New ways of working have become a part of our reality. Microsoft Teams UCaaS solutions have been a game changer for business communications by integrating all in a single platform and allowing organizations to deliver a better customer experience. With many organizations migrating to cloud infrastructure and sending information over the internet as data packets, new threats are emerging every week. Unfortunately, unencrypted data can be intercepted during transmission by network breaches, giving access to cybercriminals to read and use that information.
Therefore, protecting data through encryption makes any information sent through your UCaaS provider completely indecipherable, even if there has been a breach.
In today’s article you will find different ways Microsoft offers to protect data through encryption in Microsoft Teams.
Security and compliance in Microsoft Teams
Microsoft Teams, as part of the Microsoft 365 and Office 365 services, follows all the security best practices and procedures such as service-level security through defense-in-depth, customer controls within the service, security hardening, and operational best practices.
With MS 365, your data is encrypted at rest and in transit, using several strong encryption protocols, and technologies that include Transport Layer Security/Secure Sockets Layer (TLS/SSL), Internet Protocol Security (IPSec), and Advanced Encryption Standard (AES).
Call flows in Teams are based on the Session Description Protocol (SDP) RFC 8866 offer and answer model over HTTPS. Once the callee accepts an incoming call, the caller and callee agree on the session parameters. Media traffic is encrypted by, and flows between, the caller and callee using Secure RTP (SRTP), a profile of Real-time Transport Protocol (RTP) that provides confidentiality, authentication, and replay attack protection to RTP traffic.
End-to-end encryption in Microsoft Teams calls
End-to-end encryption (E2EE) happens when content is encrypted before it’s sent and decrypted only by the intended recipient. With end-to-end encryption, only the two endpoint systems are involved in encrypting and decrypting the call data. No other party, including Microsoft, has access to the decrypted conversation.
Azure Sentinel and Microsoft Teams
Teams serves a central role in communication and data-sharing in the Microsoft 365 Cloud. Since Teams touch on so many technologies in the Cloud, it can benefit from human and automated analysis. This applies to both hunting logs, and real-time monitoring of meetings. Azure Sentinel offers admins these solutions.
With Microsoft Sentinel, you get a single solution for attack detection, threat visibility, proactive hunting, and threat response.
Microsoft 365 offers an additional layer of encryption for your content: Customer keys. This feature encrypts several different types of data in Microsoft Teams. Using Customer Key at the application level, encrypts Teams files stored in SharePoint Online, as well as data from Exchange Online and OneDrive for Business.
Using Customer Key at the tenant level encrypts:
- Teams chat messages (1:1 chats, group chats, meeting chats, and channel conversations)
- Teams media messages (images, code snippets, videos, and wiki images)
- Teams call and meeting recordings stored in Teams storage
- Teams chat notifications
- Teams chat suggestions by Cortana
- Teams status messages
In today’s scenario when unfortunately, cyber-attacks are on the rise, reliable encryption is a must for VoIP and unified communications (UCaaS) security. Start protecting sensitive conversations and data with Microsoft Cloud Security solutions today.
Do not hesitate to contact our certified experts for further information and assistance with your business’ security requirements.