💼 CM-3(6) Cryptography Management (H)
- ID:
/frameworks/fedramp-high-security-controls/cm/03/06
Description
Ensure that cryptographic mechanisms used to provide the following controls are under configuration management: [FedRAMP Assignment: All security safeguards that rely on cryptography].
Similar
- Sections
/frameworks/nist-sp-800-53-r5/cm/03/06
- Internal
- ID:
dec-c-476e3e12
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 CM-3(6) Configuration Change Control _ Cryptography Management | 13 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (13)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS Account EBS Volume Encryption Attribute is not enabled in all regions🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudTrail is not encrypted with KMS CMK🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS DAX Cluster Server-Side Encryption is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EBS Attached Volume is not encrypted🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EFS File System encryption is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS ElastiCache Replication Group is not encrypted at rest🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Kinesis Stream is not encrypted at rest🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS OpenSearch Domain is not encrypted at rest🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Cluster Encryption is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Instance Encryption is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Snapshot is not encrypted🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS S3 Bucket is not encrypted with a KMS key🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS SNS Topic is not encrypted with a KMS key🟢 | 1 | 🟢 x6 | no data |