Johns Hopkins policy encourages (and for JHM requires) Full Disk Encryption on laptop computers that may store sensitive or restricted information. Full disk encryption means that the entire drive is encrypted, not just a few files or folders.Johns Hopkins has an enterprise license with Checkpoint for its PointSec encryption. Users should work with their local administrators to backup and encrypt laptops.
Checkpoint is used primarily for Windows XP deployments and the Hopkins license does not support Windows 7. Windows 7 users should consider using Microsoft Bitlocker [http://www.microsoft.com/whdc/system/platform/hwsecurity/default.mspx] or a third party tools such as TrueCrypt [http://www.truecrypt.org/docs/?s=system-encryption]. Johns Hopkins is testing an enterprise deployment of BitLocker for new machines running Windows 7.
MacBook Encryption and FileVault
Mac users may work with their systems administrators to install Checkpoint for full disk encryption. Many Mac users deploy encryption through FileVault [http://www.apple.com/macosx/security/] a free tool included in all versions of OS X. FileVault is easy to implement on any MacBook and does not require the user to be an expert on Mac's.
To set up FileVault go to your System Settings and click Security. FileVault is one of the tabs at the top of screen. Select "Turn on FileVault." It will take several minutes (perhaps hours) for FileVault to complete its encryption. You may continue to work on the computer while it is encrypting in the background. FileVault will not change your log-in or other ways your Mac works.
For more information, please contact pointsec@jhmi.edu.
![[Johns Hopkins University]](/sebin/i/p/johns-hopkins-university-logo.gif){kind=logo}
![[Johns Hopkins Medicine]](/sebin/k/q/johns-hopkins-medicine-logo.gif){kind=logo}
