Where can organizations find standards for key-management practices, such as guidance from NIST?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Study for the PCI Data Security Standard Exam. Master your knowledge with interactive flashcards and multiple-choice questions, each with hints and explanations. Prepare confidently for your certification test!

Multiple Choice

Where can organizations find standards for key-management practices, such as guidance from NIST?

Key-management practices are most thoroughly covered by NIST Special Publication 800-57. This publication provides formal recommendations for cryptographic key management, detailing how keys should be generated, stored, distributed, used, rotated, and retired, and how these activities fit into a cryptographic module and overall security architecture. ISO 27001 offers an information security management system framework but does not give the detailed key-management guidance found in NIST. PCI DSS focuses on protection of cardholder data and includes encryption and key-management requirements, but it’s specific to payment environments rather than a broad set of key-management standards. COBIT 5 is a governance framework and does not provide the technical standards for key management.

Where can organizations find standards for key-management practices, such as guidance from NIST?

Study for the PCI Data Security Standard Exam. Master your knowledge with interactive flashcards and multiple-choice questions, each with hints and explanations. Prepare confidently for your certification test!

Where can organizations find standards for key-management practices, such as guidance from NIST?

Get the latest from Examzify