Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ Simulation

TABLE OF CONTENTS

Shared security responsibility model

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedMay 13, 2025
  • 2 minute read

This section outlines the security responsibilities, shared between AVEVA and its customers, for AVEVA Simulation. Adopting this model ensures that the secure-by-design nature of the software is complemented by best practices used in the customer environment. This reduces risks across both domains.

The shared security model

This model applies to AVEVA Simulation and includes the security responsibilities related to

  • infrastructure

  • platform services

  • applications

  • endpoints

This approach helps customers understand which security aspects AVEVA provides by default and which aspects the cusomer must proactively manage.

AVEVA responsibilities (security of the cloud)

AVEVA is dedicated to ensuring that its software applications and their underlying platform are secure by design. AVEVA helps maintain the security of the cloud. AVEVA's responsibilities include:

  • Infrastructure and Data Center Security

    AVEVA manages the network infrastructure and baseline system. These elements follow industry-leading standards and undergo rigorous audits and regular assessments.

  • Development best practices

    AVEVA development teams adhere to a secure software development lifecycle policy that incorporates redesign, rigorous testing, and prompt patch management. AVEVA distributes critical security patches and updates through maintained image updates.

  • Application updates

    AVEVA ensures that the latest official versions of Pro/II Simulation, AVEVA Dynamic Simulation and AVEVA Process Simulation are installed. This takes advantage of the most recent enhancements as well as critical security improvements.

  • Baseline Platform Configuration and Monitoring

    This platform incorporates several protocols designed to safeguard the environment, including:

    • continuous monitoring

    • threat detection

    • alert mechanisms

  • Encryption and secure storage

    Built-in encryption and secure data handling protocols are standard for components that AVEVA manages.

  • Windows updates

    The AVEVA Simulation team regularly installs the latest Windows security updates and patches into the base images, which ensures that they remain secure and robust.

  • Endpoint protection

    AVEVA routinely scans all endpoints associated with AVEVA Simulation. AVEVA updates and deploys Windows Defender for AVEVA Simulation sessions to safeguard against potential vulnerabilities.

  • Operating system hardening

    Hardening measures include limiting privileges for non-administrative users and disabling unnecessary services to reduce the attack surface and to secure the underlying operating system.

  • Disk encryption

    All customer files and data reside in encrypted cloud storage. This ensures that your information is safeguarded while at rest and during transit.

Customer responsibilities (security in the cloud)

While AVEVA delivers a secure foundational platform, customers are chiefly responsibility for securing the operational environment in which the AVEVA solutions run. Customers help maintain security in the cloud. Here are just a few ways you can contribute:

  • Federated identity management with MFA

    Use federated identity with multi-factor authentication (MFA) to strengthen user identity verification and reduce the risk of unauthorized access.

  • Browser updates

    Update browser versions regularly to mitigate exploits arising from outdated software.

  • File transfer caution

    Do not transfer unnecessary or suspicious files to the VMs in an AVEVA Simulation session.

In This Topic
TitleResults for “How to create a CRG?”Also Available in