<div dir="ltr"><div><div><div>Yep. It's now law.<br><br><a href="http://parlinfo.aph.gov.au/parlInfo/search/display/display.w3p;query=Id%3A%22legislation%2Fbillhome%2Fs1051%22">Telecommunications and Other Legislation Amendment Bill 2017</a><br><br></div>(I am not a lawyer. This is not expert opinion).<br><br></div>Kind regards<br><br></div>Paul Wilkins<br></div><div class="gmail_extra"><br><div class="gmail_quote">On 19 September 2017 at 16:06, <a href="mailto:paul%2Bausnog@oxygennetworks.com.au">paul+ausnog@oxygennetworks.com.au</a> <span dir="ltr"><<a href="mailto:paul+ausnog@oxygennetworks.com.au" target="_blank">paul+ausnog@oxygennetworks.com.au</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div link="blue" vlink="purple" lang="EN-AU"><div class="m_-8217050896931125672WordSection1"><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Has been passed as a bill from what I can tell, maybe not law as such, but I’m not a lawyer so I am not sure, I’m sure somebody else can comment.<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Quoted from their communication.<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">“As you may be aware, the legislation that underpins the Telecommunications Sector Security Reforms (TSSR) received the Royal Assent yesterday, 18 September 2017.”<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Paul<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"" lang="EN-US">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"" lang="EN-US"> AusNOG [mailto:<a href="mailto:ausnog-bounces@lists.ausnog.net" target="_blank">ausnog-bounces@lists.<wbr>ausnog.net</a>] <b>On Behalf Of </b>Paul Wilkins<br><b>Sent:</b> Tuesday, 19 September 2017 3:21 PM<br><b>To:</b> <a href="mailto:ausnog@lists.ausnog.net" target="_blank">ausnog@lists.ausnog.net</a><br><b>Subject:</b> Re: [AusNOG] Telecommunications Sector Security Reforms<u></u><u></u></span></p><div><div class="h5"><p class="MsoNormal"><u></u> <u></u></p><div><div><div><p class="MsoNormal" style="margin-bottom:12.0pt">I don't think this is law yet, as it still has to pass the Reps?<u></u><u></u></p></div><p class="MsoNormal" style="margin-bottom:12.0pt">I support the legislation. It's government's responsibility to protect our national infrastructure. I'd have preferred the legislation go further, and that there were obligations to protect the data plane. I doubt there's a mandate even to compel use of RPF/BCP 38.<u></u><u></u></p></div><p class="MsoNormal">In practice, professional organisations will be little affected, because frankly it will be a cold day in hell before government are aware leave alone act on a vulnerability before secops have already closed the breach.<u></u><u></u></p><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">Kind regards<u></u><u></u></p></div><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">Paul Wilkins<u></u><u></u></p></div><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal"><u></u> <u></u></p><div><p class="MsoNormal">On 19 September 2017 at 14:29, <a href="mailto:paul%2Bausnog@oxygennetworks.com.au" target="_blank">paul+ausnog@oxygennetworks.<wbr>com.au</a> <<a href="mailto:paul+ausnog@oxygennetworks.com.au" target="_blank">paul+ausnog@oxygennetworks.<wbr>com.au</a>> wrote:<u></u><u></u></p><div><div><p class="MsoNormal">For all of you who don’t lock you stuff down like fort knox, or like the government for that matter, look out ! <u></u><u></u></p><p class="MsoNormal">The government, via the AG has now kicked off “The Critical Infrastructure Centre” to enforce their security agenda on your Carrier or Carriage Service Provider Network.<u></u><u></u></p><p class="MsoNormal"> <u></u><u></u></p><p class="MsoNormal">You have 12 months to comply, as if we didn’t have enough to deal with already.<u></u><u></u></p><p class="MsoNormal"> <u></u><u></u></p><p class="MsoNormal">Should make for an interesting read in our spare time.<u></u><u></u></p><p class="MsoNormal"> <u></u><u></u></p><p class="MsoNormal">More information: <a href="https://www.ag.gov.au/telcosecurity" target="_blank"><span style="color:windowtext">Attorney-General’s Department website</span></a><u></u><u></u></p><p class="MsoNormal"><span style="color:#888888"> <u></u><u></u></span></p><p class="MsoNormal"><span style="color:#888888">Paul<u></u><u></u></span></p></div></div><p class="MsoNormal" style="margin-bottom:12.0pt"><br>______________________________<wbr>_________________<br>AusNOG mailing list<br><a href="mailto:AusNOG@lists.ausnog.net" target="_blank">AusNOG@lists.ausnog.net</a><br><a href="http://lists.ausnog.net/mailman/listinfo/ausnog" target="_blank">http://lists.ausnog.net/<wbr>mailman/listinfo/ausnog</a><u></u><u></u></p></div><p class="MsoNormal"><u></u> <u></u></p></div></div></div></div></div></div></blockquote></div><br></div>