This content is viewable by Everyone
News
Secure and Safe Travel and Remote Work
-
Author: Esther Silver
- Date:
The IT Security Awareness Quiz link is at the article's end. Everyone who completes the quiz is entered to win one of six $50 Amazon gift cards.
While traveling for work or pleasure, it is a good idea to assume your devices could be lost, stolen, compromised, or even confiscated at an international border at some point during your trip. It is important to plan accordingly and to remember that others could see anything you do over unsecured wi-fi networks - this includes your passwords and the contents of your messages. The first and most important thing to know is the importance of awareness. Be aware of your surroundings when traveling, especially in crowded public places like airports, train stations, stadiums, hotels, tourist spots, etc. Minimize distractions that could make you a target, such as headphones, which significantly reduce your “situational awareness.” Treat these public places as potentially hostile physical and electronic environments. Regarding data security, remember UC Institutional information and other intellectual property are valuable to outside entities seeking to gain competitive intelligence. Understand the types of information you possess and protect it accordingly. With all of this in mind:
- In advance of travel, properly plan for the unexpected and do your homework on destinations with tips and information from trusted sources such as the US State Department.
- When planning your travel on UCSF business, register your trip for free traveler insurance coverage:
- Make sure that your devices are properly prepared and maintained during and after your trip:
- Always physically protect your devices. Never leave a laptop or mobile device unattended in your car or hotel room.
- Make sure you can connect to the Internet securely while you’re away:
- Do not proceed to a website if you get a bad certificate warning or if it does not have the lock icon in the address bar.
- Do not send any UCSF data to your personal email account. UCSF IT policy prohibits the use of personal email accounts for UCSF business.
- Bring only what you’re willing to lose – both your stored information and the devices themselves, even if they are encrypted. Make sure your devices or data are fully backed up before you leave.
- Immediately report any lost or stolen device used for UCSF business to the IT Service Desk by calling 415-514-4100.
- If you are traveling for pleasure, know that travel scams are on the rise, according to the FBI. They have created a list of tips you should follow before you book that discounted hotel room, car rental, or flight reservation.
Special notes for international travelers:
- There are special rules for bringing electronic equipment, research, intellectual property, and encryption technology abroad. Please consult with the UCSF Export Control Office ([email protected]) well before your trip if you plan to take University equipment, data, or technology outside of the United States.
- Encryption: Although encryption is recommended to protect sensitive information in case your device is lost, stolen, inspected, or confiscated, some countries restrict the use/importation of encryption software. The USA may also restrict its export. See UC's "International Travel" web page for information, including lists of countries with travel restrictions and links for additional help.
- VPN: Several countries, notably China, greatly restrict the use of VPNs. In these countries, they are illegal except for VPNs sanctioned by that country. The ones sanctioned by the countries will likely have access to all of your data.
- If you cannot use encryption software at your destination, contact the UCSF IT Service Desk for guidance.
Take the quiz on Safe and Secure Travel and Remote Work. The prize for passing the quiz is an entry in a drawing for one of six $50 Amazon gift cards.
Additional information
BCH Oakland Remote Work Resources
UCSF: Travel Safely - Laptops and other devices
UCSF: Prepare a Laptop for International Travel
UC: Traveling with Electronic Devices website
U.S. Customs and Border Protection's Inspection of Electronic Devices" fact sheet
UC ECAS' April 2018 Compliance Alert newsletter (see "International Compliance" on pg. 3)
UCSF Office of Ethics and Compliance Export Control Guidance
- Owning Team: IT Security
-
Team Lead: Patrick Phelan