>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SC-28(01)Protection of Information at Rest | Cryptographic Protection

Low
Moderate

>Control Description

Implement cryptographic mechanisms to prevent unauthorized disclosure and modification of the following information at rest on organization-defined system components or media: organization-defined information.

>Discussion

The selection of cryptographic mechanisms is based on the need to protect the confidentiality and integrity of organizational information. The strength of mechanism is commensurate with the security category or classification of the information. Organizations have the flexibility to encrypt information on system components or media or encrypt data structures, including files, records, or fields.

>Cross-Framework Mappings

SCF

BCD-11.4
Compare
CRY-05
Compare
CRY-04
Compare
DCH-07.2
Compare

Ask AI

Configure your API key to use AI features.