πΌ 52d appropriate segmentation of data, based on sensitivity and access needs;
- Contextual name: πΌ 52d appropriate segmentation of data, based on sensitivity and access needs;
- ID:
/frameworks/apra-cpg-234/20/52/d - Located in: πΌ 52 Typically, the strength of data leakage controls would be commensurate with the sensitivity of the data.
Descriptionβ
Empty...
Similarβ
- Internal
- ID:
dec-c-883b5d12
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (10)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS EC2 Security Group allows unrestricted traffic to MongoDB π’ | 1 | π’ x6 |
| π AWS EC2 Security Group allows unrestricted traffic to Oracle DBMS π’ | 1 | π’ x6 |
| π AWS RDS Instance is publicly accessible and in an unrestricted public subnet π’ | 1 | π’ x6 |
| π AWS S3 Bucket is not configured to block public access π’ | 1 | π’ x6 |
| π Azure Cosmos DB Account Virtual Network Filter is not enabled π’ | 1 | π’ x6 |
| π Azure Managed Disk Public Network Access is not disabled π’ | 1 | π’ x6 |
| π Azure SQL Database allows ingress from 0.0.0.0/0 (ANY IP) π’ | 1 | π’ x6 |
| π Azure SQL Server Public Network Access is not disabled π’ | 1 | π’ x6 |
| π Azure Storage Account Allow Blob Anonymous Access is set enabled π’ | 1 | π’ x6 |
| π Azure Storage Account Default Network Access Rule is not set to Deny π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-4f30f24e | 1 | |
| βοΈ dec-x-46a83a30 | 1 | |
| βοΈ dec-x-0289e9c9 | 1 | |
| βοΈ dec-x-083928f5 | 1 | |
| βοΈ dec-x-63737248 | 1 | |
| βοΈ dec-x-b17c005c | 1 | |
| βοΈ dec-x-d127f407 | 1 | |
| βοΈ dec-x-ec547a7c | 1 | |
| βοΈ dec-x-f937c35f | 1 | |
| βοΈ dec-z-c82c9f97 | 1 |