Your browser has JavaScript turned off.
You must turn it on to proceed.










NORS -- CSRIC Best Practices Result

CSRIC Best Practices Result

Detailed Information for the Best Practice: 9-8-8031

Number 9-8-8031
Priority Critical
Description LAES Interfaces and Processes: Service Providers, Network Operators, and Equipment Providers should develop and communicate Lawfully Authorized Electronic Surveillance (LAES) policy. They should:
·         Limit the distribution of information about LAES interfaces
·         Periodically conduct risk assessments of LAES procedures
·         Audit LAES events for policy compliance
·         Limit access to those who are authorized for LAES administrative functions or for captured or intercepted LAES content
·         Promote awareness of all LAES policies among authorized individuals
Network Type(s) Cable; Internet/Data; Satellite; Wireless; Wireline
Industry Role(s) Service Provider; Network Operator; Equipment Supplier
Keyword(s) Cyber Security;Disaster Recovery;Emergency Preparedness;
Reference/Comments http://www.atis.org/ - ATIS-0300276.2008 Operations, Administration, Maintenance, and Provisioning Security Requirements for the Public Telecommunications Network: A Baseline of Security Requirements for the Management Plane: March 2008.