Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
234
Views
1
Helpful
2
Replies

FTD security audit compliance questions

tato386
Level 6
Level 6

‎06-16-2024 12:43 PM

A security auditor has requested we show how our FMC/FTD security devices comply with the following two controls.  What can I show them to satisfy these requirements?

TIA,

SC-5: Denial of Service Protection:The information system protects against or limits the effects of the types of denial of service attacks
SC-7 (18): Fail Secure: The information system fails securely in the event of an operational failure of a boundary protection device

 

0 Helpful
2 Replies 2

Marius Gunnerud
VIP
VIP

‎06-17-2024 05:41 AM

SC-5: Denial of Service Protection:The information system protects against or limits the effects of the types of denial of service attacks

This would be IPS (Policies > Intrusion) and connection time-outs (Device > Platform Settings > (relevant platform settings profile) > Timeouts). 

SC-7 (18): Fail Secure: The information system fails securely in the event of an operational failure of a boundary protection device

This is high availability, so if you have active / standby failover configured you are good.

--
Please remember to select a correct answer and rate helpful posts

tato386
Level 6
Level 6

‎06-18-2024 06:06 PM

seems reasonable to me.  Let's see what the auditors say.

Thank you!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card