Restrict Data Replication to Trust Perimeter | CCC

Skip to main content

CCC.Core.C10: Restrict Data Replication to Trust Perimeter

Control ID:CCC.Core.C10

Title:Restrict Data Replication to Trust Perimeter

Objective:Ensure that data is only replicated on infrastructure in locations that are explicitly included within a defined trust perimeter.

Control Family:

Data

Related Threats

ID	Title	Description	External Mappings	Capability Mappings	Control Mappings
CCC.Core.TH04	Data is Replicated to Untrusted or External Locations	Systems are susceptible to unauthorized access or interception by actors with political or physical control over the network in which they are deployed. Confidentiality may be impacted if the data is replicated to a network where the geopolitical status is untrusted, unstable, or insecure.	1	1	0

Related Capabilities

ID	Title	Description
CCC.Core.F21	Resource Replication	The service may be configured to replicate child resources across multiple deployments.

Guideline Mappings

Reference ID	Entry ID	Strength	Remarks
NIST-CSF	PR.DS-5	0	-
CCM	DSP-10	8	Sensitive Data Transfer (only processed within scope as permitted)
CCM	DSP-19	10	Data Location (specify and document the physical locations of data)
NIST_800_53	AC-4	0	-

Assessment Requirements

ID	Description	Applicability
CCC.Core.C10.TR01	When data is replicated, the service MUST ensure that replication only occurs to destinations that are explicitly included within the defined trust perimeter.	tlp-green tlp-amber tlp-red