<?xml version="1.0"?>
<rss version="2.0">
   <channel>
      <title>SEC PRJ Website Security Features by Naygas</title>
      <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5</link>
      <description></description>
      <language>en-us</language>
      <pubDate>2020-04-24 07:15:56 UTC</pubDate>
      <lastBuildDate>2020-05-15 18:01:29 UTC</lastBuildDate>
      <webMaster>hello@padlet.com</webMaster>
      <image>
         <url></url>
      </image>
      <item>
         <title>Group Member:</title>
         <author>194825p</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527622352</link>
         <description><![CDATA[<div>1)Leslie( Leader)<br>2)Lai Keat<br>3)Irfan<br>4)Methinee</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:30:12 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527622352</guid>
      </item>
      <item>
         <title>2FA (Two Factor Authentication) (Irfan)</title>
         <author>mohdirfansyafiq</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527625812</link>
         <description><![CDATA[<div>User needs to provide their password, and as a security measure, provide a biometric scan (face unlock or fingerprint scan) or a OTP token.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:32:14 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527625812</guid>
      </item>
      <item>
         <title>Encryption of Login Pages(Leslie)</title>
         <author>teoshuangleslie</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527630713</link>
         <description><![CDATA[<div>Login pages uses SSL Encryption most of the time. SSL allows sensitive information such as credit card numbers and login credentials. Information entered in this page is encrypted so that its pointless for hackers who might intercept this data.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:34:54 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527630713</guid>
      </item>
      <item>
         <title>DBS (Lai Keat)</title>
         <author>194825p</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527634050</link>
         <description><![CDATA[<div><strong><br>User ID &amp; PIN<br></strong><br></div><ul><li>All iBanking users are required to have a unique iBanking PIN and User ID which they need to key in first, before accessing their account information or performing online transactions.</li><li>Your unique User ID and PIN cannot be duplicated by any other user on our system.</li></ul><div><strong><br>Multi-factor Authentication<br></strong><br></div><ul><li>We employ multi-factor authentication, when you perform online transactions - with a User PIN, DBS iB Secure Device and SMS OTP, for greater security.</li><li>User PIN and DBS iB Secure Device are used during your login, but SMS OTP is only used for higher risk transactions - such as funds transfer.</li></ul><div><strong><br>Automatic Logout Feature(Ok)<br></strong><br></div><ul><li>When our system detects that your iBanking session has been inactive for some time, you will automatically be logged out. This will prevent any unauthorised users from accessing your account.</li></ul><div><strong>What is Transaction Screening?<br></strong><br>Transaction Screening is carried out with our advanced monitoring and surveillance systems, which help us to detect unauthorised activities on your accounts.They will take action as soon as possible</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:36:46 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527634050</guid>
      </item>
      <item>
         <title>HTTPS Protocol (Leslie)</title>
         <author>teoshuangleslie</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527641755</link>
         <description><![CDATA[<div>This protocol tells visitors that they are interacting with the server and nothing else can alter or intercept the content they are viewing.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:40:55 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527641755</guid>
      </item>
      <item>
         <title>Password Policies (Methinee)</title>
         <author>192034W</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527642737</link>
         <description><![CDATA[<div>Create stronger passwords to reduce chances of account being compromised</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:41:29 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527642737</guid>
      </item>
      <item>
         <title>CAPTCHA (Irfan)</title>
         <author>mohdirfansyafiq</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527648146</link>
         <description><![CDATA[<div>Used as a security check to distinguish between humans and computers</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:44:38 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527648146</guid>
      </item>
      <item>
         <title>Restricting file upload (Leslie)</title>
         <author>teoshuangleslie</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527648620</link>
         <description><![CDATA[<div>If websites require file upload, there should be a certain size limitation to the file being upload so as to not cause any disruption. For extra security, files uploaded should be kept in a separate folder or database in another location.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:44:54 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527648620</guid>
      </item>
      <item>
         <title>Backup Data (Methinee)</title>
         <author>192034W</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527650312</link>
         <description><![CDATA[<div>You should maintain backups of all of your website files in case your site becomes inaccessible or your data is lost.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:45:50 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527650312</guid>
      </item>
      <item>
         <title>Telegram (Lai Keat)</title>
         <author>194825p</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527655592</link>
         <description><![CDATA[<div>1)<strong>Account Self Destruct<br></strong>Telegram accounts automatically self-destruct after a period of inactivity, 1 month being the default time period. However this can be adjusted for up to 1 year after which all your databases consisting of contacts, messages and media will be wiped clean from Telegram servers. This process is irreversible.<br>2)<strong>Self-destruct Secret chats<br></strong>Telegram’s secret chat uses end-to-end <strong>client-to-client encryption</strong> to safeguard your messages. This encryption leaves no trace on Telegram servers unlike the regular chat method. Secret chats also don’t allow forwarding messages and media and most importantly can be set to self-destruct after a specified time which can be anything from 1 second to 1 week.<br><br></div><div>Secret chats can only be accessed from the originating device to your destination unlike normal chats which are broadcast across devices. When a screenshot is taken in secret chat, both parties are notified. When you log out of your current session, your secret chats will be deleted.<br>3)</div><div><br><br></div><div><br><br><br></div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:48:51 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527655592</guid>
      </item>
      <item>
         <title>Limit User Access (Methinee)</title>
         <author>192034W</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527663710</link>
         <description><![CDATA[<div>Limit the number of people or employees who have access to your website using minimal privilege</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:53:23 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527663710</guid>
      </item>
      <item>
         <title>Store user passwords as hash passwords(irfan)</title>
         <author>mohdirfansyafiq</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527663994</link>
         <description><![CDATA[<div>Store passwords in the server file in the form of hashes, which makes it harder to crack.</div>]]></description>
         <enclosure url="" />
         <pubDate>2020-04-24 07:53:33 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/527663994</guid>
      </item>
      <item>
         <title>Yahoo(Lai Keat)</title>
         <author>194825p</author>
         <link>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/547184073</link>
         <description><![CDATA[<div>Type of Security feature:<br>1)<a href="https://help.yahoo.com/kb/account-key-sln26734.html">Use Account Key</a> for a more secure login that doesn't require a password.<br>Criteria: must have at least one Yahoo app installed on your mobile device and be signed in to it. <br><br>How it work:<br><br></div><h1>Set up, use, and manage Yahoo Account Key to sign in without a password</h1><div>Account Key is more secure and lets you use your mobile phone instead of a password to sign in. Once enabled, Yahoo sends a notification to the mobile device of your choice. You can approve access with a tap on your phone, so no one else can get into your account.<br><br>2)<a href="https://help.yahoo.com/kb/account/additional-security-features-yahoo-mail-sln29297.html#cont1"><strong><br>Spam alerts<br></strong></a><br></div><div>When yahoo detect that an email address sending you a message looks like spam, yahoo will let you know by calling it out. If you know that the email is safe, just click or tap "It's safe" and yahoo won't bother you again. If you have any doubts, click or tap "Report as Spam" and yahoo will take care of it from there as<br>Spam email might contain malicious link that might affect the victim </div>]]></description>
         <enclosure url="" />
         <pubDate>2020-05-03 16:47:07 UTC</pubDate>
         <guid>https://padlet.com/teoshuangleslie/n3n6xy76j7temol5/wish/547184073</guid>
      </item>
   </channel>
</rss>
