Network Attached Peripherals

NAPS will verify that a network attached peripheral will not introduce vulnerabilities to the network where it is installed, and is not vulnerable to exploitation itself, while still providing its intended services to users.


In annual SSL-TLS VPN testing of products providing secure remote access to corporate resources, ICSA Labs tests that the different operation modes work properly, including a web-based Reverse Web Proxy and a Layer 3 VPN tunnel. Proper implementation of TLS, management/validation of certificates, enforcement of auth policies, and session control and cleanup are also examined.

Mobile Device Platform Security Testing

ICSA Labs tests the built-in security functions in smart phones and tablets for cellular service providers/carriers and mobile device manufacturers.

IoT Security & Privacy

Depending on the kind of IoT device/sensor, ICSA Labs first chooses a suitable set of testing elements from its "IoT Security Testing Framework."  The labs then tests to determine if the IoT device/sensor includes adequate security for its intended application and environment.

Advanced Threat Defense (ATD)

ICSA Labs performs quarterly security testing of solutions that are designed to protect enterprises from new & little-known malicious threats.

Custom Testing

Custom testing services offer customized, 3rd party, expert evaluation and certification testing services designed to meet the specific needs of vendors and corporations.

Secure SD-WAN

In this annual testing program we test your SD-WAN solution’s support for multiple WAN paths, dynamic path selection and auto-provisioning of edge devices.  We also test that it is invulnerable to attack and provides its SD-WAN features securely.


As malware increases and evolves, third-party testing by ICSA Labs is increasingly important.  That's why ICSA Labs performs monthly testing of endpoint and network-based anti-malware products.

Network IPS

We annually test intrusion prevention systems (IPS) to see how well they protect against client and server-side attacks aimed at high severity vulnerabilities in enterprise software and how well the product protects against evasion techniques.


In firewall testing ICSA Labs annually tests that the network firewall is stateful and can enforce a security policy.  We also test that the firewall itself can withstand attacks, including DoS attacks.

Web Application Firewalls

In annual WAF testing, ICSA Labs attempts to defeat or circumvent the WAF product's security policy. Attacks used in testing include DoS, buffer overflow, cross site scripting (XSS), cross site request forgery (CSRF), improper input validation, session mismanagement, information leakage, and other web application threats.


ICSA Labs annually tests that VPN products interoperate with others in accordance with the IKEv2 and IPsec standards. For VPNs that support certificate-based signatures, ICSA Labs tests certificate installation & validation. Testing also verifies that cryptographic algorithms are properly implemented and that products are resistant to known IPsec VPN attacks.


ONC Health IT

As an Accredited Test Lab and Office of the National Coordinator Authorized Certification Body (ONC-ACB), ICSA Labs is authorized by the US government to test and certify Health Information Technology products that support Meaningful Use.

Advanced Threat Defense - Email

Every quarter, ICSA Labs tests email security solutions that are designed to protect enterprises from new & little-known malicious threats in email.

what's new

Fortinet's FortiGate Consolidated Security Platforms remain ICSA Labs SSL-TLS VPN Certified following latest test cycle

August 24, 2020
Congratulations Fortinet!  Following successful testing of the FortiGate 501E, the FortiGate Consolidated Security Platforms maintained ICSA Labs SSL-TLS VPN Certification

A10 Networks Thunder Series retains ICSA Labs Web Application Firewall Certification

August 4, 2020
Congratulations A10 Networks!  Following rigorous security testing, the Thunder 5430S met all of ICSA Labs' web application firewall requirements. As a result, both the 5430S and the A10 Networks Thunder Series retained ICSA Labs Web Application Firewall Certification

Acronis's endpoint anti-malware product Acronis Cyber Protect Cloud attains ICSA Labs Anti-Malware Certification

July 24, 2020
Congratulations Acronis! Acronis Cyber Protect Cloud earned ICSA Labs Endpoint Anti-Malware Security Certification following the latest security testing

Q2 2020 Email Advanced Threat Defense (ATD-Email) Testing Results Posted!

July 8, 2020
Is your email security solution doing its job?!) that your email security provider get theirs tested! ICSA Labs quarterly tests how well email security solutions provide protection against unknown malicious threats in email. Solutions from these 3 passed our Q2 2020 ATD-Email testing: Trend Micro, Mimecast, & Fortinet.

Q2 2020 Advanced Threat Defense (ATD) Testing Results Posted!

July 8, 2020

Looking for protection against unknown malicious threats? Security solutions from these 7 passed ICSA Labs Q2 2020 quarterly advanced threat defense (ATD) testing: Trend Micro, SonicWall, Sequretek, Juniper Networks, GoSecure, Fortinet, & AhnLab.  Refer to

25+ years of security testing

Read our report commemorating twenty-five years of ICSA Labs security testing. The report documents ICSA Labs' quarter century of testing experience, evolution, and explains how our security testing benefits the security industry and enterprises alike.

2020 testing awards

Excellence in Information Security Testing
ICSA Labs' EIST awards recognize vendors for outstanding achievement in the area of information security certification testing with ICSA Labs. The awards are presented annually to makers of security products that achieve five, ten, fifteen or twenty years of continuous security testing with ICSA Labs. Visit the EIST Awards page for more information on current and previous award winners.