The intent of the revision was to better distinguish between mandatory and optional controls, and to reflect the current campus environment while avoiding specific references to frequently changing technology.
One significant change to the standard is the addition of the requirement that privileged and super-user accounts (Administrator, root, etc.) must not be used for non-administrator activities. (For details, see MSSND Requirement #9: Privileged Accounts.)
Compliance with the MSSND helps protect not only the individual device, but also other devices connected through the electronic communications network. The standard is intended to prevent exploitation of campus resources by unauthorized individuals, including the use of campus resources by unauthorized individuals to attack other systems on the campus electronic communications network or the Internet.
Questions about the MSSND may be directed to [hidden email].