CCC.Core.TH03 - Deployment Region Network is Untrusted

CCC.Core.TH03: Deployment Region Network is Untrusted

Threat ID:CCC.Core.TH03

Title:Deployment Region Network is Untrusted

Description:

Systems are susceptible to unauthorized access or interception by actors with social or physical control over the network in which they are deployed. If the geopolitical status of the deployment network is untrusted, unstable, or insecure, this could result in a loss of confidentiality, integrity, or availability of the service and its data.

Related Capabilities

ID	Title	Description
CCC.Core.F08	Data Replication	The service automatically replicates data across multiple deployments simultaneously with parity, or may be configured to do so.
CCC.Core.F22	Location Lock-In	The service may be configured to restrict the deployment of child resources to specific geographic locations.

External Mappings

Reference ID	Entry ID	Remarks
MITRE-ATT&CK	T1040	Network Sniffing
MITRE-ATT&CK	T1110	Brute Force
MITRE-ATT&CK	T1105	Ingress Tool Transfer
MITRE-ATT&CK	T1583	Acquire Infrastructure
MITRE-ATT&CK	T1557	Adversary-in-the-Middle

Controls

ID	Title	Objective	Control Family	Threat Mappings	Guideline Mappings	Assessment Requirements
CCC.Core.C06	Restrict Deployments to Trust Perimeter	Ensure that the service and its child resources are only deployed on infrastructure in locations that are explicitly included within a defined trust perimeter.	Data	1	4	2