(301) 760-7604

Section 508

Accessibility For Individuals With Disabilities

Ideal for


Legal Statute

Section 508 of the Rehabilitation Act of 1973 requires that individuals with disabilities have access to and use of information and data on Federal Government systems that is comparable to those who are not individuals with disabilities, unless providing said access would constitute an undue burden on the government. This law applies to Federal agencies when they develop, procure, maintain, or use electronic and information technology. Private web sites or cloud service providers must also comply with Section 508 if they are receiving federal funds, or are under contract with a federal agency. The technologies covered by Section 508 include:

  • Software Applications and Operating Systems
  • Web-based Intranet and Internet Information and Applications
  • Telecommunications Products
  • Videos or Multimedia Products
  • Self Contained, Closed Products (e.g., kiosks, copiers, and fax machines)
  • Desktop and Portable Computers

Web-Based Applications

Aerstone’s services around Section 508 specifically pertain to web-based application compliance. The statute indicates that a web site will be in compliance with Section 508 standards if it meets paragraphs (a) through (p) of Subsection 1194.22. These requirements specify a series of HTML rules, including guidance on how color, stylesheets, and scripting languages are used; proper treatment of non-text elements such as pictures and multimedia components; standards for image maps, forms, frames, and tables; and reasonable accommodation for site navigation.

Assessment and Remediation

Aerstone has a team of experienced developers trained on the Section 508 standard, who use a combination of commercial and proprietary tools to assess and remediate web-based applications to ensure full compliance with the statute. These engagements are typically offered firm fixed price (FFP), based entirely on the complexity of the customer’s application. We will work closely with your development and QA team to identify and fix non-compliant application elements, and ultimately provide a letter of Section 508 compliance once all remediation is complete.

Our Experience Sets Us Apart

Aerstone is an NSA-certified vulnerability assessor, and a service-disabled veteran-owned small business.

We approach each engagement with the highest levels of professionalism, determination, and creativity, honed by years of working with security professionals across the military, intelligence community, civilian government, and private industry.

More Products

PCI Compliance

PCI Qualified Security Assessments for payment card acceptance


CMMC Readiness Assessments for DoD Contractor Companies

Red Flag Rules

Compliance With FTC Identity Theft Legislation

Connect with Aerstone’s cybersecurity experts today.

Let us know what you’re interested in and we’ll get back to you within 24 hours.