www.uvic.

ca/systems

Information Security
SAFE COMPUTING

Safe computing tips

1. Patch, patch, PATCH!
Most desktop security incidents centre around
flaws in the operating system. As these flaws
are discovered, vendors release patches to
cover these security holes. By updating your
operating system regularly, you ensure it has all
the latest patches. Both Windows and
Mac operating systems have automatic update
features.
2. Install protective software
Protective software, such as anti-virus and
anti-spyware software, will help protect your
computer and data from online security threats
such as viruses, Trojans, rootkits, and spyware.
Purchase protective software from a
well-known, reputable vendor to ensure the
best protection. All computers purchased
through the TSC come with Symantec
Endpoint Protection. The Computer Store also
sells Symantec for staff and students.
3. Keep your software up-to-date
Like your operating system, some software
packages offer regular security updates. These
should be installed promptly after they are
released, as failure to do so will leave your
computer vulnerable to security threats.
Microsoft Office, Adobe Acrobat, Adobe Flash,
and Java are common programs that should be
updated regularly.
4. Use desktop firewalls
Windows and Mac computers have basic
desktop firewalls as part of their operating
systems. When set up properly, these firewalls
will help prevent unauthorized access to your
computer over the network. Network-based
firewalls provide an additional layer of security.
5. Manage your passwords
Choosing passwords that are difficult to guess
and easy to remember will help keep your
important files and accounts secure. Choose a
password with a combination of upper- and
lower-case letters, numbers, and symbols. Do
not use words found in any dictionary. Create a
different password for each account, and
change passwords regularly. Never give your
password to anyone, for any reason, no matter
what.

6. Backup, backup, BACKUP!

Whole Disk Encryption

Make regular copies of important data and

store them securely in a geographically
separate location. This will help prevent data
loss if your computer is attacked by a virus or
Trojan, or if your computer's hard disk fails.
Enterprise backup services (TSM) are available
for faculty and staff.

In order to help mitigate risks to information

associated with physical loss or theft, your TSC
computer hard drive can be encrypted to
prevent unauthorized access to information.
Whole Disk Encryption prevents an unauthorized third party from accessing the contents of
your computer. No one will be able to access
your computer data without your passphrase.

7. Control physical access to your computer

Don't leave your computer, tablet, cell phone,
or storage media in an unsecured area, or
unattended and logged on, especially in
public. Use a cable lock to physically secure
your laptop, even if your laptop is in your
office. Ensure that your device is set to lock
after a period of inactivity and prompt for a
username/password to unlock. Setup a login
password for your tablet or smartphone.
8. Use email and the Internet safely
Ignore unsolicited emails, and be wary of
attachments, links and forms in emails, instant
messaging services, and social networking
sites that come from people you don't know or
that seem "phishy." Avoid untrustworthy (often
free) downloads from freeware or shareware
sites. For more information, see
www.uvic.ca/phishing.
9. Use secure connections
When connected to the Internet, your data can
be vulnerable while in transit. Look at secure
remote connectivity and file transfer options,
such as VPN services, when off campus. When
using your browser to transmit sensitive
information, ensure the URL address starts with
https:// and look for the lock icon in your
browser indicating a secure page.
10. Protect sensitive data
At the very least, your computer contains
sensitive data about you (the user) and likely
stored passwords in key chains and in web
browsers. Depending on your job, you may
also have access to the sensitive data of others.
Store restricted data on university servers.
Saving data to your local hard drive, printing it,
or transferring it to a laptop or USB key risks
the security of that data. Using Whole Disk
Encryption can help mitigate the risk of
unauthorized access to these files in the event
that your device is lost or stolen.

BitLocker Whole Disk Encryption is centrally

supported by University Systems and provides
benefits such as encrypting an entire hard disk,
central management, policy enforcement,
encryption key management, and recovery.
This software comes installed on all standard
TSC computers. For more information, see
www.uvic.ca/tsc.

Helpful security websites

UVic - Secure your data:
www.uvic.ca/secureyourdata
UVic - Information Security Oce:
www.uvic.ca/systems/about/
informationsecurity/
National Cyber Security Alliance - Staying safe
online: www.staysafeonline.org
Oce of the Privacy Commissioner of Canada:
www.privcom.gc.ca
Microsoft Safety & Security Center:
www.microsoft.com/security
RCMP Internet Safety: www.rcmp.gc.ca/is-si/

Questions?
Contact the Computer Help Desk:
Email:
Web:
Phone:
In person:

[email protected]
www.uvic.ca/systems
250-721-7687
Clearihue A004 and
McPherson Library