iOS
This section describes the design decisions associated with the management of Applications deployed to endpoints for system(s) built using ASD's Blueprint for Secure Cloud.
Estimated reading time: 1 minute
iOS devices are enrolled with the Microsoft Intune portal to gain secure access to organisational data. After devices are enrolled, they become MANAGED. Organisations can assign policies and apps to the device through a Mobile Device Management (MDM) provider, such as Microsoft Intune.
Design Decisions
| Decision Point | Design Decision | Justification |
|---|---|---|
| iOS Enrolment | Configured | iOS is commonly deployed across the Australian Government and can be hardened in line with Apples hardening guide for iOS devices. |
| iOS Configuration | Configurations will follow Apples hardening guide for iOS devices as much as possible using Microsoft Intune | Aligns with Apple iOS hardening guidance. |
Note
ASD’s Blueprint for Secure Cloud (the Blueprint) recommends organisations secure iOS for devices based on a variety of hardening guidance including the United States’ (US) National Information Assurance Partnership Protection Profile for Mobile Device Fundamentals version 3.3, the US Department of Defence’s Cyber Exchange Security Technical Implementation Guides (STIGs), the Centre for Internet Security’s(CIS) Apple iOS Benchmarks, and ASD’s Security Configuration Guidance for Apple iOS Devices to provide secure access to corporate information.
Related information
Security & Governance
Design
- None identified
Configuration
References
- None identified