Search Stanford:

Pages about Stanford Whole Disk Encryption

• Sign up for SWDE
• Policy Agreement
• Install PGP Whole Disk Encryption for Windows
• Install PGP Whole Disk Encryption for Macintosh
• Windows Installation Requirements
• Mac OS X Installation Requirements
• Getting Started
• Frequently Asked Questions
• SWDE Request Flowchart [PDF]

IT Services Restricted Pages

• Client Administration Reference [PDF]
• Stanford PGP Mac Issues
• PGP Train the Trainer [PPT]
• PGP Help Desk Reference: Whole Disk Recovery Token [PDF]
• PGP Corp: How to Retrieve a Whole Disk Recovery Token [PDF]
• PGP Desktop 9.9 for Mac OS X User Guide [PDF]

• QUICK LINKS
  • answers.stanford.edu
  • apple.stanford.edu
  • computing.stanford.edu
  • courses.stanford.edu
  • datarates.stanford.edu
  • dell.stanford.edu
  • departmentphone.stanford.edu
  • email.stanford.edu
  • ess.stanford.edu
  • helpsu.stanford.edu
  • myitserviceshelp.stanford.edu
  • orderithelp.stanford.edu
  • software.stanford.edu
  • studentphone.stanford.edu
  • techtraining.stanford.edu
  • tools.stanford.edu
  • unixcomputing.stanford.edu
  • vpn.stanford.edu
  • web.stanford.edu
  • windows.stanford.edu
• SERVICES
  • IT Services Only
  • All Campus Providers
    → computing.stanford.edu
• GETTING HELP
  • Stanford Answers
  • HelpSU: IT Help Desk
  • Training
• PROJECTS
• ABOUT US
  • What We Do
  • Organization Chart
  • Strategic Plan
  • Jobs
  • Contact info
  • Service & System Metrics
• INTERNAL
• SEARCH

  • Search IT Services:
     

• IT Services
• Data Encryption
• Stanford Whole Disk Encryption

Stanford Whole Disk Encryption (SWDE)

Overview

The Stanford Whole Disk Encryption (SWDE) service is for both Windows and Macintosh desktop and laptop computers. This service will secure data using standard NIST-approved encryption of the computer hard disk. Once installed, all files are automatically encrypted. The data is protected at rest as long as the hard disk is password protected. This solution additionally supports encryption of USB drives.

The best way to protect University data is remove unnecessary data from your computer. Prohibited data must be removed from your hard drive unless you have explicit permission from the Data Governance Board to have it on your system. This includes things like Social Security Numbers,
credit card numbers, or checking account numbers.

While there is no single solution to protect the University's data, SWDE protects all data on a hard disk from unauthorized access in the event the computer is lost or stolen. Additional data protection may be needed to reduce risks in other scenarios, such as transferring data from one computer to another.

For an IT Services solution that provides protection at the file or folder level, see Windows Desktop File Encryption with EFS or FileVault: Built-in Encryption for Mac OS X.

Stanford Whole Disk Encryption Benefits

Only the SWDE passphrase holder is authorized to access the data, which protects the data if your computer is lost or stolen.

In the event of loss or theft, there will be an audit trail of the encryption status of the computer. Computers that use the SWDE solution are set up to check in with a logging and administrative server on a regular basis. The audit trail assists Stanford in determining if a lost or stolen computer is a "reportable" event; possibly requiring notification of persons whose data may have been lost or stolen.

In the event you lose or forget your passphrase, the IT Services Help Desk will assist you in accessing your computer so that you can reset your passphrase.

If necessary, the whole disk can be unencrypted (with the assistance of IT Services to guarantee the integrity of the audit trail).

This service is provided free of charge.

Should I Consider Whole Disk Encryption?

Stanford Whole Disk Encryption is recommended for Faculty and Staff who must store Restricted Data and/or Confidential Data on their computer. Please check the Information Security Office Data Classification Guidelines to determine if you might have Restricted Data or Confidential Data on your computer.

For More Information

To get more details about the Stanford Whole Disk Encryption service, please submit a HelpSU request.