>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

3.7.6Where manual cleartext cryptographic key-management operations are performed by personnel, key-management policies and procedures are implemented including managing these operations using split knowledge and dual control.

>Requirement Description

Where manual cleartext cryptographic key-management operations are performed by personnel, key-management policies and procedures are implemented including managing these operations using split knowledge and dual control. Applicability Notes This control is applicable for manual key-management operations. A cryptographic key that is simply split into two parts does not meet this requirement. Secret or private keys stored as key components or key shares must be generated via one of the following: Using an approved random number generator and within a secure cryptographic device (SCD), such as a hardware security module (HSM) or PTS-approved point-of-interaction device, OR According to ISO 19592 or equivalent industry standard for generation of secret key shares.

>Cross-Framework Mappings

SCF

CRY-09
Compare
GOV-02
Compare
OPS-01.1
Compare

Ask AI

Configure your API key to use AI features.