Protections against DoS attacks must be implemented.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
medium	V-222667	SRG-APP-000516	APSC-DV-003320	SV-222667r961863_rule	2025-02-12	6

Description
Known DoS threats documented in the threat model should be mitigated, to prevent DoS type attacks.

ℹ️ Check
Ask the application representative for the threat model document. Examine the threat model document and determine if DoS attacks are specified as a threat. If there are no DoS threats identified in the threat model, the requirement is not applicable. Verify the mitigations provided for DoS attacks are implemented from the threat model. If mitigations for DoS attacks are identified in the threat model but are not implemented, this is a finding.

ℹ️ Check

Ask the application representative for the threat model document. Examine the threat model document and determine if DoS attacks are specified as a threat. If there are no DoS threats identified in the threat model, the requirement is not applicable. Verify the mitigations provided for DoS attacks are implemented from the threat model. If mitigations for DoS attacks are identified in the threat model but are not implemented, this is a finding.

✔️ Fix
Implement mitigations from the threat model for DOS attacks.