PGP File and Disk Encryption

To protect your secure data from unauthorized access, you can use PGP Desktop to encrypt your hard drive. When you encrypt an entire disk using the PGP Whole Disk Encryption feature, every sector is encrypted using a symmetric key. This includes all files including operating system files, application files, data files, swap files, free space, and temp files.

On subsequent reboots, PGP WDE prompts you for the correct passphrase. Then the encrypted data is decrypted as you access it. Before any data is written to the disk, PGP WDE encrypts it. As long as you are authenticated to your PGP WDE-encrypted disk (after you have entered the correct passphrase at the PGP BootGuard screen), the files are available. When you shut down your system, the disk is protected against use by others.

For information on how to install PGP Desktop, click  here.

To set up PGP Whole Disk Encryption on your computer:

  • Make sure your computer is plugged into a power source. Losing power while the encryption is in process may damage your hard drive and cause your files to be unrecoverable.
  • Make sure you've allocated plenty of time. The encryption process can take several hours and will greatly reduce your computer's performance while it runs. Consider leaving it to run overnight or a time when you will not be needing your computer for an extended period.
With an average system, an 80 GB boot disk or partition takes approximately three hours to encrypt using PGP Whole Disk Encryption (when no other applications are running). A very fast system, on the other hand, can easily encrypt such a disk or partition in less than an hour.
You can still use your system during encryption. Your system is somewhat slower than usual during the encryption process, although it is fully usable.
  1. Close all programs not needed. This will reduce the time needed for the encryption process to run.
  2. Open PGP Desktop by going to Start > Programs > PGP > PGP Desktop or by clicking the PGP Desktop icon on your desktop.
  3. Click PGP Disk .
  4. Click Encrypt Whole Disk or Partition
  5. Choose your main hard drive. This will usually be the C: Drive. If you are not planning to use the computer during the encryption process, check the box under Maximum CPU Usage . This will speed up the process at the cost of reducing the performance of all other processes.
  6. Click New Passphrase User... .
  7. Choose Use Windows Password. Click Next .
  8. Choose Proceed with passphrase authentication only .
  9. Enter your Wellesley Domain name and password under the respective fields. Make sure that WELLESLEY is entered in the Domain field.
  10. Click Encrypt . Do not turn off your computer until the process finishes. Your system is somewhat slower than usual during the encryption process, although it is fully usable. It returns to normal operation when the encryption process is complete. PGP Desktop automatically slows the encryption process if you are using the system. The encryption process is faster if you avoid using your computer during the initial encryption.
  11. Once the process is finished, your disk will be encrypted. You will be required to enter your passphrase whenever you log into your computer or your computer goes into sleep mode. 
 

 

SERVICE ALERTS

 

LTS NEWS