RPP-27195 AND Manual Business Services NETWORK INFRASTRUCTURE Document TFC-BSM-IRM-STD-04, REV A-6 STANDARDS Page 1 of 8 Issue Date April 27, 2017

Ownership matrix Click for copy of Word (native) file

1.0 PURPOSE AND SCOPE

This standard provides guidelines for performing activities that require Hanford (HLAN) access, data network support, end-user computing support, information systems, and telecommunications (e.g., , network, video, , paging systems). (5.1.3)

This standard does not apply to communication systems designed as safety-significant private automatic exchange (PAX) systems.

2.0 IMPLEMENTATION

This standard is effective on the date shown in the header.

3.0 RESPONSIBILITIES

3.1 Chief Information Officer

 Ensures that all information management services are provided primarily by the contracted Information Resource Management (IRM) services provider. (5.1.2)

 Ensures the IRM services provider provides design, installation, management, operations, and engineering services for the Hanford site telecommunications infrastructure, systems, and facilities. (5.1.2)

 Ensures the IRM services provider manages the Integrated Voice and Data Telecommunications System (IVDTS). (5.1.2)

 Ensures the Safeguards and Security provider provides computer, network, and telecommunications security. (5.1.2)

 Authorizes the use of Voice over Protocol (VoIP) technologies. Establishes usage restrictions and implementation guidance for VoIP based on the potential to cause damage to the information system, if used maliciously. (5.1.1)

 Documents, monitors, and controls the use of VoIP within the information system. (5.1.1)

4.0 STANDARD

4.1 Telephone Systems

The Hanford Site telephone system provides dial tone and special circuit connectivity to the Hanford site for the Department of Energy, Richland Operations Office (DOE-RL). The system is classified as a Class IV system that includes all electronics, fiber, and copper infrastructure spanning across the entire Hanford Site, south Richland, and Kennewick.

BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 2 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

4.1.1 Service Implementation

4.1.1.1 Engineering and Oversight

The IRM service provider is contracted to provide accountability for design authority, configuration control, engineering, and oversight of common infrastructure elements and system expansion.

4.1.1.2 Operation and Maintenance

Q-West performs IVDTS-related operations and maintenance services for the IVDTS system from the switch to the end-telephone devices. This work includes all service-related functions to ensure reliable telephone service, including sustaining the extensive fiber-optic backbone throughout the Hanford site. (Q-West provides operations and maintenance of the IVDTS system and the entire telephone infrastructure, without exception.)

4.1.2 System Boundaries and Demarcations

There are two systems within the IVDTS voice and special circuit systems:

4.1.2.1 IVDTS Voice System

The IVDTS voice system provides voice communications to site users. The voice system boundaries encompass the entire system including all components of the IVDTS voice system. Since the IVDTS system requires end-to-end accountability, there are no demarcations for this system. The boundaries include:

 End-user telephone devices, including handsets, wall mounts, speakers, answering machines, , etc.

 The IVDTS inside plant, including cable infrastructure, backboards and patch panels, cross-connection, conduit, and raceway systems

 The IVDTS , including cabling infrastructure (aerial and underground), manhole, hand hole, and vault facilities

 The IVDTS electronic equipment, including concentrator and equipment and central office facilities and equipment

 All dedicated private line circuits and all trunking necessary for connecting the IVDTS to the local .

4.1.2.2 VDTS Special Circuit System

The IVDTS special circuit system provides connectivity for other systems requiring signaling transport media. These systems generally transmit data, control, and alarm signaling information between end systems. The special circuit system boundaries encompass the common infrastructure from the outward bound. The special circuit interface card is the designated demarcation point where all communication media from the interface card (e.g., /data service unit (CSU/DSU)) outward bound (including wiring and BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 3 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

electronic equipment such as concentrators, multiplexers, bridges, and routers) are the responsibility of either Q-West or the IRM service provider depending on the functional responsibility identified above.

4.1.3 Media

Telephone system media includes telephone cable and hardware needed to connect the IVDTS to all station apparatus (including building wiring, intra-area wiring, and inter-area wiring). Standards for IVDTS media type are referenced in the network architecture design, guidelines, and standards at: http://msc.rl.gov/hwsw/.

4.2 Network Systems

The Site network systems provide communication connectivity used to transmit data, telemetry, control, data acquisition, and signaling information outside of the vendor-manufactured equipment.

The IRM service provider is contracted as the Hanford Site design authority and design agent for Tank Operations Contractor networks. Specific requirements are listed in MSC-RD-15672.

4.2.1 Service Classification

1. The IRM service provider is contracted to provide expansion, sustained operation, and maintenance of the HLAN, the Hanford Site general-use network, and the common network infrastructure.

2. The IRM service provider is contracted to provide design authority and oversight, configuration control, engineering and documentation of the HLAN, communications protocol, network internet protocol addressing, and common network infrastructure.

