Absence of filtering or rate limiting permits malicious traffic to overload downstream services and facilitates brute-force activity.
Networking / Loadbalancer / Threats / DEV
Unrestricted Request Traffic Overwhelms Downstream Services
CCC.LB.TH01
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Core.CP04 | Transaction Rate Limits | The service can throttle, delay, or reject excess requests when transactions exceed a user-specified rate limit, and always provides industry-standard throughput up to that limit. |
| CCC.LB.CP22 | Rate Limiting / Throttling | Ability to limit the number of requests per second per client. This ensures that no single client or user overloads the backend servers, distributing requests fairly across multiple instances. |
Related Controls
| ID | Title | Description |
|---|---|---|
| CCC.LB.CN01 | Enforce and Detect Rate Limiting | Detect and throttle malicious or excessive requests to prevent downstream resource exhaustion and brute-force activity. |