Sorry, you need to enable JavaScript to visit this website.
Skip to main content

AISEP

Australasian Information Security Evaluation Program

Applied Intelligence

AISEP service providers: AISEFs

Apr 11, 2019 - An Australasian Information Security Evaluation Facility (AISEF) is a commercial facility we have licenced to perform Australasian Information Security Evaluation Program (AISEP) evaluations, and has been accredited by the National Association of Testing Authorities, Australia (NATA) to conduct Common Criteria (CC) evaluations. You can contact these AISEFs regarding evaluation services: . BAE Systems…
Digital Evaluation

Government requests for evaluation of an ICT product

Aug 14, 2018 - Australian and New Zealand government agencies can ask us to evaluate an ICT product (hardware or software) for evaluation up to EAL2 where we haven't yet approved a Protection Profile for the relevant technology. To request an evaluation, fill out the following template and email it to us at asd.assist@defence.gov.au..
Six step process

Industry requests for an evaluation of an ICT product

Aug 14, 2018 - Only Australian and New Zealand government agencies can ask us to evaluate an ICT product. If you are an industry consultant or a product developer and your product evaluated, use the checklist listed here. . Step 1 Research the types of evaluations we offer. Step 2 Research government agency security needs through the Australian Government Information Security Manual (ISM) and/or the NZ ISM For…
Evaluation

ICT product security evaluations

Jul 10, 2018 - We undertake formal independent assessment of ICT security products (both hardware and software) to make sure they meet our standards. . What our evaluations provide Our Evaluated Products List (EPL) provides a list of ICT products that we have assessed so you can be confident will perform the way the vendor claims. We perform the following types of evaluations: Australasian Information…
Information security evaluation

Australasian Information Security Evaluation Program (AISEP)

Jul 10, 2018 - The Australasian Information Security Evaluation Program (AISEP) evaluates and certifies ICT products for use in Australian and New Zealand government agencies to protect official information and communications systems. The results of successful evaluations are published on the Evaluated Products List (EPL) and the internationally-recognised Common Criteria (CC) Portal. . What the AISEP provides…
Guidance

Certification guidance

Jul 1, 2018 - Computer security evaluation is the detailed examination and testing of the security features of an ICT system or product to ensure that they work correctly and effectively and do not show any exploitable vulnerabilities. Process of evaluation There are three stages in the evaluation and certification process:.
Frequently asked question icon

Why doesnt the EPL publish all mutually-recognised CC evaluations?

Jul 1, 2018 - Common Criteria Recognition Arrangement (CCRA) participating nations do not duplicate the publication of mutually-recognised certified products on each of their certified products lists (for the AISEP, this is the EPL). In accordance with the CCRA, certificates published on the CC Portal that are EAL 1 through 2 are instantly mutually recognised by Australia and New Zealand and, therefore, the Evaluated Products List (…
Frequently asked question icon

Why do we have the AISEP?

Jul 1, 2018 - Australian and New Zealand government agencies, as consumers, have a reasonable expectation that information contained in ICT security products and systems are secure. When an independent evaluation is performed on the security functionality of an ICT security product, consumers have greater confidence in using the product. AISEP-certified products aim to meet Australian and New Zealand government business and security…
Frequently asked question icon

Who owns the AISEP?

Jul 1, 2018 - The ACSC and New Zealands Government Communications Security Bureau (GCSB) are dual signatories to the AISEP as a Common Criteria (CC) certificate producing scheme. We are the certifying body for both Australia and New Zealand. .
Frequently asked question icon

Who is the Australasian Certification Authority (ACA) and what do they do?

Jul 1, 2018 - The Australasian Certification Authority (ACA) is the certifying body in Australia and New Zealand for CC evaluations. The ACA is part of the ACSC and implements the AISEP scheme by setting the standards and monitoring the quality of evaluations conducted by the Australasian Information Security Evaluation Facilities (AISEF). .