IDEF Key Management, v1.0
Specifies requirements in accordance with Identity Ecosystem Framework (IDEF) requirement SECURE-11: KEY MANAGEMENT.
Assessment Step
1
Key Management (KeyManagement)
Does the entity implement key management policies and processes consistent with industry-accepted practices for all cryptographic solutions that it uses for identity management?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.
|
Conformance Criteria (1)
Key Management
Entities that use cryptographic solutions as part of identity management MUST implement key management policies and processes that are consistent with industry-accepted practices.
Citation
IDEF
Page 34
|