Gitlab hero border pattern left svg Gitlab hero border pattern right svg

IAM.2.09 - Full Disk Encryption

On this page

IAM.2.09 - Full Disk Encryption

Control Statement

Where full disk encryption is used, logical access must be managed independently of operating system authentication; decryption keys must not be associated with user accounts.

Context

Separating user accounts from decryption keys decreases the likelihood that an attacker with possession or control of a GitLab system can access any data contained on that system.

Scope

This control applies to:

Ownership

TBD

Guidance

TBD

Additional control information and project tracking

Non-public information relating to this security control as well as links to the work associated with various phases of project work can be found in the Full Disk Encryption issue .

Policy Reference

TBD

Framework Mapping

TBD