Requirement 3.5

Protect cryptographic keys used for encryption of cardholder data against both disclosure and misuse