- What is FileVault 2?
- Who should be using FileVault 2?
- How can I obtain it?
- How do I use FileVault 2 to encrypt my laptop?
- What should I know about decryption?
- What restrictions are there when traveling out of the country with an encrypted laptop?
- Resources
What is FileVault 2?
FileVault 2 is an integral security feature for Macs that allows you to encrypt the contents of your entire drive. It uses full disk, AES-XTK encryption to help keep your data secure.
Who should be using FileVault 2?
Office of Information Technology Information Security Group policy requires the use of FileVault encryption for Macs that store Brown data.
How can I obtain it?
FileVault 2 is built into macOS. It is available from the Privacy & Security section of System Settings. Click the FileVault section in the Privacy & Security section to enable or disable FileVault.
How do I use FileVault 2 to encrypt my laptop?
Detailed installation instructions can be found in the Apple article Protect data on your Mac with FileVault.
What should I know about decryption?
When you turn off FileVault, encryption is turned off and the contents of your disk are decrypted.
What restrictions are there when traveling out of the country with an encrypted laptop?
U.S. federal regulations control the export of "encryption commodities, software and technology" (see Code of Federal Regulations, Title 15, Section 740.17). There are, however, license exceptions that allow taking encrypted laptops, provided that the traveler returns within the year and "retains effective control and ownership." This coverage is global except for a handful embargoed and sanctioned countries designated by the U.S. government. Travel to any of these countries requires that you remove any encryption technology from your laptop before entering it.
In addition, since laws can change at any time and some countries ban or severely regulate the use of encryption, you should consult country-specific information before traveling with an encrypted laptop to verify that your information is still current. In addition, any faculty, post-docs, graduate students and PI's should check-in with OVPR, read its International Travel page as well as that of the Office of Insurance and Purchasing Services , and contact the Chief Information Security Officer before travelling overseas.
Finally, note that many nations do not recognize a "personal use exemption." Before traveling to these countries with an encrypted laptop, you will need to apply to their specified governmental agency for an import license. Additional information about international encryption controls can be found at the following websites:
Resources
Internal links about traveling:
- Brown's Travel Portal and Export Controls guidelines
- International Travel Information for all Brown University Travelers
- Export Control Regulations at Brown | Brown's Export Control Policy and Procedures
Note: For questions or further information related to export controls or international research administration, please contact Juliane_Blyth@brown.edu, Senior Director, Office of Research Integrity at (401) 863-3295.
External links about traveling:
- Encryption FAQs (Bureau of Industry & Security, BIS)
- EAR Controls for Items That Use Encryption (Bureau of Industry & Security, BIS)
- Cornell University - Travel Internationally with Technology
- Department of State - Travel Alerts and Warnings
- Department of Homeland Security - "Know Before You Go" Resources
- Department of State - Websites of US Embassies Consulates, and Diplomatic Missions
- Department of State -"Smart Traveler Enrollment Program"