Educause Security Discussion mailing list archives
Re: Laptop encryption experiences
From: Sherry Callahan <scallahan () KUMC EDU>
Date: Mon, 15 Nov 2010 11:07:34 -0600
We've been encrypting all of our laptops for four years and currently have approximately 2000 encrypted devices, including our medical students' tablets. One of the things that we grappled with initially was the same litmus test that you mentioned. Ultimately, we felt that we couldn't ensure that patient data or other sensitive information wouldn't end up on an unencrypted device, whether through user error or otherwise. The trade-off for the up-front effort to encrypt pays off on the back end in peace of mind and knowing that any data on the drive is protected. When we began the encryption process, communication was an extremely important component because of the general unease that both technical and non-technical folks had with the new software. We also felt it was necessary to address the unease with a manual process at first: user signs up for an encryption appointment, brings in their laptop, it is backed up first, and then encrypted. At the same time, we also installed CompuTrace (theft-tracking software) and, due to a couple of hiccups caused by these two software packages trying to reside side by side in the BIOS, there were a handful of times very early on when we were happy that we have the backups of the drive. But a handful is a small percentage of the total number of laptops that we touched and we haven't had these problems for several years. We are now pretty much hands off, since we can push upgrades to the encryption software from a central server (we're using Safeboot, dba McAfee Endpoint Encryption) and our folks are no longer scared of the technology. Sherry Callahan Information Security Officer University of Kansas Medical Center (913) 588-0966
Alan Bowen <abowenml () GMAIL COM> 11/15/2010 10:32 AM >>>
At TCNJ, we've been in the alpha/pilot phase of a laptop full disk encryption project for a very long time. We are grappling with the complexities and resource requirements for encrypting our entire laptop inventory. I'd like to know what types of parameters schools use for a "litmus test" to determine if a given laptop needs to be encrypted. Also, data on the number of laptops that have been encrypted over a time period, e.g. month or semester, would be very useful. Any extenuating circumstances or qualifiers outside of these questions would be much appreciated as well. Thanks. -Alan -- Alan Bowen Manager of IT Security The College of New Jersey
Current thread:
- Laptop encryption experiences Alan Bowen (Nov 15)
- Re: Laptop encryption experiences Everett, Alex D (Nov 15)
- Re: Laptop encryption experiences Sherry Callahan (Nov 15)
- Re: Laptop encryption experiences Shahra Meshkaty (Nov 15)
- Re: Laptop encryption experiences randy marchany (Nov 15)
- Re: Laptop encryption experiences Valdis Kletnieks (Nov 15)
- Re: Laptop encryption experiences Tonkin, Derek K. (Nov 15)
- Re: Laptop encryption experiences SCHALIP, MICHAEL (Nov 15)
- Re: Laptop encryption experiences Rich Graves (Nov 15)
- Re: Laptop encryption experiences Valdis Kletnieks (Nov 15)
- Re: Laptop encryption experiences Allison F Dolan (Nov 16)
- Re: Laptop encryption experiences Mclaughlin, Kevin (mclaugkl) (Nov 16)
- Re: Laptop encryption experiences randy marchany (Nov 16)
- Re: Laptop encryption experiences Shahra Meshkaty (Nov 15)