The Central Log Server must provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.

An XCCDF Rule

Description

A Trusted Platform Module (TPM) is an example of a hardware-protected data store that can be used to protect cryptographic keys.

ID: SV-263583r982447_rule
Version: SRG-APP-000915-AU-000400
Severity: Medium
References: CCI-004910
Updated: about 2 months ago

Remediation Templates

Configure the Central Log Server to provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.