Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-19692 | APP3790 | SV-21833r1_rule | DCSQ-1 | Medium |
Description |
---|
Because of potential denial of service, web services should be designed to prioritize web service requests. |
STIG | Date |
---|---|
Application Security and Development Checklist | 2014-01-07 |
Check Text ( C-24089r1_chk ) |
---|
Ask the application representative for the design document. Review the design document for web services. Review the design and verify all web services can prioritize requests. Techniques used to prioritize web services include but are not limited to using Quality of Service (QoS) or some other means of reliable messaging such as WS_Reliability or WS_ReliableMessaging 1) For MAC I and MAC II systems; If the design document does not exist or does not indicate all web services can prioritize requests, this is a finding. 2) If the system is a MAC III system this requirement is NA |
Fix Text (F-23045r1_fix) |
---|
Implement priority based web services requests. |