Do you store sensitive information on your workstation, laptop, flash drive or mobile device? Do you email sensitive data to persons outside the ECU network? If so, you should encrypt these files and emails to protect them from unauthorized access or theft. Read on to learn categories of sensitive data and a few simple tools you can use to add a significant layer of protection to your information.
Sensitive data includes the following:
Encryption scrambles data to make it unreadable. Only persons with the password “key” can unscramble, or unlock, the information. This not only prevents identity theft but also protects you and the university from unnecessary liability if your device or email is stolen, hacked or otherwise breached.
Flash DrivesITCS recommends Ironkey hardware-encrypted flashdrives to protect your data when you need a portable and secure data storage solution. If you lose the flashdrive your data is protected from prying eyes by AES hardware encryption. Ironkey flash drives can be purchased through Staples.
Please Note: Flash drives from state contract vendors (Staples, Tiger Direct, CDWG, etc.) must be blank (without data pre-installed). To learn more about flash drives purchase guidelines, visit the Tech Purchasing website.
BitLocker Drive EncryptionIncluded as part of Windows 7 and Windows 8.1 Professional, Enterprise and Ultimate editions, BitLocker encrypts an entire drive. A drive can be password-protected, decrypted or BitLocker can be temporarily suspended at any time by the authorized user.
From the Start button, type BitLocker into the search. Choose BitLocker Drive Encryption.
Mac FileVault 2Available from the Security & Privacy pane of System Preferences. Click the FileVault tab in the
pane to enable or disable FileVault.
WinZip Encryption SoftwareThe licensed version of WinZip Pro can encrypt files using 256-bit AES encryption. WinZip Pro can be purchased and downloaded from the WinZip website in single-user or multi-user licensing formats (ECU has no site license for this software).
Email encryption scrambles an email message so that only those recipients with the key can unscramble and read the message. Email containing sensitive information sent to email addresses outside the ECU network should be encrypted. For example, do you send HIPAA information to users at Vidant? Then these messages should be encrypted.
It’s easy to encrypt email. First, send an IT service request (http://ithelp.ecu.edu) to request that your Exchange account have encryption enabled. Next, depending on your systems operating system (Windows or Mac), follow the instructions found at http://www.ecu.edu/cs-itcs/email/encryption.cfm. To learn more about which product might be right for you, contact the IT Help Desk for a consultation at 252.328.9866 | 800.340.7081.