SC-5(2): Capacity, Bandwidth, and Redundancy

Control Family:

System and Communications Protection

Parent Control:

SC-5: Denial-of-service Protection

CSF v1.1 References:

PR.DS-4
PR.PT-4
DE.CM-1

Threats Addressed:

Denial of Service

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
SC-5(2): Excess Capacity / Bandwidth / Redundancy

Control Statement

Manage capacity, bandwidth, or other redundancy to limit the effects of information flooding denial-of-service attacks.

Supplemental Guidance

Managing capacity ensures that sufficient capacity is available to counter flooding attacks. Managing capacity includes establishing selected usage priorities, quotas, partitioning, or load balancing.