The web server must provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.

An XCCDF Rule

Description

A Trusted Platform Module (TPM) is an example of a hardware-protected data store that can be used to protect cryptographic keys.

ID: SV-264357r984416_rule
Version: SRG-APP-000915-WSR-000310
Severity: Medium
References: CCI-004910
Updated: 5 days ago

Remediation Templates

Configure the web server to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.