ICT Best Practises - Encrypt sensitive data whenever possible
You are here
Unencrypted data, whether it be stored in a file or transmitted across the network, is vulnerable to disclosure. There are several technologies that can be used to protect sensitive data:
- Technicians and data users must encrypt sensitive data where the application or process can support it.
- SSL is a method used to protect data passed between a web browser and web server. An SSL certificate should be installed on any web server that:
- Displays or collects sensitive institutional and/or personal data
- Performs username and password authentication
- SSH is a replacement for insecure protocols such as TELNET and FTP. It uses strong cryptography to protect the data transferred between a client and a server.
Category: