Gitlab hero border pattern left svg Gitlab hero border pattern right svg

IAM.2.09 - Full Disk Encryption (Not Applicable)

On this page

IAM.2.09 - Full Disk Encryption (Not Applicable)

Control Statement

Where full disk encryption is used, logical access must be managed independently of operating system authentication; decryption keys must not be associated with user accounts.

Context

Separating user accounts from decryption keys decreases the likelihood that an attacker with possession or control of a GitLab system can access any data contained on that system.

Scope

N/A

Full disc encryption is not applicable to the GitLab environment as we do not process credit card numbers.

Encryption is covered by the following controls:

DM.4.01 - Encryption of Data in Transit

DM.4.02 - Encryption of Data at Rest

Additional control information and project tracking

Non-public information relating to this security control as well as links to the work associated with various phases of project work can be found in the Full Disk Encryption issue .

Framework Mapping