University of Vermont

Information Technology

Disk Encryption at UVM

The UVM Information Security policy (see procedure 16.4.2.1) specifies that all university-owned laptops must use approved encryption software to protect the University (or other confidential data) that may be stored on them. The products below may also be used to encrypt flash drives and other media that are used to store or transport such data.

Computers that run Windows 7 or Windows 8 should be encrypted using Microsoft BitLocker.

Computers running Windows XP should be replaced or upgraded to Windows 7 or 8 (covered by Microsoft EES agreement).

Macintosh computers running OS X 10.8 Mountain Lion or OS X 10.9 Mavericks should use FileVault 2 and Casper to encrypt and manage recovery keys.

Computers with older versions of OS X are strongly encouraged to upgrade (free through Apple Store).

Previously, UVM licensed and deployed Symantec PGP Disk Encryption software. Although devices that already are encrypted with PGP have valid licenses, we encourage gradual migration from PGP to the supported encryption software for your device. See the BitLocker and FileVault 2 documentation for migration instructions.

Occasionally, something may happen that makes disk encryption software prompt for a recovery key. UVM Identity and Account Management is able to provide recovery keys for BitLocker, FileVault 2, and Symantec/PGP (for now). With BitLocker, we've made it possible for users to retrieve their own recovery keys.

Last modified July 29 2015 10:24 AM

Contact UVM © 2015 The University of Vermont - Burlington, VT 05405 - (802) 656-3131