Digital Security Program (DSP)
| Control | Status | |
|---|---|---|
| Use of Cryptographic Controls | Mechanisms exist to facilitate the implementation of cryptographic protections controls using known public standards and trusted cryptographic technologies. | |
| Alternate Physical Protection | Cryptographic mechanisms exist to prevent unauthorized disclosure of information as an alternative to physical safeguards. | |
| Export-Controlled Cryptography | Mechanisms exist to address the exporting of cryptographic technologies in compliance with relevant statutory and regulatory requirements. | |
| Transmission Confidentiality | Cryptographic mechanisms exist to protect the confidentiality of data being transmitted. | |
| Transmission Integrity | Cryptographic mechanisms exist to protect the integrity of data being transmitted. | |
| Encrypting Data At Rest | Cryptographic mechanisms exist to prevent unauthorized disclosure of data at rest. | |
| Non-Console Administrative Access | Cryptographic mechanisms exist to protect the confidentiality and integrity of non-console administrative access. | |
| Public Key Infrastructure (PKI) | Mechanisms exist to securely implement an internal Public Key Infrastructure (PKI) infrastructure or obtain PKI services from a reputable PKI service provider. | |
| Cryptographic Key Management | Mechanisms exist to facilitate cryptographic key management controls to protect the confidentiality, integrity and availability of keys. | |
| Symmetric Keys | Mechanisms exist to facilitate the production and management of symmetric cryptographic keys using Federal Information Processing Standards (FIPS)-compliant key management technology and processes. | |
| Asymmetric Keys | Mechanisms exist to facilitate the production and management of asymmetric cryptographic keys using Federal Information Processing Standards (FIPS)-compliant key management technology and processes that protect the user’s private key. | |
| Cryptographic Key Loss or Change | Mechanisms exist to ensure the availability of information in the event of the loss of cryptographic keys by individual users. | |
| Control & Distribution of Cryptographic Keys | Mechanisms exist to facilitate the secure distribution of symmetric and asymmetric cryptographic keys using industry recognized key management technology and processes. |