Securing Your Devices

Here are the top things you can do to secure your phone and tablet:

1. Set a passcode. Follow best practices and set auto logoff/screen lock to no more than 15 minutes. This is the easiest way to prevent an unwanted visitor from accessing all of those pictures, messages, apps and notes that you hold so dearly.  For many modern smart phones and tablets, simply setting a password, automatically encrypts much of the most sensitive contents.
   [Instructions for: iPhone and iPad, Android, Windows, BlackBerry, Microsoft Surface RT]
2. Turn on Encryption. If setting a passcode did not automatically encrypt your phone or tablet, make sure to enable the native encryption (encryption comes standard with most phones)
   [Instructions for: iPhone and iPad, Android, Windows, BlackBerry, Microsoft Surface RT]
3. Keep your system and applications up to date. Check to see that your device and applications are up to date, then set them to update automatically. This is the quickest way for the developer to provide you with the most up-to-date protection and can patch security holes that leave you vulnerable.
   [Instructions for: iPhone and iPad, Android, Windows, BlackBerry, Microsoft Surface RT]
4. Download Apps from trusted sources sources only. If an app looks like it’s coming from a suspicious source, that’s probably because it is.  Pay attention to permissions and rights that the app requests. When an app asks for permission to make changes to your device, take the time to read through the changes.  The original app may have been tested for malware by the app store, but updates come straight from the author, not from the app store. This is a commonly used way to compromise phones and tablets.
5. Install antimalware. Yes, even on your phone, and set it up to automatically update and scan. There are a number of trusted vendors available online. Android phones also now come with a form of built in protection.
6. Enable Find my Devices. Consider enabling services that allow you to locate your phone if it is lost, send a message to it, or even wipe its contents remotely if you need to. 
   [Instructions for: iPhone and iPad, Android, Windows, Blackberry]
7. Use the VPN. Be wary of connecting to insecure WiFi hotspots. The WiFi you might use to check your email or your bank account balance at your local cafe is likely not protected and is transmitting information to you without encryption. For a more secure option, choose to connect through a VPN like the one offered here at BU. For instructions on installing and using a VPN on your device look here.
   Boston Medical Center also has a secure remote connection option; for details, contact the BMC Service Center at 617-414-4500
8. Back up your device. It is important to back up your device to prevent any data lost in the event that it is lost or stolen.
9. Reset your device. In the event that your device is lost or stolen, you have an easy way to securely erase the data stored on your device. This will help you to avoid becoming a victim to a compromised device.
   [Instructions for: iPhone and iPad, Android, Windows, Blackberry]

Here are the top things you can do to secure your laptop and desktop:

1. Use a password. Follow best practices and set auto log-off/screen lock to no more than 15 minutes. This is the easiest way to prevent a thief from accessing sensitive information.
   [Instructions for setting a password: Windows 10, Mac]
2. Encrypt your hard drive. If you work with medical information, financial account information, or social security numbers belonging to other people your device needs to be encrypted.  Encryption is available for free from Boston University, and personal computers now come standard with encryption, but you must turn it on for both Mac (FileVault) and Windows machines (Bitlocker).
   Encryption is also available for free from Boston Medical Center.  You can request the software using the BMC Service Request System  or by contacting the Service Center at 617-414-4500
3. Keep your computer and applications updated. Patches are delivered through updates to help close any vulnerable holes you might have on your system, protecting you from malicious attempts to corrupt your computer. Though the updates may seem like a nuisance, pick a convenient time to perform them (no more than 30 days from notification) or have them installed automatically.
   [Instructions for: Windows, Mac, Java, Adobe Acrobat, Flash]
4. Use a secure connection (often called a “VPN”) to connect to the internet. Secure connections provide a protected encryption tunnel for information to travel through between your computer and the network. This is particularly important when you connect to WiFi hotspots in public areas, where any information you send across the internet can otherwise be easily read by anyone else on that same network.  [Connect to the BU VPN, For more information on BMC Secure Remote Access, please contact Boston Medical Center’s Service Desk at 617-414-4500.]
5. Install Threat Protection Software. These types of software will help prevent both active and passive cyberattacks. CrowdStrike is available for free from BU for both Mac and Windows computers.
   For more information on security software for BMC owned devices, please contact Boston Medical Center’s Service Desk  using the BMC Service Request System  or calling 617-414-4500.

Securing the devices you use for backup or file transfer is just as important as securing the devices you use for everyday activity, USBs and CDs are significantly easier to lose or have stolen because of their portability. It is very important to make sure that the information you keep on these devices is protected by encryption.

Here are the top things you can do to secure your USBs and CDs:

1. Choose a device with hardware encryption built-in. Though typically a little more expensive, hardware encryption offers a high level of security at the core of your device. Consider this option if you’re looking for the best protection.
   — Or  —
   Set up encryption for your device. If  your device does not have built-in encryption, you can encrypt it yourself. Once your device is encrypted a password will be required to access all files and folders, making it that much more difficult for someone else to gain access. Boston University also provides it’s own encryption service.
2. Store your password safely. Resist the urge to write the password to your device directly on the CD or attached to the USB. Should you need to share the password, it should be provided via a secure network like DataMotion SecureMail
   Secure Email and secure file transfer solutions are also available from Boston Medical Center.  For details, contact  the Service Center at 617-414-4500 or by using the BMC Service Request System.

Just as important as securing your devices is using secure e-mail for communications when sensitive information is involved. Regular e-mail is not encrypted or protected in any way. If a message is ever sent across the public Internet (for example as will happen if your mobile device downloads the e-mail message), the message may be intercepted and read by someone else.

Secure e-mail solutions are available from both BU and BMC:

• BU – DataMotion SecureMail
• BMC – For details, contact  the Service Center at 617-414-4500 or by using the BMC Service Request System.