14.8: Encrypt Sensitive Information at Rest

CSF v1.1 References:

PR.DS-1

PF v1.0 References:

PR.DS-P1

Threats Addressed:

Tampering
Repudiation

Group:

The next version of the control set incorporates all or part of this control into: 3.11: Encrypt Sensitive Data at Rest.

Control Statement

Encrypt all sensitive information at rest using a tool that requires a secondary authentication mechanism not integrated into the operating system, in order to access the information.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-171 Revision 2

NIST Special Publication 800-53 Revision 4