SSD security model

In response to increasing threats posed by malware and in keeping with guidance received from the University's last security audit, Standard Staff Desktop (SSD) supports a new security model.

This new model improves the security of SSD systems, reduces the risk of exposure to malware, and keeps everyone's data safer.

There are four major changes to the previous security model:

  1. By default, all staff will be set up as normal users in SSD. For those who need admin privileges, there is a process to request it.

  2. Patching is mandatory, and the maximum time you can delay a reboot is 72 hours. Patching is centrally recorded and monitored, with local admin teams now receiving automated alerts when a machine falls behind the current patch revision level.

  3. Flash is not installed. If you need Flash, use the Chrome browser, which automatically patches its own implementation of Flash. There are Flash emulators available to install from the Chrome Web Store.

This security model contributes to SSD Cyber Essentials Plus certification