πΌ SC-12 CRYPTOGRAPHIC KEY ESTABLISHMENT AND MANAGEMENT
- Contextual name: πΌ SC-12 CRYPTOGRAPHIC KEY ESTABLISHMENT AND MANAGEMENT
- ID:
/frameworks/nist-sp-800-53-r4/sc/12 - Located in: πΌ SC SYSTEM AND COMMUNICATIONS PROTECTION
Descriptionβ
The organization establishes and manages cryptographic keys for required cryptography employed within the information system in accordance with [Assignment: organization-defined requirements for key generation, distribution, storage, access, and destruction].
Similarβ
- Internal
- ID:
dec-c-2411c0ba
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ PR.DS-1: Data-at-rest is protected | 15 | 19 | ||
| πΌ NIST CSF v1.1 β πΌ PR.DS-2: Data-in-transit is protected | 14 | 21 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ SC-12 (1) AVAILABILITY | ||||
| πΌ SC-12 (2) SYMMETRIC KEYS | 1 | 1 | ||
| πΌ SC-12 (3) ASYMMETRIC KEYS | 1 | 1 | ||
| πΌ SC-12 (4) PKI CERTIFICATES | ||||
| πΌ SC-12 (5) PKI CERTIFICATES _ HARDWARE TOKENS |
Policies (4)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Root User has active access keys π’ | 1 | π’ x6 |
| π AWS IAM User Access Keys are not rotated every 90 days or less π’ | 1 | π’ x6 |
| π AWS IAM User has more than one active access key π’ | 1 | π’ x6 |
| π AWS IAM User with console and programmatic access set during the initial creation π’ | π’ x3 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-0a7801fb | 1 | |
| βοΈ dec-x-30795016 | 1 | |
| βοΈ dec-x-b10e98af | 1 | |
| βοΈ dec-x-bcb0c78f | 1 |