FINOS-CCC/CCC.ObjStor.CP Capability Catalog

FINOS-CCC/CCC.ObjStor.CP

Capabilities for Object Storage technologies, as defined by the FINOS Common Cloud Controls project.

Published by FINOS Common Cloud Controls

Install

OCI v1.1

$grcli unpack --repository finos-ccc/ccc.objstor.cp --tag v2026.06-rc4

Coordinate: oci.grc.store/finos-ccc/ccc.objstor.cp:v2026.06-rc4
Manifest digest: sha256:8ca4e72d08100bd3d76d556b36c6da34229d5941872f3a430b4e4910af466d5e

Provenance

1 layer

Digest	Media type	Size
89b272d64917…	application/vnd.gemara.artifact.v1+yaml	5.2 KiB

Bundle config blob

{
  "bundle-version": "1.0",
  "gemara-version": "v1.2.0",
  "metadata": {
    "provenance": {
      "buildDefinition": {
        "buildType": "https://grc.store/grcli/buildtype/v0",
        "externalParameters": {
          "artifact": {
            "id": "CCC.ObjStor.CP",
            "type": "CapabilityCatalog"
          },
          "target": {
            "registry": "oci.grc.store",
            "repository": "finos-ccc/ccc.objstor.cp",
            "tag": "v2026.06-rc4"
          }
        },
        "internalParameters": {
          "CI": "true",
          "GITHUB_ACTIONS": "true",
          "GITHUB_ACTOR": "eddie-knight",
          "GITHUB_REF": "refs/heads/main",
          "GITHUB_REPOSITORY": "eddie-knight/common-cloud-controls",
          "GITHUB_RUN_ATTEMPT": "1",
          "GITHUB_RUN_ID": "26770748733",
          "GITHUB_SHA": "2b6dab4c1307a0ac67d90c99829f6c1825154c84",
          "GITHUB_WORKFLOW": "Batch Release All Catalogs",
          "RUNNER_OS": "Linux"
        },
        "resolvedDependencies": [
          {
            "name": "artifacts/storage/object/capabilities.yaml",
            "uri": "file://artifacts/storage/object/capabilities.yaml",
            "digest": {
              "sha256": "89b272d64917a1473afde737b0aa2c437c3f823d25216910b70be8b9e2b13c23"
            }
          },
          {
            "name": "source",
            "uri": "git+https://github.com/eddie-knight/common-cloud-controls@2b6dab4c1307a0ac67d90c99829f6c1825154c84",
            "digest": {
              "gitCommit": "2b6dab4c1307a0ac67d90c99829f6c1825154c84"
            }
          }
        ]
      },
      "runDetails": {
        "builder": {
          "id": "https://github.com/eddie-knight/common-cloud-controls/actions/runs/26770748733",
          "version": {
            "go": "go1.25.0",
            "go-arch": "amd64",
            "go-os": "linux",
            "grcli": "v0.2.2"
          }
        },
        "metadata": {
          "invocationId": "26770748733-1",
          "startedOn": "2026-06-01T17:30:40.528995624Z",
          "finishedOn": "2026-06-01T17:30:40.910116605Z"
        },
        "byproducts": [
          {
            "name": "capabilities.yaml",
            "digest": {
              "sha256": "89b272d64917a1473afde737b0aa2c437c3f823d25216910b70be8b9e2b13c23"
            }
          }
        ]
      }
    }
  },
  "artifacts": [
    {
      "name": "capabilities.yaml",
      "type": "CapabilityCatalog",
      "id": "CCC.ObjStor.CP",
      "role": "artifact"
    }
  ]
}

CCC Object Storage Capabilities

Capabilities for Object Storage technologies, as defined by the FINOS Common Cloud Controls project.

ID: CCC.ObjStor.CP
Version: v2026.06-rc4
Gemara version: v1.2.0
Author: FINOS Common Cloud Controls

Data Resilience

The Data Resilience group covers entries related to ensuring data availability, integrity, and sovereignty across its lifecycle. This includes replication, backup, recovery, region restrictions, and protection against data loss or corruption.

CCC.ObjStor.CP01 Storage Buckets
Provides uniquely identifiable segmentations in which data elements may be stored.
CCC.ObjStor.CP02 Storage Objects
Supports storing, accessing, and managing data elements which contain both data and metadata.
CCC.ObjStor.CP05 Store New Objects
Supports for storing a new object in the bucket.
CCC.ObjStor.CP06 Replace Stored Objects
Supports for replacing an object in the bucket with a new object for the same key.
CCC.ObjStor.CP07 Delete Stored Objects
Supports for deleting objects from the bucket given the object key.
CCC.ObjStor.CP09 Object Modification Locks
Allows locking of objects to disable modification and/or deletion of an object for a defined period of time.
CCC.ObjStor.CP11 Querying
Supports performing simple select queries to retrieve only a subset of objects from the bucket.

Resource Management

The Resource Management group covers entries related to the lifecycle, configuration, and operational integrity of cloud resources. This includes resource exhaustion, tag manipulation, version rollback, scaling, and cost management.

CCC.ObjStor.CP03 Bucket Capacity Limit
Provides the ability to set a maximum total capacity for objects within a bucket.
CCC.ObjStor.CP04 Object Size Limit
Supports setting a maximum object size for storing objects.
CCC.ObjStor.CP08 Lifecycle Policies
Supports defining policies to automate data management tasks, especially those related to cost management.
CCC.ObjStor.CP12 Storage Classes
Provides different storage classes for frequently and infrequently accessed objects.

Access Control

The Access Control group covers entries related to authentication, authorization, and trust perimeter enforcement. This includes multi-factor authentication, least privilege access, network access rules, and prevention of unauthorized access or reconnaissance.

CCC.ObjStor.CP10 Object Level Access Control
Supports controlling access to specific objects within the object store.