V6.4 — Secret Management
Secret Management: 2 L3 requirement(s). V6.4.1: Verify that a secrets management solution such as a key vault is used to securely create, store, control access to and d... V6.4.2: Verify that key material is not exposed to the application but instead uses an isolated security module like a vault for...
| Property | Value |
|---|---|
| Section | V6.4 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-CRYPTO-01 | PKCS#11 HSM Key Protection |
Source: OWASP Application Security Verification Standard 4.0.3