An ASD-Approved Cryptographic Protocol (AACP) or high assurance cryptographic protocol is used to protect data when communicated over network infrastructure.
Topic
Encrypting data in transit
Applicable to
all
History
Priority
must
Jun 2022
An ASD-Approved Cryptographic Protocol (AACP) or high assurance cryptographic protocol is used to protect data when communicated over network infrastructure.
In supporting the adoption of zero trust principles, a recommendation to encrypt all data communicated over network infrastructure was introduced. Note, however, when selecting cryptographic equipment or software for this purpose, the assurance required will depend on the sensitivity or classification of the data and the physical security of the environment in which it is being applied. It is also important to note that some protocols cannot be encrypted and are therefore exempt. However, in such situations, where practical and feasible, an organisation should still consider transitioning to the use of alternative protocols that support encryption.
Mar 2022
An ASD-Approved Cryptographic Protocol (AACP) or high assurance cryptographic protocol is used to protect AUSTEO and AGAO data when communicated over network infrastructure.
Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.
2015
In addition to any encryption already in place for communication mediums, agencies must, atminimum, use an AACP to protect AUSTEO and AGAO information when in transit.
2010
In addition to any encryption already in place for communication mediums, agencies must, at minimum, usea DACP to protect AUSTEO and AGAO information when in transit.
2008
Agencies must, at a minimum, use a DACP to protect AUSTEO and AGAO information.