ASD's Blueprint for Secure Cloud

Communications Systems

This page provides a template and guidance to assist organisations in documenting their approach to managing communications systems associated with their system(s) built on ASD's Blueprint for Secure Cloud.

Estimated reading time: 4 minutes

Telephone systems

Applicability

ISM controls relating to communications systems are applicable to the use of Microsoft Teams within <SYSTEM-NAME>, considering it as a telephone system in alignment with <ORGANISATION-NAME>’s policies and processes governing its use, and are covered by this section of the SSP.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Organisational policies and processes

Use of Microsoft Teams within <SYSTEM-NAME> is subject to <ORGANISATION-NAME>’s Telephone Usage Policy, which describes the sensitivity or classification of information that can be discussed over applicable systems and connection types.

<ORGANISATION-NAME> cyber security awareness training also informs staff of the security risks associated with using each of these connection types, particularly in areas where sensitive classified conversations may occur.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Technical controls implemented

No technical controls are implemented in <SYSTEM-NAME> relating to the management of telephone systems.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Video conferencing and internet protocol telephony

Applicability

ISM controls relating to communications systems are applicable to the use of Microsoft Teams for video conferencing and IP telephony services within <SYSTEM-NAME> and are covered by this section of the SSP.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Organisational policies and processes implemented

<ORGANISATION-NAME> implements and maintains a Denial of Service Response Plan for IP Telephony that includes appropriate business continuity practices in the event of a loss of Microsoft Teams functionality within <SYSTEM-NAME>.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Technical controls implemented

Technical controls for <SYSTEM-NAME>’s implementation of Microsoft Teams for video conferencing and IP telephony were configured with reference to ASD’s Blueprint for Secure Cloud.

<SYSTEM-NAME> use of Microsoft Teams inherits the implementation of the following controls from Microsoft:

  • use of Entra ID as the source of authentication and authorisation
  • use of Microsoft Azure’s Distributed Denial of Service (DDoS) protection capabilities
  • implementation of secure signalling data encryption, including:
  • Session Initiation Protocol (SIP)
  • Secure Real Time Protocol (SRTP)
  • use of a dedicated Virtual Local Area Network (VLAN) within the Microsoft cloud.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Fax machines and multifunction devices

Applicability

ISM controls relating to multifunction devices (MFDs) are applicable to <ORGANISATION-NAME>’s use of MFDs for office productivity purposes. These devices are connected to <SYSTEM-NAME> for printing and scanning services. However, the technical implementation of these devices is not within the authorisation boundary of <SYSTEM-NAME>.

Please see the <PRINT-SYSTEM> System Security at Plan <insert document reference here> for further information on implementation of these services.

<ORGANISATION-NAME> does not use faxing services, and therefore these controls are not in scope of this SSP.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Organisational policies and processes implemented

Appropriate organisational use of MFDs and fax machines is detailed in the <ORGANISATION-NAME>’s Fax Machine and MFD Usage Policy.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Technical controls implemented

No technical controls are implemented in <SYSTEM-NAME> relating to the use of fax machines or MFDs.

<INSERT ADDITIONAL INFORMATION AS APPROPRIATE>

Security & Governance

Design

External documentation

Do you have a suggestion on how the above page could be improved? Get in touch! ASD's Blueprint for Secure Cloud is an open source project, and we would love to get your input. Submit an issue on our GitHub, or send us an email at blueprint@asd.gov.au

Acknowledgement of Country icon

Acknowledgement of Country
We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

Authorised by the Australian Government, Canberra