ICSA Labs annually tests that VPN products interoperate with others in accordance with the IKEv2 and IPsec standards. For VPNs that support certificate-based signatures, ICSA Labs tests certificate installation & validation. Testing also verifies that cryptographic algorithms are properly implemented and that products are resistant to known IPsec VPN attacks.


Network Attached Peripherals

NAPS will verify that a network attached peripheral will not introduce vulnerabilities to the network where it is installed, and is not vulnerable to exploitation itself, while still providing its intended services to users.

ONC Health IT

ICSA Labs is authorized by the US Federal Government, as an accredited test lab and Office of the National Coordinator Authorized Certification Body (ONC-ACB), to test and certify Health Information Technology products that support Meaningful Use.

Web Application Firewalls

In annual WAF testing, ICSA Labs attempts to defeat or circumvent the WAF product's security policy. Attacks used in testing include buffer overflow, cross site scripting (XSS), cross site request forgery (CSRF), improper input validation and other OWASP Top 10 web application threats.

Advanced Threat Defense - Email

Every quarter, ICSA Labs tests email security solutions that are designed to protect enterprises from new & little-known malicious threats in email.

Network IPS

We annually test intrusion prevention systems (IPS) to see how well they protect against client and server-side attacks aimed at high severity vulnerabilities in enterprise software and how well the product protects against evasion techniques.


As malware increases and evolves, third-party testing by ICSA Labs is increasingly important.  That's why ICSA Labs performs monthly testing of endpoint and network-based anti-malware products.

Authorized Test Lab (ATL)

ICSA Labs is NVLAP-accredited as an ONC-Authorized Health IT Testing Laboratory for the US Department of Health and Human Services.

Custom Testing

Custom testing services offer customized, 3rd party, expert evaluation and certification testing services designed to meet the specific needs of vendors and corporations.

IoT Security & Privacy

Depending on the kind of IoT device/sensor, ICSA Labs first chooses a suitable set of testing elements from its "IoT Security Testing Framework."  The labs then tests to determine if the IoT device/sensor includes adequate security for its intended application and environment.


In annual SSL-TLS VPN testing of products providing secure remote access to corporate resources, ICSA Labs tests that the different operation modes work properly, including a web-based Reverse Web Proxy and a Layer 3 VPN tunnel. Proper implementation of TLS, management/validation of certificates, enforcement of auth policies, and session control and cleanup are also examined.

Authorized Certification Body (ACB)

ICSA Labs is certified by ANSI as an Authorized Certification Body (ACB) for the Office of the National Coordinator (ONC) within the US Government's Department of Health and Human Services.


In firewall testing ICSA Labs annually tests that the network firewall is stateful and can enforce a security policy.  We also test that the firewall itself can withstand attacks, including DoS attacks.

Advanced Threat Defense (ATD)

ICSA Labs performs quarterly security testing of next gen anti-malware solutions to determine how well they protect enterprises from new & little-known malicious threats. In testing we deliver the threats using the most common vectors leading to enterprise breaches.

Secure SD-WAN

In this annual testing program we test your SD-WAN solution’s support for multiple WAN paths, dynamic path selection and auto-provisioning of edge devices.  We also test that it is invulnerable to attack and provides its SD-WAN features securely.

Cloud Security

ICSA Labs annually tests cloud security services including cloud firewall, cloud IPS, and cloud WAF solutions to see how well they defend against the latest attacks aimed at cloud network resources. 

what's new

Q3 2022 Advanced Threat Defense (ATD) and ATD-Email Test Results Posted

October 13, 2022
How can organizations stop unknown threats, you ask?  ICSA Labs performs quarterly security product/solution testing to see if/how well they protect endpoints and networks from new and little-known malware. During Q3 2022 testing, which included 28 days of continuous testing, ICSA Labs measured next-gen anti-malware solution effectiveness and false positives.  Five next-gen anti-malware products/solutions from the following security vendors passed our tests: Juniper Networks, RevBits, Sequretek, SonicWall, & Trend Micro. For more, click on this news item or refer to bit.ly/icsa_atd_q322.

ICSA Labs 2022 Excellence in Security Testing (EIST) Award Winners Announced

October 5, 2022
The 2022 Excellence in Security Testing (EIST) Award Winners are:  Fortinet for 20-years, Radware for 10-years, and Allied Telesis for 5-years.  Security vendors like these that engage ICSA Labs for ongoing 3rd-party security testing are making enterprises safer by participating voluntarily in and passing ICSA Labs' rigorous, independent, 3rd-party security tests. Congratulations to each of these security product developers on this tremendous achievement! 

Fortinet's FortiGate Consolidated Security Platforms retain ICSA Labs Firewall Certification

September 22, 2022
The FortiGate 101F met all of ICSA Labs' Firewall test requirements. As a result, both it and Fortinet's FortiGate Consolidated Security Platforms retained ICSA Labs Corporate Firewall Certification bit.ly/2022_fortigate_icsa

F5's BIG-IP Family retains ICSA Labs SSL-TLS VPN Certification

September 6, 2022
The F5 i10800 met all of ICSA Labs' SSL-TLS VPN test requirements. As a result, both it and F5's BIG-IP Family retained ICSA Labs SSL-TLS VPN Certification bit.ly/2022_icsa_ssl_f5

Taqnia Cyber RAD NGFW passes to maintain ICSA Labs Firewall Certification

August 30, 2022
After recent security testing, the Taqnia Cyber RAD NGFW met all of ICSA Labs' firewall security testing requirements. As a result, it retained ICSA Labs Firewall Certification bit.ly/2022_radngfw_icsa.

30 years of security testing

Read our report commemorating twenty-five years of ICSA Labs security testing. The report documents ICSA Labs' quarter century of testing experience, evolution, and explains how our security testing benefits the security industry and enterprises alike.

2022 testing awards

Excellence in Information Security Testing
ICSA Labs' EIST awards recognize vendors for outstanding achievement in the area of information security certification testing with ICSA Labs. The awards are presented annually to makers of security products that achieve five, ten, fifteen or twenty years of continuous security testing with ICSA Labs. Visit the EIST Awards page for more information on current and previous award winners.