FINOS-CCC/CCC.RDMS.CP@v2026.06-rc5

Digest	Media type	Size
538921ef7f40…	application/vnd.gemara.artifact.v1+yaml	6.3 KiB

CCC Relational Database Management System Capabilities

Capabilities for Relational Database Management System technologies, as defined by the FINOS Common Cloud Controls project.

ID: CCC.RDMS.CP
Version: v2026.06-rc5
Gemara version: v1.2.0
Author: FINOS Common Cloud Controls

Data Resilience

The Data Resilience group covers entries related to ensuring data availability, integrity, and sovereignty across its lifecycle. This includes replication, backup, recovery, region restrictions, and protection against data loss or corruption.

CCC.RDMS.CP01 SQL Support
Properly handle queries in the SQL language.
CCC.RDMS.CP02 DB Engine Option - MySQL
Ability to create a MySQL managed relational database.
CCC.RDMS.CP03 DB Engine Option - PostgreSQL
Ability to create a PostgreSQL managed relational database.
CCC.RDMS.CP04 DB Engine Option - MariaDB
Ability to create a MariaDB managed relational database.
CCC.RDMS.CP05 DB Engine Option - SQL Server
Ability to create a Microsoft SQL Server managed relational database.
CCC.RDMS.CP13 Deletion Protection
Protect the database against accidental deletion.
CCC.RDMS.CP15 Horizontal Scaling
Read replicas of the primary database can be created.
CCC.RDMS.CP16 Failover
Standby database can be implemented for failover when the primary can't be reached.

Access Control

The Access Control group covers entries related to authentication, authorization, and trust perimeter enforcement. This includes multi-factor authentication, least privilege access, network access rules, and prevention of unauthorized access or reconnaissance.

CCC.RDMS.CP06 DB Managed Credentials
Ability to managed the database credentials using the cloud provider's secret management service.
CCC.RDMS.CP07 DB Self Managed Credentials
Ability to manage the database credentials by client managed username and passwords.

Networking

The Networking group covers entries related to network infrastructure, connectivity, and traffic management. This includes virtual networks, subnets, load balancing, DNS, routing, peering, and network-level access controls.

CCC.RDMS.CP08 Support for IPv4
Ability to connect to the database using IPv4 addresses.
CCC.RDMS.CP09 Support for IPv6
Ability to connect to the database using IPv6 addresses
CCC.RDMS.CP10 Public Access
Allow database to be accessed by public internet.
CCC.RDMS.CP11 Disable Public Access
Prevent database been accessed by public internet.
CCC.RDMS.CP12 Managed Connection Pooling
Ability to configure a managed connection pool for the database.

Compute

The Compute group covers entries related to processing, execution, and runtime infrastructure. This includes CPU, memory, storage allocation, network ports, command-line interfaces, and elastic scaling.

CCC.RDMS.CP14 Dedicated Database Instances
Option to deploy the database on a dedicated instance for isolation requirements.

FINOS-CCC/CCC.RDMS.CP Capability Catalog

Install

Provenance

CCC Relational Database Management System Capabilities

Data Resilience

CCC.RDMS.CP01 SQL Support

CCC.RDMS.CP02 DB Engine Option - MySQL

CCC.RDMS.CP03 DB Engine Option - PostgreSQL

CCC.RDMS.CP04 DB Engine Option - MariaDB

CCC.RDMS.CP05 DB Engine Option - SQL Server

CCC.RDMS.CP13 Deletion Protection

CCC.RDMS.CP15 Horizontal Scaling

CCC.RDMS.CP16 Failover

Access Control

CCC.RDMS.CP06 DB Managed Credentials

CCC.RDMS.CP07 DB Self Managed Credentials

Networking

CCC.RDMS.CP08 Support for IPv4

CCC.RDMS.CP09 Support for IPv6

CCC.RDMS.CP10 Public Access

CCC.RDMS.CP11 Disable Public Access

CCC.RDMS.CP12 Managed Connection Pooling

Compute

CCC.RDMS.CP14 Dedicated Database Instances