Implement Cleanup Policies for Artifacts

CCC.CntrReg.C02: Implement Cleanup Policies for Artifacts

Control ID:CCC.CntrReg.C02

Title:Implement Cleanup Policies for Artifacts

Objective:Ensure that unused or outdated artifacts are cleaned up according to defined policies to manage storage effectively and reduce security risks associated with outdated versions.

Control Family:

Data Management

Related Threats

ID	Title	Description	External Mappings	Capability Mappings	Control Mappings
CCC.Core.TH14	Older Resource Versions are Used	Running older versions of child resources can expose the system to known vulnerabilities that have been addressed in more recent versions. If the version identifier is detected by an attacker, it may be possible to exploit these vulnerabilities to compromise the confidentiality, integrity, or availability of the system and its data.	1	1	0

Related Capabilities

ID	Title	Description
CCC.Core.F18	Resource Versioning	The service automatically assigns versions to child resources which can be used to preserve, retrieve, and restore past iterations.

Guideline Mappings

Reference ID	Entry ID	Strength	Remarks
NIST-CSF	PR.IP-6	0	-
NIST_800_53	SI-12	0	-

Assessment Requirements

ID	Description	Applicability
CCC.CntrReg.C02.TR01	Confirm that artifacts older than the specified retention period are automatically deleted from the registry.	tlp-red tlp-amber