By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
TechgoonduTechgoonduTechgoondu
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Search
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Reading: IDA reveals two-factor authentication plans for SingPass
Share
Font ResizerAa
TechgoonduTechgoondu
Font ResizerAa
  • Audio-visual
  • Enterprise
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
  • PC
  • Telecom
Search
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Follow US
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Techgoondu > Blog > Enterprise > IDA reveals two-factor authentication plans for SingPass
Enterprise

IDA reveals two-factor authentication plans for SingPass

Aaron Tan
Last updated: November 27, 2014 at 11:46 PM
Aaron Tan
Published: November 27, 2014
3 Min Read
SHARE

Screen Shot 2014-11-27 at 6.35.10 pm

Nearly six months after the high-profile breach of over 1,500 SingPass accounts, the Infocomm Development Authority (IDA) has shed light on its two-factor authentication (2FA) implementation plans to secure the login process for e-government services.

From the third quarter next year, SingPass users can opt-in to enter a one-time passcode generated by a hardware token or a SMS passcode sent to their mobile phones – in addition to their login credentials – before transacting with the government.

While SMS passcodes will be the primary 2FA method, some government agencies may require tokens to be used for more sensitive transactions, IDA told reporters today.

A one-year transition period will also kick in to ease SingPass users into the new login process before the authorities decide if 2FA should be made optional or mandatory.

In April, the government awarded a contract for a new SingPass system, which will let users use their own usernames instead of NRIC numbers to login to the system, though this will be an optional feature, IDA said.

SingPass users will also be kept aware of their e-government transactions through transaction notifications that are similar to what they receive from banks.

Meanwhile, IDA has made it mandatory for users to change their SingPass passwords every two years since October, in addition to current security measures such as resetting passwords of SingPass accounts with unusual activities that are not usually associated with those accounts.

It has also started resetting the passwords of 400,000 SingPass accounts that have been inactive for the past three years. The owners of these accounts will need to change their passwords within 14 days or the accounts will be deactivated.

In June, IDA revealed that 1,560 SingPass users had their accounts possibly tampered with, of which 419 had their passwords reset.

This came after the IDA was alerted by users who received letters informing them they had reset their passwords, when they had not. Three of the compromised accounts were reportedly used to make fraudulent work pass applications.

The authorities have not determined the cause of the breach, though they have said weak passwords and malicious software installed on affected users’ computers could be the culprits.

While the 2FA enhancement is a belated one – banks have been using 2FA to secure financial transactions for years – it should restore public confidence in the SingPass system that’s used by 3.3 million users to access 340 e-government services.

Commentary: Trust and data quality critical in self-service BI
Salesforce debuts Service Cloud 3, but are contact centres ready?
Parallels eyes SMB cloud market in Asia
This week’s app round-up: business apps
Google Meet to be free for everyone from early May 2020
TAGGED:IDAsecuritySingpass

Sign up for the TG newsletter

Never miss anything again. Get the latest news and analysis in your inbox.

By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Whatsapp Whatsapp LinkedIn Copy Link Print
Previous Article Tapping on the cloud to do good
Next Article Plugging the Office productivity gap
Leave a Comment

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Stay Connected

FacebookLike
XFollow

Latest News

Promising speed and better coverage, Singtel 5G+ targets premium users
Mobile Telecom
May 15, 2025
Fujifilm GFX100RF review: Fun medium-format street photography camera
Imaging
May 14, 2025
Looks over AI? Samsung pitches slimmed-down Galaxy S25 Edge
Cellphones Mobile
May 13, 2025
Stunning AI advancements could transform healthcare, education and agriculture globally: Bill Gates
Internet
May 7, 2025

Techgoondu.com is published by Goondu Media Pte Ltd, a company registered and based in Singapore.

.

Started in June 2008 by technology journalists and ex-journalists in Singapore who share a common love for all things geeky and digital, the site now includes segments on personal computing, enterprise IT and Internet culture.

banner banner
Everyday DIY
PC needs fixing? Get your hands on with the latest tech tips
READ ON
banner banner
Leaders Q&A
What tomorrow looks like to those at the leading edge today
FIND OUT
banner banner
Advertise with us
Discover unique access and impact with TG custom content
SHOW ME

 

 

POWERED BY READYSPACE
The Techgoondu website is powered by and managed by Readyspace Web Hosting.

TechgoonduTechgoondu
© 2024 Goondu Media Pte Ltd. All Rights Reserved | Privacy | Terms of Use | Advertise | About Us | Contact
Join Us!
Never miss anything again. Get the latest news and analysis in your inbox.

Zero spam, Unsubscribe at any time.
 

Loading Comments...
 

    Welcome Back!

    Sign in to your account

    Username or Email Address
    Password

    Lost your password?