Requirement 3.5 requires document and implement procedures to protect keys used to secure stored cardholder data against disclose and misuse. This requirement applies to keys used to encrypt stored cardholder data, and also applies to key-encrypting keys used to protect data-encrypting keys. Such key-encrypting keys must be
A . at least as strong as the data-encrypting keys
B . less stronger as the data-encrypting keys
C . stored at the same location of the data-encrypting key
D . stronger than the data-encrypting keys
Answer: A