| Complete | Requirement | Action | Config | Comment |
|---|---|---|---|---|
| Must | Define | Key Size must be 2048 or larger. | ||
| Must | Define | All private keys must be password protected. | ||
| Must | Define | All public keys must have a comment to the owners email address or a unique identifier if it is needed. | ||
| Should | Define | All private keys shouldbe RSA. | A great deal of debate has happened concerning DSA vs RSA vs both and as the writer, I've picked RSA |