QS0017-02: Encryption Key Management Policy Flashcards
QS0017-01: Encryption Key Management Policy
What is an example of software that could be used to generate keys for software integrations or for SSH logins?
PuTTy has a product called PuTTyGen that may be used
QS0017-01: Encryption Key Management Policy
Can encryption processes be used without approval by DevOps?
Encryption processes must not be used unless DevOps approve the procedures.
QS0017-01: Encryption Key Management Policy
Keys used to protect production data-at-rest should be stored in two secure locations. What are the locations?
AWS and LastPass
QS0017-01: Encryption Key Management Policy
How often must the keys used for encrypting data be changed?
At least annually; preferably automatically
QS0017-01: Encryption Key Management Policy
When must a Digital certificate expire?
After a maximum of 12 months.