SC-12: Cryptographic Key Establishment and Management

Statement

• Establish and manage cryptographic keys when cryptography is employed within the system in accordance with the following key management requirements: requirements .

  • • Guidance:

      See references in NIST 800-53 documentation.

    • Guidance:

      Must meet applicable Federal Cryptographic Requirements. See References Section of control.

    • Guidance:

      Wildcard certificates may be used internally within the system, but are not permitted for external customer access to the system.