Navigate

CCI-001095

CCI-001095 Definition

Manage capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial-of-service attacks.

Status
Type	CheckType.technical

Master Assessment Datasheet

Implementation Guidance

Determine if capacity, bandwidth, or other redundancies to limit the effects of information flooding denial-of-service attacks are managed.

Validation Procedures

Examine: [SELECT FROM: System and communications protection policy; procedures addressing denial-of-service protection; system design documentation; system configuration settings and associated documentation; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: System/network administrators; organizational personnel with information security responsibilities; organizational personnel with incident response responsibilities; system developer]. Test: [SELECT FROM: Mechanisms implementing the management of system bandwidth, capacity, and redundancy to limit the effects of information flooding denial-of-service attacks].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001095.

Control	Description
SC-5(2)	Manage capacity, bandwidth, or other redundancy to limit the effects of information flooding denial-of-service attacks.