CCC.VPC.C03: Restrict VPC Peering to Authorized Accounts
Objective:Ensure VPC peering connections are only established with explicitly
authorized destinations to limit network exposure and enforce boundary
controls.
Control Family:
Network Security
Threats:
| ID | Title | Description |
|---|---|---|
| CCC.VPC.TH03 | Unauthorized Network Access Through VPC Peering | Unauthorized VPC peering connections can allow network traffic between untrusted or unapproved subscriptions, leading to potential data exposure or exfiltration. |
NIST CSF:
PR.AC-3
Control Mappings
CCM:
IVS-01
ISO_27001:
2013 A.13.1.3
NIST_800_53:
AC-4
Test Requirements
CCC.VPC.C03.TR01:When a VPC peering connection is requested, the service MUST
prevent connections from VPCs that are not explicitly
allowed.
TLP:
tlp_green
tlp_amber
tlp_red