CRY-14—Public Key Infrastructure-based Authentication

>Control Description

Information systems are configured to follow an established certification path to an accepted trust anchor; in the case of network failure, a local cache of revocation data is maintained to support validation.

Theme

Technology

Type

Preventive

Policy/Standard

Key Management Policy

>Implementation Guidance

1. Establish a process for executing periodic SSL tests to ensure that the identified Certificate authority is authorized to act as a trust anchor.

>Testing Procedure

1. Observe a sample of servers and domains and review their SSL test. 2. Observe the Certificate authority and ensure that it is an authorized to act as a trust anchor.

>Audit Artifacts

E-CRY-21

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

Ask AI

Configure your API key to use AI features.

>Control Description

Theme

Type

Policy/Standard

>Implementation Guidance

>Testing Procedure

>Audit Artifacts

>Framework Mappings

FedRAMP Rev 51

PCI DSS3

TX-RAMP1

Ask AI

FedRAMP Rev 5
1

PCI DSS
3

TX-RAMP
1