CCC.KeyMgmt.F20: Automatic Symmetric Key Rotation
Capability ID:CCC.KeyMgmt.F20
Title:Automatic Symmetric Key Rotation
Description:Supports the ability to automatically rotate a managed symmetric
key as long as the key was generated within the KMS.
Mapped Threats
| ID | Title | Description | External Mappings | Capability Mappings | Control Mappings |
|---|---|---|---|---|---|
| CCC.KeyMgmt.TH03 | Key Rotation is Disabled or Delayed Beyond Policy Limits | Modification of automatic or manual rotation settings can keep older key material active longer than intended, decreasing cryptographic resilience and extending exposure in the event of key compromise. | 1 | 1 | 0 |