Skip to main content

πŸ’Ό 3.7.5 Key management policies procedures are implemented to include the retirement, replacement, or destruction of keys used to protect stored account data.

Description​

As deemed necessary when:

  • The key has reached the end of its defined cryptoperiod.
  • The integrity of the key has been weakened, including when personnel with knowledge of a cleartext key component leaves the company, or the role for which the key component was known.
  • The key is suspected of or known to be compromised.

Retired or replaced keys are not used for encryption operations.

Similar​

  • Sections
    • /frameworks/pci-dss-v3.2.1/03/06/05
    • /frameworks/pci-dss-v4.0.1/03/07/05
  • Internal
    • ID: dec-c-54ac314f

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 3.6.5 Retirement or replacement of keys as deemed necessary when the integrity of the key has been weakened, or keys are suspected of being compromised.
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 3.7.5 Key management policies procedures are implemented to include the retirement, replacement, or destruction of keys used to protect stored account data.

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 3.6.5 Retirement or replacement of keys as deemed necessary when the integrity of the key has been weakened, or keys are suspected of being compromised.
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 3.7.5 Key management policies procedures are implemented to include the retirement, replacement, or destruction of keys used to protect stored account data.

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags