CCC.VPC.C02: Limit Resource Creation in Public Subnet
Control ID:CCC.VPC.C02
Title:Limit Resource Creation in Public Subnet
Objective:Restrict the creation of resources in the public subnet with
direct access to the internet to minimize attack surfaces.
Control Family:
Network Security
Related Threats
| ID | Title | Description | External Mappings | Capability Mappings | Control Mappings |
|---|---|---|---|---|---|
| CCC.VPC.TH02 | Exposure of Resources to Public Internet | Assignment of external IP addresses to resources exposes resources to the public internet, increasing the risk of attacks such as brute force, exploitation of vulnerabilities, or unauthorized access. | 1 | 1 | 0 |
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VPC.F04 | Public Subnet Creation | Ability to create a subnet that allows resources within the subnet to communicate with the public internet. |
Guideline Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
NIST-CSF | PR.AC-3 | 0 | - |
CCM | SEF-05 | 0 | - |
ISO_27001 | 2013 A.13.1.1 | 0 | - |
NIST_800_53 | AC-4 | 0 | - |