledge (ACK) and respond with an ACK packet to the target host with a sequence number incremented by one. 6. Perform Traffic Analysis Traffic Analysis allows the test team to determine all the hosts that are included within the solution under test. 7. Perform Port Enumeration Port enumeration provides a list of services or applications that could be running on the host and gives the tester a good indication of what operating system might be present on the end-point. Port scanning of each host will provide a detailed list of which ports are open, closed, or filtered on a specified host. Conduct port scans using many different protocols, packet flags, and techniques. These different scans can yield different results in different situations, depending on the configurations and protections of each host. Additional Open Source Security Testing Methodology Manual strategies are in Appendix E. 11
8. Conduct Service Enumeration Service Enumeration determines what services are listening on an IP port of the system. Services and their versions can provide the tester with a list of known exploits or weakness that might be effective against a given target. 9. Perform Service Analysis The use of Service Analysis provides the test team with specific service details used in further attacks. Upon discovery of a service, a variety of checks may be completed against a known service. 10. Evaluate Denial of Service (DoS) A DoS evaluation determines the system’s susceptibility to attacks. The testing team might take a particular end-point offline to capture one of its attributes, such as an IP address or Media Access Control address. 11. Package for DIACAP Package all raw results generated from the test into a human-readable format and add to the report. Protocol Analysis (PA). The test team conducts generic PA requirements for the APL inclusion. Additional specifications include those found in American National Standard Institute T1.111 through T1.116. The system is evaluated for its ability to maintain confidentiality, integrity, and availability. Detailed test procedures are in Appendix E. OUTBRIEF. After the conclusion of all phases of testing and the vendor has provided mitigations to all open findings, the draft report is discussed with the vendor, IATT, sponsor, UCCO, and Field Security Officer (FSO). All findings are reviewed, questions about specific findings are discussed, and any outstanding issues are assigned as action items to the respective party. During the outbrief the vendor, IATT, sponsor, UCCO, and FSO review the supplied network configuration, the hardware, and software to ensure that it is correct before accreditation is considered. Following the outbrief meeting and the completion of all action items, a final report is prepared and submitted for approval by the government Action Officer. Copies are distributed to all parties, including the FSO for the Certifying Authority’s recommendation letter of the SUT to the DISN Security Accreditation Working Group for placement on the APL. Scan and test results are provided as baseline examples for sites to use when assessing their solutions and creating their DIACAP artifacts. 12
Page 1 and 2: DEFENSE INFORMATION SYSTEMS AGENCY
Page 3 and 4: DEFENSE SWITCHED NETWORK INFORMATIO
Page 5 and 6: EXECUTIVE SUMMARY The Department of
Page 7 and 8: TABLE OF CONTENTS iii Page EXECUTIV
Page 9 and 10: TABLE OF CONTENTS (continued) LIST
Page 11 and 12: SUMMARY OF CHANGES Editor/Approver
Page 13 and 14: The DSN provides end-to-end command
Page 15 and 16: implementing a security baseline, p
Page 17 and 18: • Apply applicable STIGs and subm
Page 19 and 20: Some products, such as CPE, rely on
Page 21: e. System Requirements, Maximum Tra
Page 25 and 26: (The page intentionally left blank.
Page 27 and 28: IAM Information Assurance Manager I
Page 29 and 30: (The page intentionally left blank.
Page 31 and 32: Table B-1. STIG Listing STIG Descri
Page 33 and 34: Table B-1. STIG Listing (continued)
Page 35 and 36: Figure B-2. NSA Website B-4. MICROS
Page 37 and 38: compliant, non-compliant, or not ap
Page 39 and 40: Within the delivered scorecard, the
Page 41 and 42: Absinthe (SQL injection) Arpoison (
Page 43 and 44: APPENDIX C TEST PREPARATION DOCUMEN
Page 45 and 46: DSN IA Test Team Test Preparation D
Page 47 and 48: DSN IA Test Team Test Preparation D
Page 49 and 50: APPENDIX D DSN ARCHITECTURE The Def
Page 51 and 52: APPENDIX E ASSESSMENT OBJECTIVES, C
Page 53 and 54: STIG. Not all checklists have paren
Page 55 and 56: HKLM\SYSTEM\CurrentControlSet\Servi
Page 57 and 58: Figure E-3. Configure Your Computer
Page 59 and 60: Table E-1. Gold Disk Minimum System
Page 61 and 62: Table E-3. DISA Gold Disk Test Proc
Page 63 and 64: Procedures (continued) Table E-5. S
Page 65 and 66: Table E-6. Additional IA Requiremen
Page 67 and 68: Table E-6. Additional IA Requiremen
Page 69 and 70: Table E-7. IPv6 Requirements Test C
Page 71 and 72: Table E-7. IPv6 Requirements (conti
Page 73 and 74:
NOTE 2: There is no requirement tha
Page 75 and 76:
Table E-7. IPv6 Requirements (conti
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Page 99 and 100:
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
106 (continued) Table E-7. IPv6 Req
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
3. Post Test. An IA Assessment Draf
Page 121 and 122:
7. System Under Test (SUT) Test Pro
Page 123 and 124:
Table E-9. TCP Sweep Test Procedure
Page 125 and 126:
Table E-12. Service Enumeration Tes
Page 127 and 128:
types of applications they are desi
Page 129 and 130:
(SQL) injection through web interfa
Page 131 and 132:
• Use TCP fragments in reverse or
Page 133 and 134:
Locater (URL) encoding string, sess
Page 135 and 136:
Figure E-8. Function Keys (3) Captu
Page 137 and 138:
1. Level 1 - T1/E1 Signal, Sync AIS
Page 139 and 140:
(d) Add additional Information Elem
Page 141 and 142:
(10) Key - F10 - Help. See Figure E
Page 143 and 144:
Figure E-21. Configuration Level 3
Page 145 and 146:
Figure E-25. Configure Level 1 (3)
Page 147 and 148:
f. SS7 Examples (1) SS7 Network Exa
Page 149 and 150:
APPENDIX F DOD INFORMATION ASSURANC
Page 151 and 152:
The DIP should contain the followin
Page 153 and 154:
APPENDIX G REFERENCES Department of
Page 155 and 156:
Napier, Michael JITC Action Officer
show all

DEFENSE SWITCHED NETWORK INFORMATION ASSURANCE ...

Create successful ePaper yourself

Delete template?

Save as template?