|
Aside from the security measures put in place by the Board, you play an equally important role to ensure that your personal information is not compromised. We strongly recommend that you observe the following security best practices at all times :-
- Logoff your online session
- Keep your personal SingPass confidential at all times
- Clear your browser's cache and Internet history
- Upgrade your browsers to support 128-bit SSL encryption
- Protect your computer from viruses and malicious programs
- Use only PCs or devices that you trust
- Ensure authenticity of the website
- Maintain e-mail security
- Remove Temporary Internet Files and Cookies after each transaction
- Remove confidential files from temporary storage areas
- Protect your confidential files
- Protect your critical data
- Check your transaction history regularly
- Do not save your CPF account no. or personal SingPass using your browser
- Do not execute files from untrusted storage media
- Avoid using the "Back" button
- Avoid file and printer sharing on your PC
Logoff your online session once you have completed your transaction or if you have to leave your PC, even for a while. You may also activate your password-protected screen saver to prevent unauthorized access to your PC if you have to leave for a short while.
Your personal SingPass serves as an important key to establish your identity in the online environment. It is therefore crucial that you safeguard and protect your password using the following tips :
- Ensure no one can view your account or SingPass while logging in to the system
- Keep your SingPass confidential at all times. Do not divulge it to anyone
- Do not select a password that is easy to guess, such as your phone no., initials, NRIC no., date of birth etc. Choose a strong and unique SingPass. (Note : SingPass consists of a minimum of 8 and a maximum of 24 characters. It can be all alpha, all numeric or a combination of alphanumeric.)
- Avoid using the same character/ digit twice (eg. 12234567), sequential numbers (eg. 12345678) or re-using a password
- Change your SingPass regularly. (eg. every 90 days)
- Remember your SingPass. Do not store it on your PC, pieces of paper or any other insecure means.
- Ensure that the URL is preceded by "https" when performing online transactions.
Netscape : An icon that looks like a lock/key can be found in the browser.
Internet Explorer : Right click on the page and select 'Properties' to check that your session is secure.
- Cache files are temporary files stored in your computer. History folder contains link to the web pages you have previously visited. Remember to clear the browser's cache and history after each internet session, by following these simple instructions:
Internet Explorer 5.X and 6.0
- Go to 'Tools' from the Menu bar
- Select 'Internet Options'
- Select 'General' tab
- Select 'Delete files' under Temporary Internet Files and click 'OK'
- Select 'Clear History' under History and click 'Yes'
- Click 'OK' to exit the dialog box
Internet Explorer 7.0 and 8.0
- Go to 'Tools' from the Menu bar
- Select 'Internet Options'
- Select 'General' tab
- Select 'Delete' under Browsing history
- Select 'Delete files' under Temporary Internet files
- Select 'Delete history' under History
- Click 'Close' to exit the dialog box
Mozilla Firefox 3.0
To clear cache:
Option 1: Clearing cache manually
- Go to 'Tools' from the Menu bar
- Select 'Options'
- Select 'Advanced'
- Select 'Network' tab
- Select 'Clear now' under Offline Storage
- Click 'OK' to exit the dialog box
Note: the cache will not be cleared when you access a page next time
Option 2: Change the Config File to check for new version automatically
- Enter 'about:config' under the URL location box
- Double click on the ‘browser.cache.check_doc_frequency’
- Change the integer value to 1
- Click ‘OK’ to exit the dialog box
To clear history:
- Go to ‘Tools’ from the Menu bar
- Select ‘Clear Private Data’
- Select ‘Browsing History’
- Click ‘Clear Private Data Now’ to exit the dialog box
Mozilla Firefox 3.5 and 3.6
To clear cache:
Option 1: Clearing cache manually
- Go to 'Tools' from the Menu bar
- Select 'Options'
- Select 'Advanced'
- Select 'Network' tab
- Select 'Clear now' under Offline Storage
- Click 'OK' to exit the dialog box
Note: the cache will not be cleared when you access a page next time
Option 2: Change the Config File to check for new version automatically
- Enter 'about:config' under the URL location box
- Double click on the ‘browser.cache.check_doc_frequency’
- Change the integer value to 1
- Click ‘OK’ to exit the dialog box
To clear history:
- Go to ‘Tools’ from the Menu bar
- Select ‘Clear Recent History’
- Select ‘Everything’ under Time range to clear
- Select ‘Browsing & Download History’ under Details
- Click ‘Clear Now’ to exit the dialog box
To enjoy the highest level of security available, you should upgrade your browsers and application software to support 128-bit SSL or higher encryption standard.
-
You should take the necessary precaution to protect your computer from viruses/ malicious programs (eg. Trojan Horses) which can destroy critical data. These programs can also capture your password keystrokes and personal information without your knowledge.
To avoid getting infected, we advise you to :
- Equip your computer with the latest virus detection software and personal firewall to protect against virus attacks, hackers and malicious programs. These should be updated regularly.
- Avoid downloading software from dubious websites
- Delete junk / chain e-mails
- Avoid using programs which enable you to automatically get or preview files
Refrain from performing online transactions on shared/ public PCs or devices. This is because there can be keystokes capturing application that can log down your User IDs and passwords. If you really need to do so, ensure that it is free from viruses before use and be sure to clear your browser's cache after use.
Check the URL and the Board's name in the digital certificate before entering your CPF account no. and personal SingPass. This is to ensure that the website you are visiting belongs to the Board.
Delete junk/ chain e-mails. Avoid opening an attachment if it comes from an unknown/ suspicious source. Delete it unread.
This would help prevent your account from being hacked especially if you are accessing from shared/ public PCs. Temporary internet files are usually saved under C:\WINDOWS\Temporary Internet Files while Cookies are usually saved under C:\WINDOWS\Cookies.
You are strongly advised to remove your confidential files from temporary storage areas (eg. temporary folder or your a:\drive) once you have transmitted your file through the CPF Electronic Submission service.
Prevent unauthorized access to your confidential data by encrypting such sensitive files. Physical storage media should be kept out of reach by unauthorized persons.
Periodic backup and adequate protection (eg. anti-virus software) of your critical data are important and good practices.
This is to ensure that there are no unauthorized transactions.
You may check the status of your online applications via my cpf Online Services - My Activities.
Avoid saving your CPF account no. or SingPass using the 'Autocomplete' function of your browser. This is because some browsers store and indicate possible matches from your previous entries.
Always scan the diskettes before executing the files. They may contain malicious codes or viruses.
For better security when you perform online transactions, please avoid using the "Back" button on the browser during your course of navigation.
Remove file and printer sharing in your PC where possible, to minimize the risk of unauthorized control/ access to your PC.
|