Key management (section 17.9)
Rationale:
Section had not been revised in a few years. Opportunity to make section more accessible and easier to understand.
Change Description:
New content including diagrams were added to make understanding of key management concepts easier. The revised content has been tailored to be more reflective of current key management operating practises, including cloud.
- one control has been deleted [CID 3016].
- one new control has been added.
- one control has been amended.
Expected Outcome:
Agencies have a clearer understanding of protecting cryptographic keying material through key management procedures.