Makerere University

Enter a keyword or two into the search box above and click search..

ICT Best Practises - Encrypt sensitive data whenever possible

You are here

Unencrypted data, whether it be stored in a file or transmitted across the network, is vulnerable to disclosure. There are several technologies that can be used to protect sensitive data:

  • Technicians and data users must encrypt sensitive data where the application or process can support it.
  • SSL is a method used to protect data passed between a web browser and web server. An SSL certificate should be installed on any web server that:
  1. Displays or collects sensitive institutional and/or personal data
  2. Performs username and password authentication
  • SSH is a replacement for insecure protocols such as TELNET and FTP. It uses strong cryptography to protect the data transferred between a client and a server.