Content library
Encryption
Default strong encryption for data in transit
Technical cyber security
Encryption

Default strong encryption for data in transit

Start free trial

Task description

Default strong encryption for data in transit

The organization should ensure that all products and services it offers or uses are configured to encrypt data in transit by default. This default encryption must utilize strong cryptographic methods, meaning those for which there are no known, successfully demonstrated breaches in the relevant scientific community.

This applies to data transmitted across a wide range of product and service elements, including, but not limited to, operating systems, communication channels, storage systems, user interfaces, integrated systems, applications, and supporting services like cloud services or outsourced business processes.

A process should be in place to regularly review the strength of the encryption methods used and update them as necessary to maintain a high level of security against evolving threats.

Requirements connected to the task

§ 60: Anvendelse af kryptografi
Bekendtgørelse om modstandsdygtighed og beredskab i energisektoren (Danmark)

Other tasks from the same security theme

Task name
Priority
Policy
Other requirements
Verifying achieved protection level from used cryptographic procedures
Critical
High
Normal
Low
Encryption
4
requirements

Examples of other requirements this task affects

5.1.1: Cryptography management
TISAX
§ 3.1.4: Kryptering
MSBFS 2020:7
§ 60: Anvendelse af kryptografi
Energisektor beredskabsbekendtgørelse
See all related requirements and other information from tasks own page.
Go to >
Verifying achieved protection level from used cryptographic procedures
Encryption of backup data
Critical
High
Normal
Low
Encryption
45
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
12.3.1: Information backup
ISO 27001
TEK-20: Varmuuskopiointi
Julkri
8.13: Information backup
ISO 27001
8.24: Use of cryptography
ISO 27001
See all related requirements and other information from tasks own page.
Go to >
Encryption of backup data
Encryption of laptops
Critical
High
Normal
Low
Encryption
44
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
6.6.4: Fyysisten tilojen, laitteiden ja tulosteiden turvallisuus
Omavalvontasuunnitelma
TEK-18.1: Etäkäyttö - tietojen ja tietoliikenteen salaaminen
Julkri
8.24: Use of cryptography
ISO 27001
21.2.h: Encryption
NIS2
See all related requirements and other information from tasks own page.
Go to >
Encryption of laptops
Encryption key inventory and management system
Critical
High
Normal
Low
Encryption
36
requirements

Examples of other requirements this task affects

10.1.2: Key management
ISO 27017
21.2.h: Encryption
NIS2
CC6.1c: Technical security for protected information assets
SOC 2
9.8 §: Salaus
Kyberturvallisuuslaki
2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
See all related requirements and other information from tasks own page.
Go to >
Encryption key inventory and management system
Encryption of stored data
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

B3.c: Stored data
CAF 4.0
See all related requirements and other information from tasks own page.
Go to >
Encryption of stored data
Default strong encryption for data in transit
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

§ 60: Anvendelse af kryptografi
Energisektor beredskabsbekendtgørelse
See all related requirements and other information from tasks own page.
Go to >
Default strong encryption for data in transit
Updating and implementing cryptographic technology
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Updating and implementing cryptographic technology
Criteria for selection of encryption and cryptographic controls
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Criteria for selection of encryption and cryptographic controls
Encryption of data in use
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Encryption of data in use
Creating and maintaining encryption and cryptography policy
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

§ 3.1.4: Kryptering
MSBFS 2020:7
See all related requirements and other information from tasks own page.
Go to >
Creating and maintaining encryption and cryptography policy
Certificate management
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Certificate management
Authority approval for cryptosystems and cryptographic algorithms
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

§ 5-6: Kryptosikkerhet
Sikkerhetsloven
See all related requirements and other information from tasks own page.
Go to >
Authority approval for cryptosystems and cryptographic algorithms
Protection of data at rest
Critical
High
Normal
Low
Encryption
10
requirements

Examples of other requirements this task affects

PR.DS-1: Data-at-rest is protected.
CyberFundamentals
PR.DS-01: Data-at-rest is protected
NIST 2.0
Article 13.1(.2.e): Confidentiality
CRA
§ 2.2.1 (Konfidentialitet): Informationssäkerhetsskyddsåtgärder
SSL
§ 4.7: Datakryptering
MSBFS 2020:7
See all related requirements and other information from tasks own page.
Go to >
Protection of data at rest
Defining technical rules for encryption of information
Critical
High
Normal
Low
Encryption
23
requirements

Examples of other requirements this task affects

5.1.1: Cryptography management
TISAX
30 § 3.8°: La cryptographie et du chiffrement
NIS2 Belgium
14.5.9): Kriptografijos ir šifravimo
NIS2 Lithuania
19.2.h: Encryption
NIS2 Malta
23.3.h: Versleuteling
NIS2 Netherlands
See all related requirements and other information from tasks own page.
Go to >
Defining technical rules for encryption of information
Encryption and addressing protections for secure data transfer
Critical
High
Normal
Low
Encryption
9
requirements

Examples of other requirements this task affects

5.1.2: Information transfer
TISAX
3.10: Encrypt Sensitive Data in Transit
CIS 18
Article 35: Data, system and network security
DORA simplified RMF
Article 13.1(.2.e): Confidentiality
CRA
B3.b: Data in transit
CAF 4.0
See all related requirements and other information from tasks own page.
Go to >
Encryption and addressing protections for secure data transfer
Use of authority-approved encryption solutions
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

I-12: EVALUATION AND APPROVAL OF CRYPTOGRAPHIC PRODUCTS - CRYPTO SOLUTIONS
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Use of authority-approved encryption solutions
Good encryption key management practices
Critical
High
Normal
Low
Encryption
21
requirements

Examples of other requirements this task affects

10.1.2: Key management
ISO 27001
I12: Salausratkaisut
Katakri
6.6.3: Tekniset vaatimukset
Omavalvontasuunnitelma
TEK-16: Tiedon salaaminen
Julkri
21.2.h: Encryption
NIS2
See all related requirements and other information from tasks own page.
Go to >
Good encryption key management practices
Encryption of portable media
Critical
High
Normal
Low
Encryption
26
requirements

Examples of other requirements this task affects

8.3.1: Management of removable media
ISO 27001
8.3.3: Physical media transfer
ISO 27001
10.1.1: Policy on the use of cryptographic controls
ISO 27001
PR.PT-2: Removable media
NIST
A.11.4: Protecting data on storage media leaving the premises
ISO 27018
See all related requirements and other information from tasks own page.
Go to >
Encryption of portable media
Smartphone and tablet encryption
Critical
High
Normal
Low
Encryption
5
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
Article 35: Data, system and network security
DORA simplified RMF
B3.d: Mobile data
CAF 4.0
See all related requirements and other information from tasks own page.
Go to >
Smartphone and tablet encryption
General, risk-based encryption policy
Critical
High
Normal
Low
Encryption
38
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
10.1.2: Key management
ISO 27001
I12: Salausratkaisut
Katakri
TEK-01.1: Verkon rakenteellinen turvallisuus - salaus yleisissä tietoverkoissa
Julkri
8.24: Use of cryptography
ISO 27001
See all related requirements and other information from tasks own page.
Go to >
General, risk-based encryption policy
Secure transmission of confidential information over a data network
Critical
High
Normal
Low
Encryption
5
requirements

Examples of other requirements this task affects

14 §: Tietojen siirtäminen tietoverkossa
TiHL
4.4: Salassa pidettävien tietojen siirtäminen yleisissä tietoverkoissa
TiHL tietoturvavaatimukset
Art. 11: Übermittlung und Nutzung der Informationen
CSV
Article 40: User confidentiality
CSL (China)
See all related requirements and other information from tasks own page.
Go to >
Secure transmission of confidential information over a data network
Electronic transfer of material (CL IV–CL II)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

I15: Aineiston sähköinen välitys
Katakri
I-15: EXCHANGE OF CLASSIFIED INFORMATION BETWEEN PHYSICALLY PROTECTED AREAS - ELECTRONIC TRANSFER OF THE INFORMATION
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Electronic transfer of material (CL IV–CL II)
Transfer of material by mail or courier (CL IV)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

I16: Aineiston välitys postilla ja kuriirilla
Katakri
F-08.1: TRANSFER OF INFORMATION BY USING POSTAL OR COURIER SERVICES
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Transfer of material by mail or courier (CL IV)
Transfer of material by mail or courier (CL III)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

I16: Aineiston välitys postilla ja kuriirilla
Katakri
F-08.1: TRANSFER OF INFORMATION BY USING POSTAL OR COURIER SERVICES
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Transfer of material by mail or courier (CL III)
Transfer of material by mail or courier (CL II)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

I16: Aineiston välitys postilla ja kuriirilla
Katakri
F-08.1: TRANSFER OF INFORMATION BY USING POSTAL OR COURIER SERVICES
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Transfer of material by mail or courier (CL II)
Providing customers with encryption key management capabilities
Critical
High
Normal
Low
Encryption
4
requirements

Examples of other requirements this task affects

10: Cryptography
ISO 27017
10.1: Cryptographic controls
ISO 27017
10.1.2: Key management
ISO 27017
See all related requirements and other information from tasks own page.
Go to >
Providing customers with encryption key management capabilities
Regularly auditing encryption and encryption key management systems
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Regularly auditing encryption and encryption key management systems
Use of industry-approved cryptographic libraries
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Use of industry-approved cryptographic libraries
Encryption keys provisioned for unique purpose
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Encryption keys provisioned for unique purpose
Recycling encryption keys
Critical
High
Normal
Low
Encryption
3
requirements

