Access Control for Backup and Restore Operations

← Back to CCC Relational Database Management System Features

CCC.RDMS.C04: Access Control for Backup and Restore Operations

Objective:Restrict who can initiate, manage, and validate database backup or restore operations through strict role-based or least-privilege access. Prevents accidental or malicious restorations, protecting data integrity and availability.

Control Family:

Identity and Access Management

Threats:

ID	Title	Description
CCC.RDMS.TH04	Unintentional Database Backup Restoration	A database backup may be restored unintentionally, potentially leading to the loss or overwrite of current data. This condition could disrupt operations and result in data inconsistency or corruption.

NIST CSF:

PR.AC-4

Control Mappings

NIST_800_53:

AC-6

Test Requirements

CCC.RDMS.C04.TR01:When there is an attempt to perform a backup or restore, then the attempt must fail with an access denied message if credentials or roles that are not explicitly authorized for backup/restore functions.

TLP:

tlp_red

tlp_amber