top of page
D10S_hero_bkgd_v1_2026.png

D09

Cryptography, Encryption & Key Management

D09-cover-image2.png
About The Standard Domain 

The Cryptography, Encryption & Key Management domain defines how organizations use cryptographic protections to secure information, identities, transactions, and trusted system interactions.

It covers encryption architecture, key lifecycle governance, certificate and PKI use, secrets protection, digital signing, and trustworthy exchange mechanisms needed to preserve confidentiality, integrity, authenticity, and operational trust.

Encryption Strategy

Key Lifecycle Management

Certificate & PKI Trust

Secrets & Secure Storage

Signing, Exchange & Integrity

Why Adoption is Necessary
How The Standard Works
Associate Standards Preview

Associate Standards Coming in Q3 2026 

Detailed, implementation-level standards that support D01 will be published in Q3 2026 to help teams operationalize secure network architectures.

D10S_ISAU_shield_logo_v2_2026_transp.png
Built for Builders. Backed by Evidence.

D09 provides the architectural foundation for cryptography, encryption, and key management, designed, engineered, and proven to protect sensitive data, trusted communications, keys, certificates, secrets, and digital integrity.

Maintained by:

ISAUnited-red_trimmed.png

Training by:

new-1-blue-background_v2.png

Practitioner and Organizational Use

The Defensible 10 Standards (D10S) are published under a Creative Commons Attribution–NonCommercial 4.0 International License (CC BY-NC 4.0).


This license permits free use, adaptation, and internal implementation of the D10S by individual practitioners, educational institutions, and organizations for the purpose of research, training, architecture design, or internal security engineering.


Attribution to ISAUnited.org must be maintained in all uses, reproductions, or derivative works.

Commercial, Vendor, and Integration Use

The use, reproduction, or incorporation of the Defensible 10 Standards (D10S) or their content within commercial products, software, tooling, managed services, or for-profit offerings requires a separate commercial integration or redistribution license issued by the Institute of Security Architecture United (ISAUnited.org).


This includes but is not limited to:

  • Integration into commercial or subscription-based platforms or software tools

  • Use in vendor-branded frameworks or automated compliance products

  • Redistribution of modified or adapted versions for resale or commercial benefit

 

Requests for commercial licensing or integration agreements should be directed to:  info@isaunited.org

© 2026 The Defensible 10 Standards (D10S). Owned, operated, and maintained by the Institute of Security Architecture United (ISAUnited.org).

bottom of page