Cloud Key Management

Dear members,

This is a kind reminder of tomorrow's (Wednesday, August 7) Key Mgmt working group call scheduled to take place at 09:00 a.m. PDT / 12:00 p.m. EDT / 16:00 GMT.

• Document 1 - Best Practices when Migrating:

• • • Sam ( @Sam Pfanstiel) to review document as a proof reading before public peer review.
• Document 2: Multi-Cloud KMS:

• • • Sam ( @Sam Pfanstiel) to author 2.4.10 Third-party Risk, 2.5.1 Organizational Maturity, 2.5.3, 2.5.5 Time, 3.3 Directed Key Management. Also to review Rajat's completed sections to review 3.1 and 3.2
    • Sam ( @Sam Pfanstiel) to add a recommendation about using FIPS-validated or otherwise validated cryptographic modules in the application encryption section.
    • Sam ( @Sam Pfanstiel) to address open sections on user system access (IAM), key rotation, and destruction in the context of multi-cloud risks.
    • Sam ( @Sam Pfanstiel) to review and clean up sections on risks and impacts related to multi-cloud key management.
    • Smita to review the document, provide feedback, and suggest any necessary changes, focusing on the sections she is familiar with.
    • Simon ( @Simon Keates) to author 2.4.7 Rotation/Destruction
    • Sunil ( @Sunil Arora) to complete section 3.4 Hybrid Cloud
    • Iain ( @Iain Beveridge) to author 3.5 Third-party Multi-Cloud KMS (MCKMS)
    • Adeeb ( @Adeeb Mohammed) to review Simon's sections 2.4.3, 2.4.5, 2.4.6
    • Akshay ( @Akshay Bhardwaj) to author 2.3.9 BYOE
    • Alex to review the privacy section of the document.

To connect on the call: 

URL: https://zoom.us/j/93617880747
Meeting ID: 936 1788 0747
Passcode: 536522

Kind regards,
Marina