Skip to main content

💼 3.5.1 Maintain a documented description of the cryptographic architecture

ID: /frameworks/pci-dss-v3.2.1/03/05/01

Description

Additional requirement for service providers only.

That includes:

Details of all algorithms, protocols, and keys used for the protection of cardholder data, including key strength and expiry date
Description of the key usage for each key
Inventory of any HSMs and other SCDs used for key management.

Similar

Sections
- /frameworks/pci-dss-v4.0/03/06/01/01
Internal
- ID: dec-c-925cde17

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 3.6.1.1 A documented description of the cryptographic architecture is maintained.					no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 3.6.1.1 A documented description of the cryptographic architecture is maintained.					no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Description
Similar
Similar Sections (Take Policies From)
Similar Sections (Give Policies To)
Sub Sections