AzPolicyAdvertizer

last sync: 2025-Oct-31 18:22:59 UTC

Keys should be backed by a hardware security module (HSM)

Azure BuiltIn Policy definition

Source Azure Portal
Display name Keys should be backed by a hardware security module (HSM)
Id 587c79fe-dd04-4a5e-9d0b-f89598c7261b
Version 1.0.1
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.1
Built-in Versioning [Preview]
Category Key Vault
Microsoft Learn
Description An HSM is a hardware security module that stores keys. An HSM provides a physical layer of protection for cryptographic keys. The cryptographic key cannot leave a physical HSM which provides a greater level of security than a software key.
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '1.0.1'
Repository: Azure-Policy 587c79fe-dd04-4a5e-9d0b-f89598c7261b
Mode Microsoft.KeyVault.Data
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types none
Compliance
The following 1 compliance controls are associated with this Policy definition 'Keys should be backed by a hardware security module (HSM)' (587c79fe-dd04-4a5e-9d0b-f89598c7261b)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.exp.10 Cryptographic key protection op.exp.10 Cryptographic key protection 404 not found n/a n/a 50
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn unknown
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-08-30 14:27:30 change Patch, old suffix: preview (1.0.0-preview > 1.0.1)
2020-10-16 12:27:50 add 587c79fe-dd04-4a5e-9d0b-f89598c7261b
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC