STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 6 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide

V-260019

CAT II (Medium)

The Enterprise Voice, Video, and Messaging Session Manager must be configured to generate session (call) records that provide information necessary for corrective actions without revealing personally identifiable information or sensitive information.

Rule ID

SV-260019r949018_rule

STIG

Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide

Version

V1R2

CCIs

CCI-001312

Discussion

Any Enterprise Voice, Video, and Messaging Session Manager providing too much information in session records risks compromising the data and security of the application and system. The structure and content of session records must be carefully considered by the organization and development team.

Check Content

Verify the Enterprise Voice, Video, and Messaging Session Manager generates session records that provide information necessary for corrective actions without revealing personally identifiable information or sensitive information.

If the Enterprise Voice, Video, and Messaging Session Manager does not generate session records that provide information necessary for corrective actions without revealing personally identifiable information or sensitive information, this is a finding.

Fix Text

Configure the Enterprise Voice, Video, and Messaging Session Manager to generate session records that provide information necessary for corrective actions without revealing personally identifiable information or sensitive information.