Alternative media are a known source of malware infections and have been directly associated with the loss of sensitive information in many organizations. Removable media are devices or media that can be readable and/or readable by the end user and can be moved from the computer to the computer without changing the computer. These include flash storage devices such as USB sticks, SD cards, cameras, MP3 players and PPPs; removable hard drives (including hard drive-based MP3 players); optical media such as CD and DVD media; Software disks and disks not provided by Murray State University. Murray State University employees can use removable media in their work computers. Confidential information should only be kept on removable media if necessary to perform assigned tasks or to respond to legitimate requests for information. If confidential information is stored on removable media, it must be encrypted in accordance with Murray State University`s authorized encryption policy. Derogations from this directive may be requested on a case-by-case basis through a petition to information systems. Sensitive information is defined as information that, when made available to unauthorized persons, may affect Murray State University, its programs or participants who are served by their programs. These include personal identifiers and financial information.

Determining sensitivity is the responsibility of each department. Encryption is a process used to convert data from its original form to an illegible and/or unusable format for everyone, without the tools/information necessary to undo the encryption process. Malware is defined as malware/effects such as viruses, worms and spyware.