Our assessment in CERTFA Lab shows Atomic Energy Organization of Iran (AEOI) is the only website that has applied basic security standards on their website. As a result, more than 60% of the Iranian state websites are not secure and they do not follow the basic standard in terms of implementation of general protocols and configuration for HTTP response.
