CCC.ObjStor.C03: Prevent Bucket Deletion Through Irrevocable Bucket Retention Policy
Objective:Ensure that object storage bucket is not deleted after creation,
and that the preventative measure cannot be unset.
Control Family:
Data
Threats:
| ID | Title | Description |
|---|---|---|
| CCC.TH06 | Data is Lost or Corrupted | Data loss or corruption can occur due to accidental deletion, misconfiguration, or malicious activity. This can result in the loss of critical data, service disruption, or unauthorized access to sensitive information. |
NIST CSF:
PR.DS-1
Control Mappings
CCM:
DSP-16
ISO_27001:
2022 A.8.1.4
NIST_800_53:
SC-28
CP-10
Test Requirements
CCC.ObjStor.C03.TR01:When an object storage bucket deletion is attempted, the bucket MUST be
fully recoverable for a set time-frame after deletion is requested.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red
CCC.ObjStor.C03.TR02:When an attempt is made to modify the retention policy for an object
storage bucket, the service MUST prevent the policy from being modified.
TLP:
tlp_clear
tlp_green
tlp_amber
tlp_red