STIGQter STIGQter: STIG Summary: CA API Gateway ALG Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 28 Apr 2017:

The CA API Gateway providing content filtering must generate an alert to, at a minimum, the ISSO and ISSM when Denial of Service (DoS) incidents are detected.

DISA Rule

SV-86083r1_rule

Vulnerability Number

V-71459

Group Title

SRG-NET-000392-ALG-000148

Rule Version

CAGW-GW-000810

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Open the CA API Gateway - Policy Manager and double-click the Registered Services requiring email notifications for DoS attacks that did not have the "Send Email Alert" Assertion included.

Add the "Send Email Alert" Assertion to the policy at the required decision points, usually after an "Apply Rate Limit" or "Apply Throughput Quota" Assertion within the policy as per organizational requirements.

Optionally, the "Send Email Alert" Assertion can be added to a Global Policy detecting DoS attacks.

Check Contents

Open the CA API Gateway - Policy Manager and double-click any of the Registered Services requiring email notifications for denial of service attacks.

Verify the "Send Email Alert" Assertion has been included in the policy at the required decision points, usually after an "Apply Rate Limit" or "Apply Throughput Quota" Assertion within the policy as per organizational requirements.

If it is not present, this is a finding.

Vulnerability Number

V-71459

Documentable

False

Rule Version

CAGW-GW-000810

Severity Override Guidance

Open the CA API Gateway - Policy Manager and double-click any of the Registered Services requiring email notifications for denial of service attacks.

Verify the "Send Email Alert" Assertion has been included in the policy at the required decision points, usually after an "Apply Rate Limit" or "Apply Throughput Quota" Assertion within the policy as per organizational requirements.

If it is not present, this is a finding.

Check Content Reference

M

Target Key

3049

Comments