Implementation -> Infrastructure Hardening: Usage of encryption at rest
Risk and Opportunity
Risk: Evil actors might be able to access data and read information, e.g. from physical hard disks.
Opportunity: By using encryption at trdt, it is impossible or at least harder to to read information.
Usefulness and Requirements of this Activity
Required knowledge: Low (one discipline)
Required time: Low
Required resources (systems): Very Low
OWASP SAMM VERSION 2