Aspects
1
Controls
5
Requirements
5
| Aspect ID | Aspect Name | Control ID | Control Name | Requirement ID | Requirement | Level |
|---|---|---|---|---|---|---|
| 1.02 | Wallet Generation | 1.02.1 | Signing Configuration | 1.02.1.1 | When considering the application of a single-signer mechanism to a wallet, the following criteria are addressed: 1. The criticality of the wallet to the CCSS Trusted Environment. 2. The impact of loss of customer funds controlled by the wallet. 3. The risk of a wallet compromise is included in the threat model defined in requirement 2.03.2.1. 4. The effectiveness of the security controls implemented to protect the wallet. | Level II |
| 1.02 | Wallet Generation | 1.02.2 | Key Material Redundancy | 1.02.2.1 | A wallet that has implemented a multi-signer mechanism has at least one redundant key for recovery purposes. | Level II |
| 1.02 | Wallet Generation | 1.02.3 | Geographic Key Material Distribution | 1.02.3.1 | Key materials for a wallet that implements a multi-signer mechanism are stored in different locations. | Level II |
| 1.02 | Wallet Generation | 1.02.4 | Entity Key Material Distribution | 1.02.4.1 | Key material for a wallet that implements a multi-signer mechanism is stored by distinct operators within the entity or separate entities. | Level III |
| 1.02 | Wallet Generation | 1.02.5 | Wallet Generation Policy Documentation | 1.02.5.1 | The entity has a documented policy in place which details the company’s internal policies and procedures and covers the relevant areas of wallet generation. | Level II |
Page 1 of 1