Examples of other requirements this task affects

2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
See all related requirements and other information from tasks own page.
Go to >
Recycling encryption keys
Revoking encryption keys
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Revoking encryption keys
Destruction of encryption keys
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Destruction of encryption keys
Activation of encryption keys
Critical
High
Normal
Low
Encryption
4
requirements

Examples of other requirements this task affects

2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
2.7.2: Activate encryption in services which offer such functionality
NSM ICT-SP
See all related requirements and other information from tasks own page.
Go to >
Activation of encryption keys
Deactivating encryption keys
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Deactivating encryption keys
Encryption key temporary revocation
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Encryption key temporary revocation
Encryption key archival
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Encryption key archival
Encryption key recovery
Critical
High
Normal
Low
Encryption
3
requirements

Examples of other requirements this task affects

2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
See all related requirements and other information from tasks own page.
Go to >
Encryption key recovery
Managing compromised encryption keys
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
See all related requirements and other information from tasks own page.
Go to >
Managing compromised encryption keys
Considering encryption and cryptographic key management in risk management procedures
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

No items found.
See all related requirements and other information from tasks own page.
Go to >
Considering encryption and cryptographic key management in risk management procedures
Compliance of used cryptographic controls in relation to applicable requirements
Critical
High
Normal
Low
Encryption
6
requirements

Examples of other requirements this task affects

18.1.5: Regulation of cryptographic controls
ISO 27001
18.1.5: Regulation of cryptographic controls
ISO 27017
5.31: Legal, statutory, regulatory and contractual requirements
ISO 27001
2.7.1: Establish crypto strategy in the organisation
NSM ICT-SP
Article 13.1(.2.e): Confidentiality
CRA
See all related requirements and other information from tasks own page.
Go to >
Compliance of used cryptographic controls in relation to applicable requirements
Descriptions of used cryptography in relation to offered cloud services
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

18.1.5: Regulation of cryptographic controls
ISO 27017
See all related requirements and other information from tasks own page.
Go to >
Descriptions of used cryptography in relation to offered cloud services
Protection of data in transit
Critical
High
Normal
Low
Encryption
47
requirements

Examples of other requirements this task affects

PR.DS-2: Data-in-transit
NIST
21.2.h: Encryption
NIS2
Article 9a: Protection
DORA
5.1.2: Information transfer
TISAX
9.8 §: Salaus
Kyberturvallisuuslaki
See all related requirements and other information from tasks own page.
Go to >
Protection of data in transit
Salaus yleisissä tietoverkoissa
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-01.1: Verkon rakenteellinen turvallisuus - salaus yleisissä tietoverkoissa
Julkri
See all related requirements and other information from tasks own page.
Go to >
Salaus yleisissä tietoverkoissa
Salaaminen turva-alueiden ulkopuolella
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-01.4: Verkon rakenteellinen turvallisuus - salaaminen turva-alueiden ulkopuolella
Julkri
See all related requirements and other information from tasks own page.
Go to >
Salaaminen turva-alueiden ulkopuolella
Hallintayhteyksien salaaminen julkisessa verkossa
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-04.2: Hallintayhteydet - hallintayhteyksen salaaminen
Julkri
See all related requirements and other information from tasks own page.
Go to >
Hallintayhteyksien salaaminen julkisessa verkossa
Langattomien yhteyksien salaaminen
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-05: Langaton tiedonsiirto
Julkri
See all related requirements and other information from tasks own page.
Go to >
Langattomien yhteyksien salaaminen
Encryption solution and guidelines for personnel to encrypt transferred information
Critical
High
Normal
Low
Encryption
13
requirements

Examples of other requirements this task affects

TEK-16: Tiedon salaaminen
Julkri
21.2.h: Encryption
NIS2
9.8 §: Salaus
Kyberturvallisuuslaki
3.11: Encrypt Sensitive Data at Rest
CIS 18
Članak 30.1.h: Kriptografije
NIS2 Croatia
See all related requirements and other information from tasks own page.
Go to >
Encryption solution and guidelines for personnel to encrypt transferred information
Security of administrative connections involving classified information (CL IV)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

TEK-04.6: Hallintayhteydet - turvallisuusluokiteltua tietoa sisältävät hallintayhteydet
Julkri
I-04: SECURE INTERCONNECTION OF CIS – MANAGEMENT CONNECTIONS
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Security of administrative connections involving classified information (CL IV)
Security of administrative connections involving classified information (CL IV)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

TEK-04.7: Hallintayhteydet - salaaminen turvallisuusluokan sisällä
Julkri
I-04: SECURE INTERCONNECTION OF CIS – MANAGEMENT CONNECTIONS
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Security of administrative connections involving classified information (CL IV)
Encryption of information in wireless transmission (CL IV)
Critical
High
Normal
Low
Encryption
2
requirements

