Question 1

What are the key differences between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Accepted Answer

FATF Recommendation 16 - Virtual Asset Travel Rule has 13 controls across its framework, while ISO/IEC 23837 - Security Requirements for Quantum Key Distribution covers 42 controls. Direct mapping analysis identifies 1 overlapping controls (8% coverage). The frameworks diverge most significantly in R.16 VATR: Record Retention, Audit, Training and Status, where 3 FATF Recommendation 16 - Virtual Asset Travel Rule controls have no direct ISO/IEC 23837 - Security Requirements for Quantum Key Distribution equivalent.

Question 2

How many controls map between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Accepted Answer

Of 13 total FATF Recommendation 16 - Virtual Asset Travel Rule controls, 1 map directly to ISO/IEC 23837 - Security Requirements for Quantum Key Distribution controls — representing 8% coverage. The remaining 12 controls represent compliance gaps requiring additional documentation or compensating controls to satisfy both frameworks simultaneously.

Question 3

What are the compliance gaps when mapping FATF Recommendation 16 - Virtual Asset Travel Rule to ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Accepted Answer

12 FATF Recommendation 16 - Virtual Asset Travel Rule controls have no direct equivalent in ISO/IEC 23837 - Security Requirements for Quantum Key Distribution. The highest concentration of gaps is in R.16 VATR: Record Retention, Audit, Training and Status with 3 unmapped controls. These gaps represent areas where additional controls, policies, or documentation must be created to achieve compliance with both frameworks.

Question 4

Which control domains have the most gaps between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Accepted Answer

The domain with the highest gap count is R.16 VATR: Record Retention, Audit, Training and Status (3 gaps). Export the full domain-by-domain gap breakdown via the Professional tier to generate a prioritised remediation roadmap.

FATF Recommendation 16 - Virtual Asset Travel RulevsISO/IEC 23837 - Security Requirements for Quantum Key Distribution

Control Mappings

R.16 VATR: Unhosted Wallet Transfers and Risk-Based Measures(3 mappings)

Related Comparisons

Other FATF Recommendation 16 - Virtual Asset Travel Rule comparisons

Other ISO/IEC 23837 - Security Requirements for Quantum Key Distribution comparisons

Stop Paying Consultants to Read Spreadsheets

Popular framework comparisons

What are the key differences between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

How many controls map between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

What are the compliance gaps when mapping FATF Recommendation 16 - Virtual Asset Travel Rule to ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Which control domains have the most gaps between FATF Recommendation 16 - Virtual Asset Travel Rule and ISO/IEC 23837 - Security Requirements for Quantum Key Distribution?

Related Resources