💼 d. predefined activation and deactivation dates for cryptographic keys, limiting the period of time they remain valid for use. The period of time a cryptographic key remains valid would be commensurate with the risk;
- Contextual name: 💼 d. predefined activation and deactivation dates for cryptographic keys, limiting the period of time they remain valid for use. The period of time a cryptographic key remains valid would be commensurate with the risk;
- ID:
/frameworks/apra-cpg-234/e/5/d - Located in: 💼 5 An APRA-regulated entity would typically deploy, where relevant, controls to limit access to cryptographic keys, including:
Description
Empty...
Similar
- Internal
- ID:
dec-c-e17a05d5
- ID:
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (4)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 AWS IAM User Access Keys are not rotated every 90 days or less 🟢 | 1 | 🟢 x6 |
| 📝 AWS KMS Symmetric CMK Rotation is not enabled 🟢 | 1 | 🟢 x6 |
| 📝 Azure Non-RBAC Key Vault stores Secrets without expiration date 🟢 | 1 | 🟢 x6 |
| 📝 Azure RBAC Key Vault stores Secrets without expiration date 🟢 | 1 | 🟢 x6 |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-4d6fee7a | 1 | |
| ✉️ dec-x-82ca4127 | 2 | |
| ✉️ dec-x-bcb0c78f | 1 |