CCC.ObjStor.C05: Versioning is Enabled for All Objects in the Bucket
Objective:Ensure that versioning is enabled for all objects stored in the object
storage bucket to enable recovery of previous versions of objects in
case of loss or corruption.
Control Family:
Data
Threats:
| ID | Title | Description |
|---|---|---|
| CCC.TH06 | Data is Lost or Corrupted | Data loss or corruption can occur due to accidental deletion, misconfiguration, or malicious activity. This can result in the loss of critical data, service disruption, or unauthorized access to sensitive information. |
NIST CSF:
PR.DS-1
Control Mappings
CCM:
DSP-16
ISO_27001:
2022 A.8.1.4
NIST_800_53:
SC-28
CP-10
Test Requirements
CCC.ObjStor.C05.TR01:When an object is uploaded to the object storage bucket, the object
MUST be stored with a unique identifier.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red
CCC.ObjStor.C05.TR02:When an object is modified, the service MUST assign a new unique
identifier to the modified object to differentiate it from the
previous version.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red
CCC.ObjStor.C05.TR03:When an object is modified, the service MUST allow for recovery
of previous versions of the object.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red
CCC.ObjStor.C05.TR04:When an object is deleted, the service MUST retain other versions of
the object to allow for recovery of previous versions.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red