[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [kmip] Groups - KMIP NIST Attribute Security uploaded
1. From a NIST perspective I interpret the following attributes as sensitive:
· Cryptographic Algorithm
· Cryptographic Length
· Cryptographic Parameters
· Cryptographic Domain Parameters
· Compromise Occurrence Date
· Compromise Date
· Revocation Reason
The Cryptographic components speak to sensitive information on how a key is constructed so in that regard it would be considered valuable information for a nefarious individual to know - plus these are all referenced as sensitive metadata from a NIST perspective.
Revocation Reason, knowing why something was revoked lends itself to be sensitive. Especially if the revoke is tied to a compromise.
Compromise information is sensitive as it is directly associated with something bad happening.
2. The following could be considered sensitive – though this type of information is pretty open as it stands
· Digital Signature Algorithm
3. I can think of cases where this is sensitive but in general I think this is a stretch:
· Contact Information
Semper Fortis Solutions, LLC
This message contains information from Semper Fortis Solutions, LLC which may be confidential and privileged. If you are not an intended recipient, please refrain from any disclosure, copying, distribution or use of this information and note that such actions are prohibited.
On 15/05/2014 10:08 AM, Charles White wrote: