💼 3.6.1 Procedures are defined and implemented to protect cryptographic keys used to protect stored account data against disclosure and misuse.
- ID:
/frameworks/pci-dss-v4.0/03/06/01
Description
That include:
- Access to keys is restricted to the fewest number of custodians necessary.
- Key-encrypting keys are at least as strong as the data-encrypting keys they protect.
- Key-encrypting keys are stored separately from data-encrypting keys.
- Keys are stored securely in the fewest possible locations and forms.
Similar
- Sections
/frameworks/pci-dss-v3.2.1/03/05/frameworks/pci-dss-v4.0.1/03/06/01
- Internal
- ID:
dec-c-c138f39e
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PCI DSS v3.2.1 → 💼 3.5 Document and implement procedures to protect keys used to secure stored cardholder data against disclosure and misuse. | 4 | 1 | no data | ||
| 💼 PCI DSS v4.0.1 → 💼 3.6.1 Procedures are defined and implemented to protect cryptographic keys used to protect stored account data against disclosure and misuse. | 3 | 1 | no data |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PCI DSS v3.2.1 → 💼 3.5 Document and implement procedures to protect keys used to secure stored cardholder data against disclosure and misuse. | 4 | 1 | no data | ||
| 💼 PCI DSS v4.0.1 → 💼 3.6.1 Procedures are defined and implemented to protect cryptographic keys used to protect stored account data against disclosure and misuse. | 3 | 1 | no data |
Sub Sections
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ Google Project with KMS keys has a principal with Owner role🟢 | 1 | 🟢 x6 | no data |