STIGQter: STIG Summary: Akamai KSD Service Impact Level 2 ALG Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017:

Kona Site Defender providing content filtering must protect against known and unknown types of denial-of-service (DoS) attacks by employing rate-based attack prevention behavior analysis.

DISA Rule

SV-91117r1_rule

Vulnerability Number

V-76421

Group Title

SRG-NET-000362-ALG-000112

Rule Version

AKSD-WF-000019

Severity

CAT II

CCI(s)

• CCI-002385 - The information system protects against or limits the effects of organization-defined types of denial of service attacks by employing organization-defined security safeguards.

Weight

10

Fix Recommendation

Configure the Kona Site Defender to enable rate controls.

The Akamai Professional Services team should be consulted to implement this Fix content due to the complexities involved. In most cases, this should be included in the SLA.

1. Log in to the Akamai Luna Portal (Caution-https://control.akamai.com).
2. Click the "Configure" tab.
3. Under the "Security" section, select "Security Configuration".
4. If prompted for which product to use, select "Site Defender" and then "Continue".
5. Under the "Security Configurations" section, click on the most recent version under the "Production" column for the security configuration being reviewed.
6. The detailed "Security Configuration" page will load listing the protected host names and applicable policies.
7. Click on the "Shared Resources" link.
8. Click on the "Rate Policies" link in the left hand column.
9. Click the plus shaped "+" icon to add a new Rate Policy.
10. Follow the prompts to complete the process and click the "Save" button to complete the process.
OR
Contact the Akamai Professional Services team to implement the changes at 1-877-4-AKATEC (1-877-425-2832).

Check Contents

Confirm Kona Site Defender has rate controls enabled:

1. Log in to the Akamai Luna Portal (https://control.akamai.com).
2. Click the "Configure" tab.
3. Under the "Security" section, select "Security Configuration".
4. If prompted for which product to use, select "Site Defender" and then "Continue".
5. Under the "Security Configurations" section, click on the most recent version under the "Production" column for the security configuration being reviewed.
6. The detailed "Security Configuration" page will load listing the protected host names and applicable policies.
7. Select the policy being reviewed.
8. Within the "Policy Details" section, verify the "Rate Controls" check box is selected.
9. Within the "Rate Controls" section, verify the action is set to "Deny" for each Adaptive Rule ID.

If "Rate Controls" is not selected, this is a finding.

Vulnerability Number

V-76421

Documentable

False

Rule Version

AKSD-WF-000019

Severity Override Guidance

Confirm Kona Site Defender has rate controls enabled:

1. Log in to the Akamai Luna Portal (https://control.akamai.com).
2. Click the "Configure" tab.
3. Under the "Security" section, select "Security Configuration".
4. If prompted for which product to use, select "Site Defender" and then "Continue".
5. Under the "Security Configurations" section, click on the most recent version under the "Production" column for the security configuration being reviewed.
6. The detailed "Security Configuration" page will load listing the protected host names and applicable policies.
7. Select the policy being reviewed.
8. Within the "Policy Details" section, verify the "Rate Controls" check box is selected.
9. Within the "Rate Controls" section, verify the action is set to "Deny" for each Adaptive Rule ID.

If "Rate Controls" is not selected, this is a finding.

Check Content Reference

M

Target Key

3165

Comments