Purpose
This document is intended to guide community members traveling internationally with laptops and other electronic devices. As this area continues to evolve, we will update this document. If you are traveling to one or more countries that are deemed to pose high information security risks, please consider contacting your department's IT team to discuss the possibility of acquiring a loaner device.
Additional resources are offered at the end of this document.
Before leaving:
- Back up the user's profile and data.
- Remove applications that won’t be used.
- Make sure devices and applications are up to date on patches.
- Verify Antivirus and Anti-Malware software is up to date and with the latest signatures.
- Install and review Qualys BrowserCheck.
- Verify that the user is running with the lowest possible privilege level.
- Provide charging devices for the trip (USB chargers offered at airports, restaurants, conferences, etc. may introduce malware).
- Make sure PINs are set on devices (Fingerprint + PIN is highly recommended).
- Make sure the device is using full disk encryption and requires a password on reboot.
- Setup user for UO VPN (note: depending on the country traveling to, local laws may apply regarding encryption).
- Forward your voicemail to email.
- Bring as little data as possible – just what is needed to get the job done.
- Do not store passwords or other credentials on the device, outside of a trusted and encrypted password management application.
While there:
- Pay attention to the environment
- Be cognizant of individuals looking over your shoulder.
- Do not accept any USB devices and do not plug them into your devices.
- Do not leave devices unsecured or out of your sight.
- Keep track of the services that were accessed for reference after returning.
- Do not accept any patches or updates for applications and systems.
Upon returning:
- Have the devices assessed by IT staff for possible malware and infections.
- Back up the incoming profile and any documents into a secure system.
- Wipe devices used while traveling.
- Reload the profile that was backed up before the trip.
- Copy files from the incoming profile (e.g., annotated documents) onto the device.
- From a trusted computer:
- Reset Duck ID credentials.
- Reset credentials for those services that were accessed while traveling.
- Review once again with Qualys BrowserCheck.
- Report any suspicious activities to the Information Security Office.
Additional Resources: