cc3976fb7f
- Split competitive-analysis-2026-05.org → TOC + 9 competitor files in ideas/competitors/. Dropped date from filename. All competitor UUIDs generated, TOC keeps original UUID for backlink continuity. - Deleted passepartout-economics.org archive (replaced by 27-node KB). - Inlined 5 'See also' blocks into natural prose (compliance-index, first-mover-window, revenue-table, orders-of-magnitude-time, native-org-knowledge-base). - Linked 7 orphan compliance pages back to compliance index + finished truncated sentences. - Linked all 14 Agora requirement docs from topic-relevant pages (identity→lisp-machine-security, infrastructure→compute-marketplace, social-space→growth-strategy, exchange→agora-contracts, etc.). - Linked ai-industry-impact from investment-thesis, sufficiency-flip, verification-appliance, effects-growth-flywheel (up from 1 to 10+ pages). - Fixed CREATED timestamps to use git commit dates instead of today. - Made all links absolute from root (no port inheritance). - Removed stale agora/docs/ duplicate content.
1.1 KiB
1.1 KiB
IRAP (Infosec Registered Assessors Program — Australia)
IRAP (Infosec Registered Assessors Program)
Australian government's cloud security assessment program — analogous to FedRAMP. Cloud services used by Australian government agencies must have an IRAP assessment. Managed by the Australian Cyber Security Centre (ACSC). Assessment levels: Protected (highest), Secret (top secret), Unclassified DLM.
Who must comply: Cloud providers selling to Australian federal, state, and local government agencies. Also critical infrastructure providers.
Why it matters: Like FedRAMP and ISMAP, IRAP is a procurement gate. An IRAP Protected-level assessment is expensive and takes 6-12 months. First-mover advantage: the gate stack's deterministic audit trail can be the primary evidence artifact, reducing assessment scope/cost.