Draft ACSI 33 information

Library

Draft ACSI 33 information
Government IT Security Manual

Introduction

The draft ACSI 33 - Government IT Security Manual is the result of Information Security Group's intention to consolidate and restructure a number of our existing IT Security policy documents into a single, cohesive manual. ACSI 33 has been released in draft form to provide you with the opportunity to comment on its structure and content prior to publication in March 2004. The extant policy will remain in effect whilst the draft is under review.

Purpose

This activity is driven by a number of objectives. The new ACSI 33 is intended to:

provide coherent and consistent policy advice across all security classifications;
facilitate faster and more accurate information retrieval;
remove redundancy and repetition; and
identify and rectify content gaps in the existing policy.

Draft document

Important: This is a draft. Its content is not official policy, and in some cases may never become policy. Do not make any business decisions based on information in this draft; please consult DSD if you believe that the extant policy documents do not meet your requirements.

Note: The draft ACSI 33 refers to separate IT security document templates located on the DSD website. These are not yet available.

Policy documents to be superceded

The new ACSI 33, once released, will replace the following documents:

ACSI 33 (Dec 2000 version);
ACSI 37;
ASSRO Supplement 1, Parts A & B;
Gateway Certification Guide; and
Policy Advisory on the use of SSL.

Classified versions

Due to security classification issues, the new ACSI 33 will be released as three different versions, as shown:

Document Classification IT System Classifications Covered

UNCLASSIFIED PUBLIC DOMAIN, UNCLASSIFIED, IN-CONFIDENCE, RESTRICTED, PROTECTED

SECURITY-IN-CONFIDENCE As above plus HIGHLY PROTECTED

CONFIDENTIAL As above plus CONFIDENTIAL and higher classifications

Feedback

This draft version is being released to seek any final comments prior to release. The feedback period will close on Friday, 30 January 2004.

Please email any UNCLASSIFIED comments to acsi33@dsd.gov.au.

Alternatively, UNCLASSIFIED comments may be faxed to:

ACSI 33 Feedback
(02) 6265 0328

Schedule

ACSI 33 - Government IT Security Manual is scheduled for release at the Security In Government (SIG) conference in March 2004.

Download ACSI 33 - Government IT Security Manual

To download the UNCLASSIFIEDPDF file, click here: Draft ACSI 33 [1623KB].
To download the UNCLASSIFIEDPDF zip file, click here: Draft ACSI 33 [1385KB].

The draft SECURITY-IN-CONFIDENCE version can be downloaded from the Member's area of OnSecure. Contact admin@onsecure.gov.au to obtain an account.

Having trouble viewing the PDF? See PDF troubleshooting.

Document Classification	IT System Classifications Covered
UNCLASSIFIED	PUBLIC DOMAIN, UNCLASSIFIED, IN-CONFIDENCE, RESTRICTED, PROTECTED
SECURITY-IN-CONFIDENCE	As above plus HIGHLY PROTECTED
CONFIDENTIAL	As above plus CONFIDENTIAL and higher classifications

Library