547.15—What are the minimum technical standards for electronic data communications between system components?
This section provides minimum standards for electronic data communications with gaming equipment or components used with Class II gaming systems.
(a) Sensitive data.
Communication of sensitive data shall be secure from eavesdropping, access, tampering, intrusion or alteration unauthorized by the tribal gaming regulatory authority. Sensitive data shall include, but not be limited to:
(b) Wireless communications.
(1)
Wireless access points shall not be accessible to the general public.
(3)
Wireless communications shall be secured using a methodology that makes eavesdropping, access, tampering, intrusion or alteration impractical. By way of illustration, such methodologies include encryption, frequency hopping, and code division multiplex access (as in cell phone technology).
(c)
Methodologies shall be used that will ensure the reliable transfer of data and provide a reasonable ability to detect and act upon any corruption of the data.
(e)
Remote communications shall only be allowed if authorized by the tribal gaming regulatory authority. Class II gaming systems shall have the ability to enable or disable remote access, and the default state shall be set to disabled.
(g)
The Class II gaming system shall log the establishment, loss, and re-establishment of data communications between sensitive Class II gaming system components.