SC-21: Secure Name/address Resolution Service (recursive or Caching Resolver)
From NIST's SP800-53:
Request and perform data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources.
Cyber Threat Graph Context
Explore how this control relates to the wider threat graph
SP800-53 Control Mapped to NIST Cyber Security Framework
Generated from NISTs SP800-53/CSF Crosswalk mappings.
| Control ID | Description |
|---|---|
| PR.PT-4 | Communications and control networks are protected |
MITRE ATT&CK Techniques
See which MITRE ATT&CK techniques this control helps to protect against.
| ATT&CK ID | Title | Associated Tactics |
|---|---|---|
| T1568 | Dynamic Resolution | Command and Control |
| T1071.002 | File Transfer Protocols | Command and Control |
| T1568.002 | Domain Generation Algorithms | Command and Control |
| T1071.004 | DNS | Command and Control |
| T1071 | Application Layer Protocol | Command and Control |
| T1071.003 | Mail Protocols | Command and Control |
| T1071.001 | Web Protocols | Command and Control |