4.2.2 System Boundaries and Demarcations

The network interface card is the designated demarcation point wherein all communication media from the network interface card outward bound (including wiring and network equipment such as concentrators, bridges, and routers) are the responsibility of the IRM service provider.

1. The HLAN, Hanford Site general-use network, is comprised of inside and outside cabling, concentrators, bridges, routers, switches, modems, and other similar network equipment that provides data and signal communication connectivity residing on common network infrastructure and not connected to the HLAN. The demarcation point for these network systems is at the network interface device of each end-user’s equipment.

2. The HLAN system is comprised of components in the general-use network boundaries with one exception. For office automation systems using HLAN applications, there is no demarcation point since the IRM services provider has end-to-end configuration, maintenance, and operation responsibilities. For process control systems attached to the HLAN, the demarcation point is the network interface card for each system connected to the HLAN. BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 4 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

4.2.3 Media

Network systems media are comprised of cable and hardware needed to connect the network system with all workstation equipment (including building wiring, intra-area wiring, and inter-area wiring) either as fiber optic or copper media type. Standards for network systems media type are referenced in the network architecture design, guidelines, and standards at http://msc.rl.gov/hwsw/.

4.3 Video Systems

The Hanford Site video system provides remote video image information to remote end users on and off the Hanford Site. There are two types of video systems used on the Hanford Site; teleconferencing and surveillance systems. These systems, for the most part, use Hanford Site centralized infrastructure systems for transporting video information.

For security reasons, the remote activation of collaborative computing mechanisms (e.g., video and audio conferencing) is prohibited.

4.3.1 Video Teleconferencing Systems

The Hanford Site video teleconferencing systems provide teleconferencing capabilities that enhance communication for remote users and promote cost-effective communication alternatives.

4.3.1.1 Service Classification

1. The IRM service provider is contracted to provide operation and maintenance of Hanford Site video teleconferencing systems. Actual administration of specific teleconferencing systems is usually delegated to specific individuals required to provide daily or weekly coordination for these local systems.

2. The IRM service provider is contracted to provide design authority and oversight, configuration control, engineering, and documentation of the Hanford Site video teleconferencing systems. Other services include consulting for end-user video conferencing hardware and software equipment and systems, standards development and administration, and program planning.

4.3.1.2 System Boundaries and Demarcations

There are two types of video teleconferencing systems:

1. Group teleconferencing systems provide video teleconferencing to groups in large teleconference room or centers

2. Individual end-user teleconferencing systems provide video teleconferencing capability at the desktop.

Both of these are closed systems where the IRM services provider has end-to-end responsibility. Consequently, there are no demarcation points for video teleconferencing systems. BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 5 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

4.3.1.3 Media

Video systems media are comprised of cable and hardware needed to connect the system with all end-user equipment (including building wiring, intra-area wiring) either as copper or fiber optic media type. Standards for video systems media type are referenced in the network architecture design, guidelines, and standards at http://msc.rl.gov/hwsw/

4.3.2 Video Surveillance Systems

The Hanford Site video surveillance systems provide video monitoring and control capabilities to remote users. Most surveillance systems that require intra-area and inter-area data transmission use Hanford Site infrastructure systems for transport connectivity.

4.3.2.1 Service Classification

1. The IRM services provider is contracted to provide operation and maintenance of the Hanford site infrastructure systems. Specific operation and maintenance groups provide end-user system support.

2. The IRM services provider is contracted to provide design authority and oversight, configuration control, engineering, and documentation of the Hanford site infrastructure systems. Specific end-user engineering groups control actual end-user surveillance systems (e.g., cameras and video processing control systems).

4.3.2.2 System Boundaries and Demarcations

Video surveillance systems are typically designed in two parts: end systems (e.g., cameras, controllers, video processors, etc.) and transmission systems (transmitters and signal transmission systems connecting to fiber optics, copper, or infrastructure). The demarcation points for these systems are the video interface unit between the end-user equipment and the transmission system. The interface unit converts the video signal into a composite transmission signal.

NOTE: The video interface unit is the designated demarcation point where all video surveillance transmission from the video interface unit outward bound (including wiring and infrastructure transport equipment) is the responsibility of the IRM services provider.

4.3.2.3 Media

Video systems media are comprised of cable and hardware needed to connect the system with all end-user equipment (including building wiring and intra-area wiring) either as copper or fiber optic media type. Standards for video systems media type are referenced in the network architecture design, guidelines, and standards at http://msc.rl.gov/hwsw/. 4.4 Radio Systems

Hanford Site radio systems provide voice and data communication that uses spectrum frequency for transmission purposes. These radio systems are comprised of portable, mobile, base station, and repeater-type radio equipment connected by Hanford Site infrastructure. All and licensed frequency radio systems used on the Site are required to be registered with the Site frequency manager. BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 6 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

4.4.1 Service Implementation

The IRM service provider is contracted to provide radio management oversight, frequency management, and design authority for radio systems that are authorized to operate on the Hanford Site.

