Search


Protection of Data-at-Rest

(Back)

Objective

Protect data at rest by default (e.g. storage) for cloud-based workloads.

Key Considerations

Validation

Applicable Service Models

References

  1. SPIN 2017-01, subsection 6.2.4
  2. Refer to the cryptography guidance in 40.111 and 40.062.
  3. Refer to the guidance in Considerations for Cryptography in Commercial Cloud Services.
  4. Related security controls: SC‑12, SC‑13, SC‑17, SC‑28, SC‑28(1)