ICT Best Practises - Encrypt sensitive data whenever possible

Unencrypted data, whether it be stored in a file or transmitted across the network, is vulnerable to disclosure. There are several technologies that can be used to protect sensitive data:

• Technicians and data users must encrypt sensitive data where the application or process can support it.
• SSL is a method used to protect data passed between a web browser and web server. An SSL certificate should be installed on any web server that:

1. Displays or collects sensitive institutional and/or personal data
2. Performs username and password authentication

• SSH is a replacement for insecure protocols such as TELNET and FTP. It uses strong cryptography to protect the data transferred between a client and a server.