S 4.11 Screening of PBX interfaces
Initiation responsibility: PBX System Manager, IT Security Officer
Implementation responsibility: Administrator
The interfaces of a PBX system that may be used to perform administrative work constitute points worthy of protection. Therefore, they should be particularly secured. Unauthorised persons may use unused or unprotected interfaces in order to manipulate the system, for example using a laptop. The password protection on a PBX control site or PC gateway would be inefficient in such a case. The objective is therefore to prevent this, but at the least to make the attempt discernible. For this reason, the interfaces used should be tightly screwed and possibly sealed additionally. Unused interfaces may be protected with the help of screwed and sealed sealing caps.
Review questions:
- Are unneeded PBX interfaces protected using physical mechanisms?