Log All Access and Changes | CCC

Skip to main content

CCC.Core.C04: Log All Access and Changes

Control ID:CCC.Core.C04

Title:Log All Access and Changes

Objective:Ensure that all access attempts are logged to maintain a detailed audit trail for security and compliance purposes.

Control Family:

Logging & Monitoring

Related Threats

ID	Title	Description	External Mappings	Capability Mappings	Control Mappings
CCC.Core.TH01	Access is Granted to Unauthorized Users	Logic designed to give different permissions to different entities may be misconfigured or manipulated, allowing unauthorized entities to access restricted parts of the service, its data, or its child resources. This could result in a loss of data confidentiality or tolerance of unauthorized actions which impact the integrity and availability of resources and data.	1	1	0

Related Capabilities

ID	Title	Description
CCC.Core.F06	Access Control	The service automatically enforces user configurations to restrict or allow access to a specific component or a child resource based on factors such as user identities, roles, groups, or attributes.

Guideline Mappings

Reference ID	Entry ID	Strength	Remarks
NIST-CSF	DE.AE-3	0	-
CCM	LOG-08	5	Log Records (Generate audit records containing relevant security information)
NIST_800_53	AU-2	0	-
NIST_800_53	AU-3	0	-
NIST_800_53	AU-12	0	-

Assessment Requirements

ID	Description	Applicability
CCC.Core.C04.TR01	When administrative access or configuration change is attempted on the service or a child resource, the service MUST log the client identity, time, and result of the attempt.	tlp-clear tlp-green tlp-amber tlp-red
CCC.Core.C04.TR02	When any attempt is made to modify data on the service or a child resource, the service MUST log the client identity, time, and result of the attempt.	tlp-amber tlp-red
CCC.Core.C04.TR03	When any attempt is made to read data on the service or a child resource, the service MUST log the client identity, time, and result of the attempt.	tlp-red