Symmetric keys on user databases
Applies to: 
SQL Server
This rule checks whether keys that have a length of less than 128 bytes don't use the RC2 or RC4 encryption algorithm.
Best practices recommendations
Use AES 128 bit or larger to create symmetric keys for data encryption. If AES isn't supported by your operating system, use 3DES.
For more information
Choose an encryption algorithm