⭐ Repository → 💼 CIS GCP v1.1.0 → 💼 3 Networking
💼 3.4 Ensure that RSASHA1 is not used for the key-signing key in Cloud DNS DNSSEC
- ID:
/frameworks/cis-gcp-v1.1.0/03/04
Description
DNSSEC algorithm numbers in this registry may be used in CERT RRs. Zone signing (DNSSEC) and transaction security mechanisms (SIG(0) and TSIG) make use of particular subsets of these algorithms. The algorithm used for key signing should be a recommended one and it should be strong.
Similar
- Internal
- ID:
dec-c-ad097f8a
- ID:
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|