VPC Service Controls

E459735

Google Cloud security feature access control mechanism

VPC Service Controls is a Google Cloud security feature that creates a virtual security perimeter around services and data to reduce the risk of data exfiltration.

Try in SPARQL Jump to: Statements Referenced by

Statements (52)

Predicate	Object
instanceOf	Google Cloud security feature ⓘ access control mechanism ⓘ
appliesTo	Google Cloud projects NERFINISHED ⓘ Google Cloud services NERFINISHED ⓘ service resources ⓘ
category	cloud data security ⓘ zero trust security control ⓘ
configurationScope	folder level ⓘ organization level ⓘ project level ⓘ
controls	access to Google Cloud services ⓘ
developedBy	Google NERFINISHED ⓘ
documentedAt	https://cloud.google.com/vpc-service-controls ⓘ
enforces	restrictions based on device attributes ⓘ restrictions based on network ⓘ restrictions based on request origin ⓘ restrictions based on user identity ⓘ restrictions on API access ⓘ
hasPurpose	protect data in Google Cloud services ⓘ reduce risk of data exfiltration ⓘ
integratesWith	Access Context Manager NERFINISHED ⓘ Cloud Audit Logs NERFINISHED ⓘ Cloud Identity and Access Management NERFINISHED ⓘ Cloud Interconnect NERFINISHED ⓘ Cloud Logging NERFINISHED ⓘ Cloud VPN NERFINISHED ⓘ Private Google Access ⓘ
mitigates	data exfiltration to unauthorized destinations ⓘ data exfiltration via compromised credentials ⓘ data exfiltration via misconfigured networks ⓘ
partOf	Google Cloud Platform NERFINISHED ⓘ
protects	AI Platform services NERFINISHED ⓘ BigQuery NERFINISHED ⓘ Cloud Bigtable NERFINISHED ⓘ Cloud Pub/Sub NERFINISHED ⓘ Cloud SQL (via supported integrations) NERFINISHED ⓘ Cloud Spanner NERFINISHED ⓘ Cloud Storage NERFINISHED ⓘ Secret Manager NERFINISHED ⓘ
provides	virtual security perimeter ⓘ
requires	Access Context Manager for access levels NERFINISHED ⓘ
supports	context-aware access policies ⓘ multi-perimeter architectures ⓘ perimeter-based access control ⓘ service perimeter bridging ⓘ testing policies in dry run mode ⓘ
usesConcept	access levels ⓘ bridge perimeter ⓘ dry run mode ⓘ egress rules ⓘ ingress rules ⓘ service perimeter ⓘ

Referenced by (3)

Full triples — surface form annotated when it differs from this entity's canonical label.

Google Cloud Dataproc → securityFeature → VPC Service Controls ⓘ

Cloud Build → supports → VPC Service Controls ⓘ

Artifact Registry → hasSecurityFeature → VPC Service Controls ⓘ