Documentation - V-274612

V-274612

Application Programming Interface (API) Security Requirements Guide

CAT II

Title

The API must employ throttling.

Description

<VulnDiscussion>The API must employ throttling to limit the effects of information flooding types of denial-of-service (DoS) attacks. DoS is a condition when a resource is not available for legitimate users. When this occurs, the organization either cannot accomplish its mission or must operate at degraded capacity. In the case of application DoS attacks, care must be taken when designing the application to ensure the application makes the best use of system resources. SQL queries have the pot...

Fix Text (Documentation Requirement)

Build or configure the API to employ throttling to limit the effects of information flooding attacks.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel