How can we help you with this control?
With 205 Controls, 423 enhancements and 1,394 definitions, it's overwhelming! Lucky for you, ISL's Cyber Security Professionals are here to help.
Contact us so we can discuss what Cyber Security controls mean to your organization.
SC-5 : DENIAL OF SERVICE PROTECTION
| FAMILY: System and Communications Protection | CLASS: Technical |
SC-5 : DENIAL OF SERVICE PROTECTION
The information system protects against or limits the effects of the following types of denial of service attacks: [Assignment: organization-defined list of types of denial of service attacks or reference to source for current list]. A variety of technologies exist to limit, or in some cases, eliminate the effects of denial of service attacks. For example, boundary protection devices can filter certain types of packets to protect devices on an organization?s internal network from being directly affected by denial of service attacks. Employing increased capacity and bandwidth combined with service redundancy may reduce the susceptibility to some denial of service attacks. Related control: SC-7.- Control Enhancements:
- (1) The organization obtains, protects as required, and makes available to authorized personnel, vendor/manufacturer documentation that describes the functional properties of the security controls employed within the information system with sufficient detail to permit analysis and testing.
- (2) The organization obtains, protects as required, and makes available to authorized personnel, vendor/manufacturer documentation that describes the security-relevant external interfaces to the information system with sufficient detail to permit analysis and testing.
- (3) The organization obtains, protects as required, and makes available to authorized personnel, vendor/manufacturer documentation that describes the high-level design of the information system in terms of subsystems and implementation details of the security controls employed within the system with sufficient detail to permit analysis and testing.
- Enhancement Supplemental Guidance: An information system can be partitioned into multiple subsystems.
- (4) The organization obtains, protects as required, and makes available to authorized personnel, vendor/manufacturer documentation that describes the low-level design of the information system in terms of modules and implementation details of the security controls employed within the system with sufficient detail to permit analysis and testing.
- Enhancement Supplemental Guidance: Each subsystem within an information system can contain one or more modules.
- (5) The organization obtains, protects as required, and makes available to authorized personnel, the source code for the information system to permit analysis and testing.
- References: None.
- Priority and Baseline Allocation:
-
P1 LOW SC-5 MOD SC-5 HIGH SC-5
Copyright © 2013 Information Systems Laboratories, Inc. All Rights Reserved
Privacy Policy |
Employees
Privacy Policy |
Employees