Powerpipe MCP Server →
Powerpipe Hub 
Hub
Mods
turbot/steampipe-mod-aws-compliance
Overview
34Dashboards
1361Benchmarks
588Queries
4Variables
GitHub

Benchmark: 4.2.1.1: An inventory of the entity's trusted keys and certificates used to protect PAN during transmission is maintained

Description

The inventory of trusted keys helps the entity keep track of the algorithms, protocols, key strength, key custodians, and key expiry dates. This enables the entity to respond quickly to vulnerabilities discovered in encryption software, certificates, and cryptographic algorithms.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-aws-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 4.2.1.1: An inventory of the entity's trusted keys and certificates used to protect PAN during transmission is maintained.

Run this benchmark in your terminal:

powerpipe benchmark run aws_compliance.benchmark.pci_dss_v40_requirement_4_2_1_1

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run aws_compliance.benchmark.pci_dss_v40_requirement_4_2_1_1 --share

Controls

Tags

category = Compliance
control_set = 4
pci_dss_v40 = true
pci_dss_v40_item_id = 4.2.1.1
plugin = aws
service = AWS
type = Benchmark