GCP cloud_storage Mappings

Google's Cloud Storage is an object storage service that provides customers with replication, availability, access control, and data management. A feature to highlight is that Cloud Storage by default always encrypts data before it's written to disk on the server side.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name Notes
cloud_storage Cloud Storage protect significant T1530 Data from Cloud Storage Object
Comments
The cloud service provider's default encryption setting for data stored and written to disk in the cloud may protect against adversary's attempt to access data from improperly secured cloud storage. This technique was rated as significant due to the high protect coverage factor.
References
cloud_storage Cloud Storage protect significant T1565.001 Stored Data Manipulation
Comments
The cloud service provider's default encryption setting for data stored and written to disk in the cloud may protect against adversary's attempt to manipulate customer data-at-rest. This technique was rated as significant due to the high protect coverage factor.
References
cloud_storage Cloud Storage protect partial T1588.004 Digital Certificates
Comments
The cloud service provider's default encryption setting for data stored and written to disk in the cloud may protect against adversary's attempt to manipulate customer data-at-rest. This technique was rated as partial due to the medium to high protect coverage factor against variations of this attack.
References
cloud_storage Cloud Storage protect partial T1588.003 Code Signing Certificates
Comments
The cloud service provider's default encryption setting for data stored and written to disk in the cloud may protect against adversary's attempt to manipulate customer data-at-rest. This technique was rated as partial due to the medium to high protect coverage factor against variations of this attack.
References