Library
ACSI 33
Australian Government Information and Communications Technology Security Manual
Introduction
The Australian Government Information and Communications Technology Security Manual (also known as ACSI 33) has been developed by the Defence Signals Directorate (DSD) to provide policies and guidance to Australian Government agencies on how to protect their ICT systems.
Authority
Australian Government agencies are required by the Protective Security Manual (PSM) to comply with ACSI 33. Agencies must consider the security implications of their IT systems and devise policy and plans to ensure the systems are appropriately protected. Although security needs will be greatest when national security classified or non-national security classified information is being processed, even unclassified systems with no special safety, mission critical, or financial implications should have some degree of protection if a reliable or accurate service is to be maintained.
Versions
There are two versions of the manual. The SECURITY-IN-CONFIDENCE version contains the security policies and guidance for all classifications. The UNCLASSIFIED version only contains policies and guidance for the following classifications:
- PUBLIC DOMAIN,
- UNCLASSIFIED,
- IN-CONFIDENCE,
- RESTRICTED, and
- PROTECTED.
Releases
The manual is released annually, generally in September.
Downloads
The manual is available for download as a PDF [Trouble accessing the PDF?] and as an RTF.
The table below contains links to the UNCLASSIFIED version.
The table also contains links to all releases from the previous two years,
along with a companion document that identifies the changes introduced
since the previous release. Requests for earlier releases can be made
by contacting DSD.
| Date | ACSI 33 Release | Changes Document | ERRATUM Document |
|---|---|---|---|
| September 2007 | [PDF 1.54MB] | [PDF 192kB] | [PDF 1.82MB] |
| September 2006 | [PDF 1.10MB] [RTF 6.41MB] | [PDF 140kB] [RTF 622kB] | |
| March 2006 |
[PDF 1.42MB] [RTF 6.39MB] | [PDF 394kB] [RTF 3.57MB] | |
| September 2005 |
[PDF 1.35MB] [RTF 6.09MB] | [PDF 407kB] [RTF 2.79MB] | |
| March 2005 | [PDF 1.17MB] [RTF 4.78MB] | [PDF 136kB] |
The SECURITY-IN-CONFIDENCE version is available as a PDF from the Members
Area of the OnSecure website at www.onsecure.gov.au. Defence staff may
also access it via the Defence Restricted Network, listed under Documents
>> Commonwealth Publications.
Only those agencies and commercial organisations that deal with one or
more of the classifications specific to the SECURITY-IN-CONFIDENCE version
(ie HIGHLY PROTECTED, CONFIDENTIAL, SECRET and TOP SECRET) are considered
by DSD to have a need-to-know for the material in this version.
The ability to download the SECURITY-IN-CONFIDENCE version from OnSecure has been limited to members who have logged in from an Australian Government system. Commercial organisations that require access to the document will therefore need to obtain a copy from their Australian Government client
.
Compliance and Certifications
The requirement for agencies to comply with the manual has been incorporated into the manual.
Hardcopy distribution
Hard copies of the current release will be distributed shortly after the Internet publication date to all agencies.
Additional hard copies are available to agencies upon request.
If you wish to receive a copy, please forward the request via email to
DSD (See Contact DSD for email address details). Please include the following
information:
- Name
- Agency
- Postal address
- Phone Number
- Justification for requirement
