Back to All Checks
High ACM Regional

RSA certificates managed by ACM should use a key length of at least 2,048 bits

NIST

Description

This control checks whether RSA certificates managed by AWS Certificate Manager use a key length of at least 2,048 bits. The control fails if the key length is smaller than 2,048 bits.

Remediation

To ensure compliance, use RSA certificates with a key length of at least 2,048 bits.

Steps

  1. Review the key length of existing RSA certificates in ACM.
  2. Replace any RSA certificates with a key length less than 2,048 bits.

Compliance

NIST
Start Your Free Security Check