Launching the system yesterday, Assurity Trusted Solutions, a subsidiary of the Infocomm Development Authority (IDA), said it was targeting key sectors like government and healthcare, and discussions are on-going with between 30 and 50 companies in these sectors.
For instance, the 2FA system could be used on top of the current SingPass system, which is required when users log in to use e-government services such as the e-filing of taxes.
Said the IDA in response to media queries: "The Government is currently studying the feasibility of introducing 2FA and will introduce this service when our studies show a demand from customers and/or agencies for more secured online transactions."
"As more online services and transactions become available, we expect more Government agencies to require 2FA. However, it is up to the Government agencies to decide if they wish to come on board."
Two brokerages here - Kim Eng Securities and Phillip Securities - are the first to hop onto Assurity's system.
Hundreds of thousands of their customers will be able to use the credit card-sized transaction signing token, called OneKey, to up the level of security for their online transactions.
The tokens issue one-time passwords (OTPs) as a second level of authentication. Similar tokens have been used largely by banks here to secure Internet banking transactions against hackers who may intercept customers' computers.
Such tokens are deemed to be more secure as they use OTPs which are linked to the actual account number, or transaction amount. If hackers attempt to change that, the transaction will be made invalid.
The two companies will start piloting OneKey in trials. Phillip Securities said after the trial ends in March next year, it will be rolled out to customers in phases.
Besides these two companies, ST Electronics - which developed OneKey - is the only other organisation to join the system.
Assurity chief operating officer Chai Chin Loon declined to state how many companies they are targeting to sign up, saying only that "millions" of transactions a month are required to make the upkeep of this system "worthwhile".
A Phillip Securities spokesman said that joining Assurity's national 2FA system is preferable to developing its own, as to do so could have been too costly. Its clients could need to perform other online transactions with other service providers using 2FA systems as well, and OneKey could make it more "convenient" for them to do, he added.
Banks - among the largest sectors here to use 2FA for its customers - have not signed up yet. DBS Bank last week launched its own transaction signing token system, and indicated that it has no plans as yet to sign up.
Asked about the lack of buy-in from banks, Mr Chai said, "Banks (are) just one group of service providers. The purpose of 2FA is to go across all sectors, though banks are the ones which are the most familiar with it."
---
Autor(en)/Author(s): Tan Weizhen
Quelle/Source: TODAYonline, 13.12.2011
Bitte besuchen Sie/Please visit:
