Key management infrastructure (that is, key generation, key storage, key destruction, key update, and key revocation) is implemented to support cryptographic controls
Context and Guidance: Examples of architectural tactics for management of public/private key pairs and certificates include operating system and browser-supported key stores, remote key servers, and cryptographic tokens and smart cards. Maintenance of key management infrastructure includes consideration of changes in technology that may impact security (such as quantum computing).
Related Practices • Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: ARCHITECTURE-5a, ARCHITECTURE-5b, ARCHITECTURE-5c, ARCHITECTURE-5d, ARCHITECTURE-5e, ARCHITECTURE-5f, ARCHITECTURE-5g, ARCHITECTURE-5h.