The symmetric encryption mechanism must use a minimum key size of 128 bits.
F052. Insecure encryption algorithm
HIPAA Security Rules 164.312(a)(2)(iv):
Encryption and Decryption: Implement a mechanism to encrypt and decrypt
electronic protected health information.
V1.6 Cryptographic Architectural Requirements.(1.6.1)
Verify that there is an explicit policy for management of cryptographic keys
and that a cryptographic key lifecycle follows a key management standard such
as NIST SP 800-57.
Ready to start with Fluid Attacks?
Copyright © 2020 Fluid Attacks, We hack your software. All rights reserved.