Examples of other requirements this task affects

TEK-05.1: Langaton tiedonsiirto - salaaminen
Julkri
I-05: EXCHANGE OF CLASSIFIED INFORMATION OUTSIDE THE PHYSICALLY PROTECTED AREAS - WIRELESS TRANSMISSION
Katakri 2020
See all related requirements and other information from tasks own page.
Go to >
Encryption of information in wireless transmission (CL IV)
Turvallisuusluokiteltujen tietojen erottelu ja salaaminen (TL IV)
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-07.4: Pääsyoikeuksien hallinnointi - turvallisuusluokiteltujen tietojen erottelu
Julkri
See all related requirements and other information from tasks own page.
Go to >
Turvallisuusluokiteltujen tietojen erottelu ja salaaminen (TL IV)
Turvallisuusluokitellun tiedon salaaminen siirrettäessä turvallisuusalueiden ulkopuolelle (TL IV)
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-16.2: Tiedon salaaminen - turvallisuusluokitellun tiedon siirto turvallisuusalueiden ulkopuolella
Julkri
See all related requirements and other information from tasks own page.
Go to >
Turvallisuusluokitellun tiedon salaaminen siirrettäessä turvallisuusalueiden ulkopuolelle (TL IV)
Tiedon salaamisen lisävaatimukset (TL III)
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-16.4: Tiedon salaaminen - TL III
Julkri
See all related requirements and other information from tasks own page.
Go to >
Tiedon salaamisen lisävaatimukset (TL III)
Tiedon salaamisen lisävaatimukset (TL I)
Critical
High
Normal
Low
Encryption
1
requirements

Examples of other requirements this task affects

TEK-16.5: Tiedon salaaminen - TL I
Julkri
See all related requirements and other information from tasks own page.
Go to >
Tiedon salaamisen lisävaatimukset (TL I)
Ensuring sovereignty of encryption keys
Critical
High
Normal
Low
Encryption
3
requirements

Examples of other requirements this task affects

5.1.1: Cryptography management
TISAX
§ 3.1.4: Kryptering
MSBFS 2020:7
See all related requirements and other information from tasks own page.
Go to >
Ensuring sovereignty of encryption keys
Management of encryption keys activation and end dates
Critical
High
Normal
Low
Encryption
3
requirements

Examples of other requirements this task affects

10.1.2: Key management
ISO 27001
See all related requirements and other information from tasks own page.
Go to >
Management of encryption keys activation and end dates
Revision of encryption methods and assessment of adequacy
Critical
High
Normal
Low
Encryption
18
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
8.24: Use of cryptography
ISO 27001
21.2.h: Encryption
NIS2
CC6.1c: Technical security for protected information assets
SOC 2
5.1.1: Cryptography management
TISAX
See all related requirements and other information from tasks own page.
Go to >
Revision of encryption methods and assessment of adequacy
Encryption of server data
Critical
High
Normal
Low
Encryption
4
requirements

Examples of other requirements this task affects

10.1.1: Policy on the use of cryptographic controls
ISO 27001
2.7.3: Encrypt storage media which contain confidential data and which can easily be lost or compromised
NSM ICT-SP
PR.DS-10: Data-in-use is protected
NIST 2.0
3.11: Encrypt Sensitive Data at Rest
CIS 18
See all related requirements and other information from tasks own page.
Go to >
Encryption of server data

Never duplicate effort. Do it once - improve compliance across frameworks.

Reach multi-framework compliance in the simplest possible way
Security frameworks tend to share the same core requirements - like risk management, backup, malware, personnel awareness or access management.
Cyberday maps all frameworks’ requirements into shared tasks - one single plan that improves all frameworks’ compliance.
Do it once - we automatically apply it to all current and future frameworks.
Start free trial
Get to know Cyberday
Start your free trial
Cyberday is your all-in-one solution for building a secure and compliant organization. Whether you're setting up a cyber security plan, evaluating policies, implementing tasks, or generating automated reports, Cyberday simplifies the entire process.
With AI-driven insights and a user-friendly interface, it's easier than ever to stay ahead of compliance requirements and focus on continuous improvement.
Clear framework compliance plans
Activate relevant frameworks and turn them into actionable policies tailored to your needs.
Credible reports to proof your compliance
Use guided tasks to ensure secure implementations and create professional reports with just a few clicks.
AI-powered improvement suggestions
Focus on the most impactful improvements in your compliance with help from Cyberday AI.
Effortless compliance improvement
Widest framework library in EU
Extensive support

Start your compliance journey

Use in MS Teams or use your browser with Slack integration.
Risk free trial. No credit card required. Stop at any time.

Start free trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templatesTrust center
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementPrivacy managementVendor assessmentsInternal audits
Resources
AcademyWebinarsBlogHelp articlesVideo coursesContent libraryGuidesNewsletterLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security