Certification and accreditation
Agencies must assess the risks outlined in the DNS service's System Security Certificate before they use the domain name management portal.
The Department of Internal Affairs has identified, measured and treated the risks to which the DNS service is exposed. When you sign up to the DNS service, you will be given a certificate that summarises this information.
This System Security Certificate (SSC) has been prepared in accordance with the all-of-government certification process and conforms to the requirements of applicable security standards.
Responsibilities for agencies
Agencies using the DNS service are responsible for:
- reading and understanding the risks identified as part of the DNS service certification process
- assessing the risks associated with the DNS service
- accrediting the DNS service for use by their agency before letting people in their organisation use the service.
Agencies are responsible for:
- adding and removing their users of the management portal
- any changes their users make through the management portal.