CCC.VPC.CN04: Enforce VPC Flow Logs on VPCs
Control ID:CCC.VPC.CN04
Title:Enforce VPC Flow Logs on VPCs
Objective:Ensure VPCs are configured with flow logs enabled to capture traffic
information.
Control Family:
Network Security
Related Threats
| ID | Title | Description | External Mappings | Capability Mappings | Control Mappings |
|---|---|---|---|---|---|
| CCC.VPC.TH04 | Lack of Network Visibility due to Disabled VPC Flow Logs | VPC subnets with disabled flow logs lack critical network traffic visibility, which can lead to undetected unauthorized access, data exfiltration, and network misconfigurations. This lack of visibility increases the risk of undetected security incidents. | 1 | 1 | 0 |
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VPC.CP16 | Flow Logs | Ability to capture information about the IP traffic going through the VPC. |
Guideline Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
NIST-CSF | PR.PT-1 | 0 | - |
ISO_27001 | 2013 A.12.4.1 | 0 | - |
NIST_800_53 | AU-2 | 0 | - |
CCM | IVS-06 | 0 | - |