The Digital Service Provider (DSP) Operational Security Framework (OSF) was first established in 2017 in response to the business risks and security implications presented by the growth in digital services across the digital economy. Today, the OSF covers over 600 DSP products.
What the OSF Has Achieved
2017 - Before Implementation
2020 - After Implementation
Across 2020 and 2021, the first review of the OSF took place to review and update the requirements with one new requirement, entity
validation, added to the framework. DSPANZ was heavily involved in the review working group and in drafting the new requirements document.
We look forward to supporting our members in meeting the revised requirements.
Future of the OSF
The OSF is a constantly evolving and maturing framework. DSPANZ works closely with the ATO on the OSF to ensure that it is meeting expectations of DSPs whilst still providing the right levels of security for those accessing ATO APIs.