When resource tags are altered, it can lead to misclassification or mismanagement of resources. This can reduce the efficacy of organizational policies, billing rules, or network access rules. Such changes could cause compromised confidentiality, integrity, or availability of the system and its data.
Core / Ccc / Threats / DEV
Resource Tags are Manipulated
CCC.Core.TH13
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Core.CP20 | Resource Tagging | The service provides users with the ability to tag a child resource with metadata that can be reviewed or queried. |
Related Controls
| ID | Title | Description |
|---|---|---|
| CCC.Core.CN18 | Prevent Unauthorized Modification of Resource Tags | Ensure that resource tags on the service or a child resource cannot be altered in ways that bypass organizational policy or cost controls. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | T1565 | Data Manipulation |