SOMIS News & Updates:

Zimbra users may use the webmail site (Zimbra - log in with your PennKey) with full functionality. We expect to have restored all clients including mobile phones by tomorrow morning.
Many machines at the School of Medicine have been compromised by a new type of virus that presents itself as an actual anti-virus product while a user is browsing the internet. If you experience anything remotely similar to this virus description, or are concerned about any suspicious activity on your computer, please contact your LSP immediately. For more information, please visit the following link.
Zimbra users are reporting an increase in spear-phishing attempts. Penn computer administrators will NEVER ask you for your password at any time via any medium. For more information about phishing, please see the following link.

Home > Services > Information Security > Encryption

Encryption Software

What type of encryption software does SOMIS offer?
How do I know if my machine requires encryption?
How do I get PGP for my computer?
What are the user responsibilities associated with using whole disk encryption?

What type of encryption software does SOMIS offer?

PGP® Whole Disk Encryption (WDE) is available to School of Medicine faculty and staff who need to store sensitive or confidential data on their computers. WDE is used to protect that data in the event that a computer is lost or stolen.

Please note that WDE does not protect data once a user logs in to the computer. The machine must be turned off and/or restarted to ensure that the machine is in an encrypted state.

How do I know if my machine requires encryption?

As stated in Penn's Computer Security Policy, all portable computing devices, storage devices, and media with sensitive or confidential data must be protected at rest using strong encryption with a key recovery component.

How do I get PGP for my computer?

Contact your Local Support Provider or LSP.

Need help finding your LSP? Check out the SOM LSP Directory.

What are the User Responsibilities associated with using whole disk encryption?

Backups:
While data backup is always important, encryptions makes it even more crucial because any data lost due to hard drive failure or human error will not be recoverable via standard data recovery methods.

PGP users are required to have an offsite, encrypted backup solution installed and running on their machine to ensure a valid, secure backup exists at all times.

Strong System Password:
Again, a strong system password is always important (see password recommendations) but it is important to note that once the PGP password is entered the computer is no longer encrypted. If the computer is locked or goes to sleep, only the system password is required to obtain access. Therefore a strong system password is crucial for ensuring the protection of your data.

Travel Restrictions & Export Controls:
Certain countries are known for inspecting laptops and data upon entry. For example, Russia and the People’s Republic of China may currently restrict the importation of PGP’s encryption software

Users intending to travel to Cuba, Libya, North Korea, Syria, Sudan, Iran or Iraq must contact the Office of Research Services for assistance in determining whether an export license is required.

Any release of the PGP encryption technology or source code to a foreign national from Cuba, Libya, North Korea, Syria, Sudan, Iran or Iraq, or an individual on the denied parties list even while in the United states, may be prohibited under the “deemed export” rules. Contact the Office of Research Services for more information.

Encryption questions or concerns? Email medsecurity@mail.med.upenn.edu