Versions Compared

Old Version 3

changes.mady.by.user Daniel Alexander

Saved on

compared with

New Version Current

changes.mady.by.user Bruno Belizario

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Page Properties

Version

1.01

Owner

Head of EngineeringCTO

Last Updated on

Last Updated by

Daniel Alexander

Approved by

Raphael Santos

Last Review

Purpose

To ensure proper and effective use of cryptography to protect the confidentiality, authenticity and/or integrity of information. This policy establishes requirements for the use and protection of cryptographic keys throughout their entire lifecycle.

...

For all web traffic sent over the public Internet containing confidential, the TLS v1.2 3 protocol or better must be utilized.

...

The following table includes the recommended usage for cryptographic keys:

Domain

Key Type

Algorithm

Key Length

Max Expiration

Web Certificate

Digital Signature

DSA or RSA PCKS#1

2048 bit

Up to 2 years for normal certificates, up to 10 years for root certificates.

Web Cipher

Encryption

AES

256 bit

N/A

Confidential

Encryption

AES

256 bit

1 Year

Password

Hash

Bcrypt, PBKDF2, or scrypt, ECDH

256 bit+10K Stretch

N/A

Laptop HDD

Encryption

AES

128 or 256 bit

N/A

Exceptions

Requests for an exception to this policy must be submitted to Raphael Santos for approval.

...