Attackers with unauthorized access or excessive permissions may tamper with or roll back index versions, potentially restoring poisoned data or breaking downstream integrations.
Database / Vector / Threats / DEV
Index Corruption or Downgrade
CCC.Vector.TH04
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Vector.CP07 | Index Lifecycle Management | Enables automated or manual creation, optimization, and removal of vector indexes. |
| CCC.Vector.CP11 | Query Access Control | Provides the ability to restrict who can run vector similarity or metadata filter queries, separate from data modification rights. |
Related Controls
| ID | Title | Description |
|---|---|---|
| CCC.Vector.CN02 | Enforce Role-Based Index Lifecycle Management | Restrict index lifecycle operations (create, delete, rollback) to privileged identities using fine-grained access controls. |
| CCC.Vector.CN05 | Enforce Index Versioning with Rollback Protection | Ensure vector indexes are versioned and that rollback operations are authorized and auditable. |