CCC.Core.C02: Encrypt Data for Storage
Control ID:CCC.Core.C02
Title:Encrypt Data for Storage
Objective:Ensure that all data stored is encrypted at rest using strong
encryption algorithms.
Guideline Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|
NIST-CSF | PR.DS-1 | 0 | - |
CCM | CEK-03 | 5 | Data Encryption (in transit and at rest) |
CCM | CEK-04 | 10 | Key Management (use strong encryption) |
CCM | UEM-08 | 10 | Storage Encryption (on managed endpoint devices) |
CCM | DSP-17 | 0 | - |
NIST_800_53 | SC-13 | 0 | - |
NIST_800_53 | SC-28 | 0 | - |
Assessment Requirements
| ID | Description | Applicability |
|---|
| CCC.Core.C02.TR01 | When data is stored, it MUST be encrypted using the latest
industry-standard encryption methods.
| tlp-green tlp-amber tlp-red |