Vulnerability Disclosure Policy
The Department of Parliamentary Services (DPS) provides cyber security services to Australian Parliament House (APH) network users and considers the security of the systems it manages as a key strategic priority. DPS acknowledges that vulnerabilities may exist, and members of the public security community may identify these vulnerabilities. DPS appreciates members of the security community submitting vulnerability findings.
DPS is a Commonwealth Entity, and as an Australian Government agency is unable to compensate or reward vulnerability reporters for the discovery and submission of vulnerabilities. With the vulnerability reporter’s permission, DPS can provide a congratulatory certificate and/or mention (your name or alias) on this VDP page.
If you believe you have identified a vulnerability in a DPS or APH system, service, or product please complete the below form.