A retail customer has been using a tool that encrypts data-at-rest with symmetric encryption to meet PCI-DSS requirements. However they have discovered through an audit that they lack key management procedures.
Which product can they use to immediately address this procedural gap?
A. CPACF
B. LSMFT
C. RACF
D. EKMF