Required Areas for Encryption Deployment and Approved Encryption Technologies
March 5, 2013| Category / Description | Technology | Type Encryption |
| Data In Transit | ||
| Web traffic across public and internal networks | HTTPS / SSL | SSL v3128 bit or better |
| Remote access to the corporate network | IPSEC VPN or SSL VPN(use of unencrypted PC anywhere, GoToMyPC and similar services are prohibited) | 128 bit TDES or better |
| Wireless networks | WPA2(Use of WEP or WPA is prohibited) | AES 256 bit or better |
| Network and System Password transmission Application Password Transmission | Kerberos, HTTPS / SSL, SSH When accessing confidential data, Kerberos, HTTPS / SSL, SSH | 128 bit or better |
| HTTSP / SSL / AES(email to 3rd parties with confidential data, must use encrypted email service or encrypt the data prior to transmission) | 128 bit or better | |