Device Encryption

Laptop Encryption

Johns Hopkins policy requires device encryption on laptop computers that may store sensitive or restricted information (e.g. SSN and financial information, patient information). For laptops used by faculty, staff, and students in Johns Hopkins Medicine, the presumption is that the device may be used for this purpose and therefore must be encrypted. Users should work with their local IT support professional to backup and encrypt laptops. Deployment of encryption may require technical expertise. Please contact your local IT support professional for assistance with the best method to encrypt your device.

Windows Laptop Encryption

Windows users should work with their local IT support professional to ensure that encryption is deployed. Microsoft Bitlocker encryption generally requires some technical expertise to install. Bitlocker is supported by an enterprise deployment of Microsoft Bitlocker Administration and Monitoring (MBAM), which provides centralized management and reporting for Bitlocker encryption keys. Information about MBAM is available on the MBAM SharePoint site. Please contact [email protected] if you have additional questions.

Macbook Encryption

Macbook users should work with their local IT support professional to ensure that encryption is effectively deployed. In general MacBook encryption is easier for users to deploy than is Bitlocker, although it is still strongly recommended that users deploy with some technical assistance to ensure that keys are managed properly. Mac OS X has a built-in encryption tool in FileVault 2. Apple has provided step-by-step instructions for implementing FileVault 2.

Phone/Tablet Encryption

All iOs devices (iPhones and iPads) have built-in encryption that is activated by simply having a passcode used to unlock the device. Android devices differ by manufacturer; they have encryption capabilities, but for most devices, encryption is not activated automatically. If you are not sure whether your phone or device is encrypted, please contact your local IT support professional.

Frequently Asked Questions

Please contact [email protected] if you have additional questions or if you do not have a local IT support professional.