SKIP TO PAGE CONTENT

SC-13 Cryptographic Protection

Last Review: 10/1/22

Statement

The University information system implements cryptography required for each use in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Applicability

This Control applies to all West Texas A&M network information resources. The intended audience for this Control includes all information resource owners, custodians, and users of information resources.

Implementation

  • Confidential information being stored on portable devices, removable media or systems not owned by the University (including cloud or SAS vendors) shall be encrypted with a minimum of a 128-bit algorithm.
  • The encryption of sensitive but non-confidential data stored on portable devices, removable media, or non-University owned systems (including cloud or SAS vendors) will be based on risk management decisions.
  • Confidential information being transmitted over a public network (such as the Internet) must be encrypted with a minimum of a 128-bit algorithm.

Phone
Twitter
Facebook
Instagram
Mail