CCI-002387

The organization defines the denial of service attacks against other information systems that the information system is to restrict the ability of individuals to launch.

Implementation Guidance

The organization being inspected/assessed defines and documents the denial of service attacks against other information systems the information system is to restrict the ability of individuals to launch. DoD has determined the denial of service attacks as not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented denial of service attacks to ensure the organization being inspected/assessed defines the denial of service attacks against other information systems the information system is to restrict the ability of individuals to launch. DoD has determined the denial of service attacks as not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated Threat Model. 2.) System Security Plan (SSP) or any other documentation that defines the denial of service attacks against other information systems the information system is to restrict the ability of individuals to launch.

The controls below (if any) were marked by NIST as being related to CCI-002387.