ASD's Blueprint for Secure Cloud

iOS devices

This section describes the design decisions associated with iOS endpoints configured according to guidance in ASD's Blueprint for Secure Cloud.

Estimated reading time: 2 minutes

iOS follows a yearly major release cycle. With every major release of iOS, older iPhone devices are deprecated from support, hence security updates will not be available to these devices.

Update policies control the update frequency of managed devices. Intune can define update policies that specify how and when service updates are deployed to iOS devices. By using update rings, it is possible to create an update strategy that mirrors business needs.

ASD’s Blueprint for Secure Cloud (the Blueprint) recommends organisations secure iOS for devices based on a variety of hardening guidance including the United States’ (US) National Information Assurance Partnership Protection Profile for Mobile Device Fundamentals version 3.3, the US Department of Defence’s Cyber Exchange Security Technical Implementation Guides (STIGs), the Centre for Internet Security’s(CIS) Apple iOS Benchmarks, and ASD’s Security Configuration Guidance for Apple iOS Devices to provide secure access to corporate information.

Security & Governance




Do you have a suggestion on how the above page could be improved? Get in touch! ASD's Blueprint for Secure Cloud is an open source project, and we would love to get your input. Submit an issue on our GitHub, or send us an email at

Acknowledgement of Country icon

Acknowledgement of Country
We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

Authorised by the Australian Government, Canberra