DSD > Information Security > Australasian Information Security Evaluation Program

AISEP – Australasian Information Security Evaluation Program

The Australasian Information Security Evaluation Program (AISEP) tests ICT security products for possible inclusion on the Evaluated Products List (EPL).

• The Defence Signals Directorate’s certification office, the Australasian Certification Authority (ACA), oversees AISEP product testing by licensed commercial evaluation facilities.
• Australasian Information Security Evaluation Facilities (AISEF) are licenced to perform AISEP evaluations and have been accredited by the National Association of Testing Authorities, Australia (NATA).
• ICT security professionals should use the EPL and Information Security Manual principles when developing systems for Australian and New Zealand government agencies. Consult the New Zealand Information Security Manual for specific New Zealand Government requirements.
• Developers and distributors are encouraged to submit ICT security products for evaluation and possible future sales to Australian and New Zealand government agencies.

Mobile device evaluations, 30 May 2013

In April 2011 DSD announced its endorsement of Protection Profiles as the direction for evaluations in the AISEP. Since then DSD has endorsed several Protection Profiles for a variety of technologies.

We are currently working closely with members of the international Common Criteria community to finalise Protection Profiles for mobile devices. Until these Protection Profiles are available and endorsed, any vendors or government agencies considering entering or sponsoring mobile devices for AISEP evaluation should email DSD for advice on how to proceed.

Common Criteria Users Forum

The Common Criteria Users Forum mission is to provide a voice and communication channel amongst the Common Criteria community, including the vendors, consultants, testing laboratories, Common Criteria organisational committees, national schemes, policy makers and other interested parties.