Skip to main content

This chapter of the ISM provides guidance on using cryptography.

The purpose of cryptography is to provide confidentiality, integrity, authentication and non-repudiation of information. Encryption of data at rest can be used to reduce the physical storage and handling requirements for ICT equipment and media while encryption of data in transit can be used to provide protection for information communicated over public network infrastructure. This chapter outlines cryptographic fundamentals; ASD Approved Cryptographic Algorithms; ASD Approved Cryptographic Protocols such as Transport Layer Security, Secure Shell, Secure/Multipurpose Internet Mail Extension and Internet Protocol Security; and how to manage cryptographic systems appropriately.