Sunday, October 18, 2015

Government agencies do not reply by email

Someone sent me this comment on why government agencies do not reply by email.
Mr. Tan,
The threat is real. Email allowed plain text in transmission. Imaging hackers harvest emails and use the sg ic number to request for singpass password reset a few years ago, that caused downtime to singpass owners. A https web form is still more secured than email.

MY REPLY
It is the duty of SingPass website to increase its security protocol to deal with this threat They are many ways that people can get the NRIC of other people. Banning the sending of emails is a bad approach.
It is also possible that government emails do not show the full NRIC. They can follow the adopt of credit card, where only the last few digits are shown.

No comments:

Blog Archive