Secure Operation, Crypto-Officer Guidance

Non-Proprietary Security Policy, Version 1.0

June 15, 2007

2 Secure Operation

The VSX 3000, VSX 5000, and VSX 7000s meet Level 1 requirements for FIPS 140-2. The sections below describe how to place and keep the module in FIPS-approved mode of operation.

2.1 Crypto-Officer Guidance

The Crypto-Officer is responsible for initialization and security-relevant configuration and management of the module through the web management interface, serial port from a non networked PC, or secure Telnet over TLS. Please see Polycom’s Administrator’s Guide for the VSX Series for more information on setting up, configuring and maintaining the modules.

2.1.1Initialization

The Crypto-Officer is responsible for putting the modules in FIPS mode of Operation, by enabling the system to automatically encrypt calls. AES encryption is a standard feature on all VSX systems. The system will be shipped by default in Non-Secure Mode. To put the modules in FIPS mode of Operation, the Crypto-Officer must:

oGo to System → Admin Settings → System Security

oSelect Secure Mode

oSelecting the Secure mode will result in a system reset

oThe change of mode from Non-Secure mode to secure mode shall initiate Crypto-Officer password change request

2.1.2Management

Following are the points of System behavior in FIPS mode of Operation:

oDefault password (System Serial number) or Dummy password (No password), is not allowed for 'admin' login in the secured mode.

oOnly https over TLS, secure telnet, and secure FTP connections are allowed in the secured mode. The

standard http connections with no security will not be allowed.

oMedia encryption during a call (H.323/H.320) will always be set to ON (AES-Encryption ON) The following table details the port number to be used for secure applications, telnet, FTP, and https over TLS.

Application

TLS Telnet Debug Port

TLS Telnet API Port

TLS FTP for control Connection TLS FTP for data Connection TLS http

Port Number

992

993

990

989

443

The Crypto-Officer is able to monitor and configure the module via the web interface (https over TLS), serial port, or via secure telnet (Telnet over TLS). Detailed instructions to monitor and troubleshoot the systems are provided in the Administrator’s Guide for the VSX Series.

Software upgrade is not allowed in FIPS mode of Operation.

Polycom VSX 3000, VSX 5000, and VSX 7000s

Page 20 of 23

VSX 7000s, VSX 3000, VSX 5000 specifications

The Polycom VSX series comprises several high-quality video conferencing systems, notably the VSX 3000, VSX 7000s, and VSX 5000. Each model is designed to enhance communication in various settings, offering unique features, technologies, and characteristics tailored to meet diverse user needs.

The Polycom VSX 3000 is a compact, all-in-one video conferencing system ideal for smaller meeting rooms or personal offices. It features a sleek design with an integrated 15-inch LCD display, which provides an immersive visual experience. The VSX 3000 supports a maximum resolution of 640x480 at 30 frames per second, ensuring clear video quality. The system includes a built-in camera with 85-degree field of view, allowing for effective communication among participants. The VSX 3000 supports H.323 and SIP protocols, ensuring compatibility with various networks and systems. Additionally, it incorporates Polycom's Lost Packet Recovery technology, optimizing video quality even in challenging network conditions.

In contrast, the Polycom VSX 7000s is designed for more extensive video conferencing setups. This system features a modular design, allowing users to customize their setups with additional cameras, microphones, and displays. The VSX 7000s supports a higher resolution of up to 1024x768 pixels, providing more detailed visuals. One of the standout features of this model is its ability to integrate with content-sharing applications, enabling users to share documents and presentations seamlessly during meetings. The VSX 7000s also boasts advanced audio features, including StereoSurround technology, which enhances the auditory experience by providing spatial audio that mimics face-to-face interactions.

Lastly, the Polycom VSX 5000 is a versatile video conferencing solution that caters to mid-to-large conference rooms. It offers high-definition video quality with a resolution of up to 1280x720, ensuring clear and crisp visuals. The system supports multiple video outputs, allowing users to connect to various displays. The VSX 5000 is equipped with the advanced Polycom Content Management system, facilitating easy control of shared content and applications during meetings. With its versatile connectivity options, the VSX 5000 is capable of connecting to various video conferencing networks, enhancing its usability across different platforms.

In summary, the Polycom VSX series offers a range of video conferencing solutions that cater to varying needs, from compact setups for small offices with the VSX 3000 to versatile solutions for larger meeting environments with the VSX 7000s and VSX 5000. Each model integrates advanced technologies and features designed to ensure clear video, robust audio, and seamless connectivity, making them ideal choices for enhancing communication and collaboration in today's digital world.

Polycom VSX 7000s, VSX 5000 Secure Operation, Crypto-Officer Guidance, Initialization, Management

Models: VSX 7000s VSX 3000 VSX 5000