Add in control catalog with first object storage example

finos · Mar 22, 2024 · a28a9fe · a28a9fe
1 parent 4bd0f12
commit a28a9fe
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 3 deletions.
diff --git a/control-catalog/control-catalog.md b/control-catalog/control-catalog.md
@@ -0,0 +1,9 @@
+| Key      | Value    |
+|----------|----------|
+| Control Id   | CCC.OS.C1   |
+| Objective | Enforce encryption-in-transit |
+| Description   | Block all unencrypted requests to the object storage bucket you control |
+| Test | GIVEN you own the object storage bucket; WHEN an unencrypted HTTP request is made to the bucket; THEN the request should be denied |
+| Service Taxonomy Id  | CCC-020115 |
+| NIST CF  | Protect  |
+| Threats | CCC.OS.T1 |
diff --git a/threat-catalog/storage/object/threats.md b/threat-catalog/storage/object/threats.md
@@ -3,6 +3,6 @@
 | Threat Id   | CCC.OS.T1   |
 | Name   | Intercept data in transit to an external bucket   |
 | Description   | Object storage service allows communication over HTTP. An attacker can intercept the traffic you send to an external bucket, in order to read or modify the data.  |
-| Service Taxonomy ID  | CCC-020115   |
-| MITRE ATT&CK  | [TA009](https://attack.mitre.org/tactics/TA0009/) [T1557](https://attack.mitre.org/techniques/T1557/)  |
-| MITRE MITIGATION | [M1041](https://attack.mitre.org/mitigations/M1041) |
+| Service Taxonomy Id  | CCC-020115   |
+| MITRE ATT&CK TTPs | [TA009](https://attack.mitre.org/tactics/TA0009/) [T1557](https://attack.mitre.org/techniques/T1557/)  |
+| MITRE ATT&CK Mitigations | [M1041](https://attack.mitre.org/mitigations/M1041) |