1. The IRM service provider is contracted to provide operation and maintenance of all Site radio systems and actual administration of specific end-user radio equipment. Assigned channel usage is usually delegated to end-user radio work groups who administer their respective equipment. Designated channel administrators administer and provide administrative controls for the use of a specific radio channel or frequency.

2. The IRM service provider is contracted to provide design authority and oversight, frequency management and coordination, configuration control, consulting, engineering, and documentation of the Site radio system. Responsibilities and performance are accomplished in accordance with the DOE Radio Procedural Guide and the National Telecommunications and Information Administration of the U.S. Department of Commerce.

4.4.2 System Boundaries and Demarcations

Hanford Site radio systems are closed systems where the IRM service provider has end-to-end responsibility. Consequently, there are no demarcation points for Site radio systems.

4.4.3 Media

Radio systems media are comprised of cable and hardware needed to connect the radio system with all end-user equipment (including building wiring, intra-area wiring, and inter-area wiring) whether as copper or fiber optic media type. Standards for radio systems media type are referenced in the network architecture design, guidelines, and standards at http://msc.rl.gov/hwsw/.

4.5 Paging Systems

The Hanford Site paging system provides voice and data notification to employees who require remote notification capabilities. The paging system is comprised of portable units, repeaters, and a central control system. This system is accessed by dialing an “85” number from Hanford Site , dialing 373-PAGE from off-site telephones, or using the paging program on HLAN.

NOTE: Local, regional, and national paging services are also offered to Hanford Site users. These services are contracted from commercial service providers where the service provider is solely responsible. The following information addresses the Hanford Site paging system.

4.5.1 Service Implementation

The IRM service provider is contracted to provide paging system administration oversight, operation, maintenance, procurement, frequency management, and design authority/configuration control. Responsibilities and performance are accomplished in accordance with the DOE Radio BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 7 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

Procedural Guide and the National Telecommunications and Information Administration of the U.S. Department of Commerce.

4.5.2 System Boundaries and Demarcations

The Hanford Site paging system is a closed system where the IRM service provider has end-to- end responsibility. Consequently, there are no demarcation points for site radio systems.

4.5.3 Media

The paging system media are comprised of a centralized control system, repeaters, antennas, cables, and hardware needed to connect the paging system with remote repeaters (including building wiring, intra-area wiring, and inter-area wiring) whether as copper or fiber optic media type.

4.6 Private Automatic Exchange Systems

Q-West is contracted for oversight of the Hanford Site PAX systems. The responsibility and/or the point of demarcation for safety significant PAX systems shall be determined on a case-by-case basis.

4.7 Drawings and Engineering Support

Related drawings and engineering support and document management (including records management and document control) are managed in accordance with the standards and requirements in TFC-BSM-IRM_DC-C-01 and TFC-BSM-IRM_DC-C-02.

The IRM service provider is contracted to maintain and keep current as-built telecommunications drawings. These drawings include work for:

 Floor plans  Equipment layout  Schematics  Combined distribution frame, house cable, and terminals  Inside and outside wire and cable distribution plant  Backbone distribution, single-mode, and multi-mode fiber optic cable.

The IRM service provider is contracted to manage telephone records and documentation associated with network drawings and engineering support, including:

 Station features  Trunks, foreign exchange, and tie-lines  Equipment inventory  Service interruptions and trouble reports  Preventive maintenance and routine test reports  Time slot/multiplex or channel assignments  Automated cable records  Backbone distribution, single-mode, and multi-mode fiber optic cable.

BUSINESS SERVICES Document TFC-BSM-IRM-STD-04, REV A-6 Page 8 of 8 TELECOMMUNICATIONS AND Issue Date April 27, 2017 NETWORK INFRASTRUCTURE STANDARDS

5.0 SOURCES

5.1 Requirements

1. DOE O 205.1A, 2006, Department of Energy, Office of the Undersecretary of Energy, Program Cyber Security Plan, U.S. Department of Energy, Washington, D.C., December 4, 2006.

2. Washington River Protection Solutions, LLC. Contract DE-AC27-08RV14800, Exhibit A.

3. OMB Circular No. A-130, “Memorandum for Heads of Executive Departments and Establishments,” “Management of Federal Information Resources.” (Management Directed)

5.2 References

1. MSC-RD-15672, “Telecommunications and Network Infrastructure Management.”

2. TFC-BSM-CP_CPR-C-09, “Supply Chain Process.”

3. TFC-BSM-IRM_DC-C-01, “Document Control.”

4. TFC-BSM-IRM_DC-C-02, “Records Management.”

5. TFC-BSM-IRM_SE-C-02, “Radio and Telecommunications Security.”

6. TFC-ESHQ-Q_ADM-C-01, “Graded Quality Assurance.”

7. TFC-PLN-17, “Information Resource Management Operational Services Program Description.”