Data Security (PR.DS)
Data are managed consistent with the organization's risk strategy to protect the confidentiality, integrity, and availability of information
Subcategories
PR.DS-01
The confidentiality, integrity, and availability of data-at-rest are protected
PR.DS-02
The confidentiality, integrity, and availability of data-in-transit are protected
PR.DS-03
Senior executives understand their roles and responsibilities
[Withdrawn: Incorporated into ID.AM-08, PR.PS-03]
PR.DS-04
Adequate capacity to ensure availability is maintained
[Withdrawn: Moved to PR.IR-04]
PR.DS-05
Protections against data leaks are implemented
[Withdrawn: Incorporated into PR.DS-01, PR.DS-02, PR.DS-10]
PR.DS-06
Integrity checking mechanisms are used to verify software, firmware, and information integrity
[Withdrawn: Incorporated into PR.DS-01, DE.CM-09]
PR.DS-07
The development and testing environment(s) are separate from the production environment
[Withdrawn: Incorporated into PR.IR-01]
PR.DS-08
Integrity checking mechanisms are used to verify hardware integrity
[Withdrawn: Incorporated into ID.RA-09, DE.CM-09]
PR.DS-10
The confidentiality, integrity, and availability of data-in-use are protected
PR.DS-11
Backups of data are created, protected, maintained, and tested