← Back to catalog
SC-12(6)

Physical Control of Keys

System and Communications Protection (SC)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Maintain physical control of cryptographic keys when stored information is encrypted by external service providers.

Discussion

For organizations that use external service providers (e.g., cloud service or data center providers), physical control of cryptographic keys provides additional assurance that information stored by such external providers is not subject to unauthorized disclosure or modification.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.