Safe Computing
Home Students Faculty and Staff IT Security Community
Protect Your Computer
and Data
Report an IT Security
Incident
Services
Sensitive Data Guide
Digital Copyright
Compliance
Training
IT Security Events
F.A.Q.
About IIA
Help
left navigation bottom border

MDS Info


Home arrow Information for UM Faculty and Staff arrow Mobile Device Security

Mobile Device Security

In this section:

Best Practices

Mobile devices like laptops, smart phones, and USB flash drives are convenient ways to capture and store data. They also introduce risk to personal privacy and university data.

To reduce the risk of theft of personal or university data specifically from a smart phone – whether the device is lost, stolen, or inadequately protected in a wireless environment – students, faculty, and staff are strongly encouraged to follow these best practices:

Secure your data and email
Turn off wireless and geo-tracking
Choose your applications wisely
Use a password/lock
code
Be skeptical about
links

Secure your data and email

  • Avoid storing sensitive data on your phone
  • Use the storage encryption feature on your phone to protect your private data (contacts, photos, etc.) in case your phone is lost or stolen (Android 3.0 and later)
  • Use SSL encryption (https://) for browsing and webmail whenever possible

Turn off wireless and geo-tracking

  • Keep optional network connections (e.g. WiFi and Bluetooth) turned off except when you are using them
  • Turn off GPS and data when not in use – it can be used against you by criminals and stalkers
  • Don't access personal or financial data with public WiFi

Choose your applications wisely

  • Download apps from trustworthy sources
  • Don't install a new app until it had established a good reputation
  • Update your software and apps; remove unused apps

Use a password/lock code

  • Use strong passwords
  • Set the screen timeout to 5 minutes or less
  • Avoid using auto-complete features that remember names or passwords

Be skeptical about links

  • Avoid links to untrusted sources, especially from unsolicited email or text messages
  • Don't let your guard down when using your phone in a casual setting such as a bar or a restaurant. It's easier to click a suspicious link when you are distracted.
Mobile Device Security - Android
Google Device Policy
for Android 		Mobile Device Security - iPhone
Google fully supports
iPhone devices

Downloadable Mobile Device Security Best Practices Brochure

Using Mobile Devices in the U-M Wireless Environment

Always use MWireless for a secure (password-enabled) WiFi connection. Before using the service, you will need to configure settings on your WiFi device. See Connecting to MWireless and UM Wireless Network.

Mobile Computing Guidelines for Academic Travel and Field Research

Traveling with mobile devices poses extra risks to personal and data security. Review the Mobile Computing Guidelines for Travel on protecting your data and devices while traveling.

Putting a plan into place for securing your data will help you:

  • keep your research data out of the wrong hands in the case of loss or theft.
  • protect sensitive information about your research subjects.
  • put proper security controls into place if you are applying for research grant money.
  • put proper security controls into place for the IRB approval process.
  • protect yourself and the University from liability regarding regulations that cover certain types of research data.
  • comply with non-disclosure agreements and access restrictions.

This white paper provides more background information and specifics related to securing mobile devices while conducting university-related travel or field research.
Last modified February 22, 2013