Hard Drive Encryption FAQ

Full disk encryption protects the data on your device in the event it is lost or stolen. Without full disk encryption, if the data drive in the computer is removed, the data can be easily read and accessed. When correctly deployed, full disk encryption requires unauthorized users to have both physical access to your device as well as the password in order to decrypt the data on your device. 

BitLocker is Microsoft's built-in encryption software for Windows designed to provide full-disk encryption for hard drives and USB flash drives.

• Data Security: BitLocker encryption provides an added layer of security. It protects data stored on your device from potential risks such as theft, loss, or unauthorized access. Giving you peace of mind, that even if your computer falls into the wrong hands, your data remains protected, reducing the chances of data breaches.
• Compliance Requirements: Many industries and organizations have specific data security and compliance requirements. BitLocker can help meet these requirements by ensuring data is encrypted and protected.

BitLocker is designed to provide data security without significantly affecting your day-to-day workflow.

• Minimal Performance Impact: Modern CPUs efficiently handle BitLocker's encryption process, ensuring minimal impact on system performance. However, on older or less powerful devices, there might be a slight decrease in performance during the initial encryption process or when accessing encrypted data.
• File Access: Once logged in, you won't notice any difference in accessing files or using applications. BitLocker encryption and decryption happen automatically, and you can work with your files as usual.

No. Your files are automatically decrypted and encrypted when logged in with your NetID to your computer. The BitLocker recovery password or key is managed by OIT and is primarily utilized when a computer goes into BitLocker Recovery Mode. In the unlikely event your computer displays the following screen please contact the OIT Support Center for prompt assistance.

OIT is not currently managing encryption on MacOS devices as they come shipped with basic encryption enabled. However, OIT may choose to enforce a stronger encryption protocol on MacOS devices in the future.