The auDA Information Security Standard is a set of technical, operational and policy requirements designed to protect the confidentiality and integrity of sensitive domain-related data held by registrars.
Aligned to well-established international security standards, the ISS aims to encourage and assist registrars to manage and improve the security and resiliency of their own businesses and protect .au registrants, and the overall integrity and stability of the .au DNS.
The ISS forms part of auDA’s Registrar Accreditation Criteria and compliance with the ISS is mandatory for all auDA accredited registrars.
The ISS was developed in consultation with registrars and other industry participants through the 2012 Industry Advisory Panel, and was approved by the auDA Board in February 2013.
New applicants for registrar accreditation must achieve ISS compliance as part of the provisional accreditation process.
Whilst auDA is not a registrar, auDA has been independently audited and has been found to be ISS compliant.
More information on ISS
"ISS Overview" - Powerpoint presentation
Information Security Standard for Registrars - Kelvin Heath on the ISS Assessment Process
Information Security Standard for Registrars - Mark Culhane on Achieving ISS