govSyncIcon

End-to-End Encryption.
Built for Australia.
By Australians.

Australia's first and only IRAP assessed end to end encrypted messaging app for Australian Government Organisations and Industry partners

Overview

Secure. Safe. Reliable.

Introducing govSync, secure, end-to-end encrypted messaging and calling for Australian Government & related industry.

In one of the most globally and politically unstable times in recent history, where secure communication is more critical than ever, govSync provides a trusted, end-to-end encrypted messaging platform designed exclusively for Australian Government Organisations and trusted industry partners. Built to meet the highest security standards, govSync ensures that sensitive discussions remain private, protected, and accessible only to intended recipients.

govSync has undergone IRAP assessment after completing the ACSC Risk Management Framework, fully complying with the Australian Government’s Protective Security Policy Framework (PSPF) to ensure resilience and data sovereignty. Whether facilitating inter-agency collaboration or engaging with approved industry partners, govSync offers a confidential, secure, and user-friendly solution for modern government communication.

What is govSync

Secure Government Communication

100% Australian Made

govSync has been developed from the ground up by a Defence Industry Security Program (DISP) certified, 100% Australian owned, Veteran run company.

Understanding the need for an Australian sovereign end to end encrypted messaging capability, govSync has embraced secure-by-design principles from the outset, with its development led by an (ISC)² Certified Information Systems Security Professional (CISSP).

map of australia at night
man sitting on a phone

Encrypted Messaging

Unlike traditional encryption methods used by everyday software products that may protect data in transit but leave it vulnerable at rest, govSync implements true end-to-end encryption, safeguarding sensitive communications against interception, data breaches, and unauthorised access.

This approach ensures that government agencies and industry partners can exchange information with absolute confidence, maintaining compliance with Australian cybersecurity and data protection standards.

Encrypted Calls

govSync’s end-to-end encrypted calling ensures that voice and video communications remain completely private, protecting sensitive discussions from interception or surveillance.

Unlike standard encrypted calls, which may still be accessible to service providers or compromised at network endpoints, govSync encrypts calls from the moment they are initiated until they reach the intended recipient—ensuring that no third party, including govSync itself, can listen in.

woman talking on phone
How govSync Works

Security isn’t just a feature—it’s a fundamental principle.

End-To-End Encryption

cryptography icon

Designed and built for specific needs

govSync uses an Extended Triple Eliptic Curve Diffie-Hellman protocol combining three Diffie-Hellman key exchanges using a long-term (identity key), one time, and ephemeral keys to establish encrypted communications.

This assures both forward secrecy and authentication. A Double Ratchet algorithm is utilised for ongoing communication.

govSync uses AES 256 symmetric encryption with key ratcheting, meaning new keys are derived after each message thus providing both forward and future secrecy. This makes it extremely difficult for an attacker to decrypt past or future messages, even if a single message key has been compromised.

Cryptography

cryptography curve diagram

ASD Approved Cryptographic Algorithms

Everything in govSync is encrypted.

All govSync encryption complies with the Australian Signals Directorate Approved Cryptographic Algorithms & Protocols.

Use Algorithm Curve/Standard
Key Exchange ECDH NIST-P384
Digital Signatures ECDSA NIST-P384
Hash (digest) generation SHA-2 SHA-384
Symmetric encryption AES AES-256 GCM

Enclosed System

screwdriver and spanner icon

Designed and built from the ground up

govSync is a fully enclosed secure messaging system that is only available to Australian Government Organisations and related Industry. The user can have peace of mind that no one is on govSync that shouldn't be.

Eligibility

  • Any employee or contractor employed by an Australian Government Organisation that has access to an email account with a .gov.au domain
  • Any employee or contractor employed by an Defence Industry Security Program (DISP) approved Organisation that has access to the approved email account domain. eg hillworthsolutions.com.au

Secure Design

screwdriver and spanner icon

Sutiable For Classified Information

GovSync has been painstakingly designed from the ground up to align with the security controls outlined in the Australian Cyber Security Centre’s (ACSC) Information Security Manual (ISM).

Every architectural decision—from data handling and encryption to identity management and infrastructure—has been made with strict adherence to the ISM’s principles, ensuring that govSync meets the high-assurance requirements expected of systems handling sensitive government information.

govSync is designed for classified information up to and including OFFICIAL:Sensitive. If your organisation is interested in our PROTECTED version, please contact us below.

Why govSync

When big tech holds your data, breaches are just a matter of time—true security means they never have it to begin with.

Data Breaches

Don't Risk Your Data

Large scale high publicity data breaches are happening almost everyday now. The only way to truly minimise business impact is to decentralise data storage. Remember, its not a matter of if, but when.

  • check mark icon Messages are end to end encrypted.
  • check mark icon Messages are not kept on the server
  • check mark icon govSync DOES NOT harvest and DOES NOT interact with your metadata
  • check mark icon Every message is encrypted differently ensuring no two messges can be decrypted with the same key.
A server rack
two people having coffee using computers
Cybersecurity and Infrastructure Security Agency

CISA Alert

CISA highlights nation-state threats targeting mobile communications, urging highly targeted individuals to adopt end-to-end encryption. See Link.

  • check mark icon Use only end-to-end encrypted communications.
  • check mark icon Migrate away from Short Message Service (SMS)-based MFA
  • check mark icon Nation states are targeting mobile communications
  • check mark icon High value personnel, eg Government and related industry employees, being targeted.
compliance

True security isn’t just about encryption—it’s about compliance, sovereignty, and accountability.

  • check mark icon govSync is IRAP assessed, and compliant from the second it is installed on your phone.
  • check mark icon All backend infrastructure is IRAP assessed and located 100% within Australia, meeting all sovereign compliance requirements.
  • check mark icon govSync is assessed against the ACSC ISM Risk Management Framework and Essential 8 criteria.
  • check mark icon All govSync communications only use ASD Approved Algorithms and Protocols.
mouse icon clicking security
Contact Us

Secure communication starts with trust.

Contact us to learn how govSync keeps your data protected.

govSync logo

Security

Compliance

For all matters concerning security documentation and compliance please contact us here.

This includes queries regarding govSync’s IRAP assessment, security artefacts and other compliance related matters.

If your company is a member of the Defence Industry Security Program (DISP) you are also eligible for use of govSync. Please reach out to us for your company to be whitelisted on govSync.

picture of a bug

Application

Bugs & Features

For all application development matters concerning govSync please contact us here.

We gladly welcome any feedback you may have on govSync.

If you have identified any bugs or have a requested feature for govSync please don't hesitate to reach out to us.