Govt intends to stop masking NRIC numbers, says there is not 'much value in doing so'

[NintendoSwitch]

Actually this flip prata is scary.

imagine you were caught for an offence. You show evidence that under the law, it’s not an offence
Govt change and say it’s been planned a long time ago.
You are now guilty

Think Malaysia did that before

Already got bolehland import telling locally born locals to leave the country. Not surprise dat they copy the worst parts of bolehland policy.

 

[feelsleepynow]

Wah mess orgy ah...

Who will be next to speak ?
Academics from NUS/NTU/SMU ?

let's wait for an expert (as usual) to echo the movement... wait ah

 

[shawntyq]

u voted for this

 

[trueb1u3]

This is a wrong n stupid decision by the gov, the person who say no need mask, num is like name nothing impt. He must be brain like kuku bird. This type of wan ba management managing our country is damn dangerous.

I will vote him out

 

[s-ghost]

https://www.asiaone.com/digital/ex-...is-own-data-and-refuses-blame-himself-after-1

Salute this “pioneer” of self disclosure

Cut to nearly seven hours later, and Tan learned why he shouldn’t have done so. He was locked out of his own SingPass account because someone entered (probably intentionally) the wrong password way too many times.

Even if he does eventually regain control of his account by changing his password, the cat’s out of the bag — some troll could always disrupt his access again by making repeated failed attempts to log in using his NRIC number.

 

[mryang]

Maybe it's time to move away from JLB monitoring administration

 

[orhneeorh]

at least mask the year of birth rah.. bodoh

 

[trueb1u3]

Are they belong to the scam group too?

 

[alpha_beta]

lol scammers paradise juz leeeceived super duper boooooooost from none other than big G itself

 

[soulblader_89]

Haha I thought Lee hsien yang. Anyway this is a policy issue not a tech issue so it's not on him. Plus. Govtech is unlikely to be overseeing acra's tech. Acra has its own technical folks.

this one is done by vendor, the arca website

the accenture folk

 

[lizzykai]

This is a wrong n stupid decision by the gov, the person who say no need mask, num is like name nothing impt. He must be brain like kuku bird. This type of wan ba management managing our country is damn dangerous.

I will vote him out

her*

 

[TopGun]

Your example is flawed as it implies that a person’s birth year is readily available. How often can you see someone and know which year they’re born? Unless you had them fill up a form which includes birth year and last 4 digits of NRIC, this example isn’t valid.

Instead of making it non-sensitive info, the way forward should be to reduce the info divulged (e.g. three digits without checksum) or protect the birthday to prevent bad actors from obtaining the info thru reverse engineering.

The problem on hand with bizfile isn’t just about whether NRIC is sensitive information. It’s about how easily someone can gain access to these information through a simple search on a webpage that is publicly available. Even if NRIC becomes non-sensitive, it shouldn’t be so easily obtainable via a public portal

Point is that assuming that NRIC is secured is flawed as people don't treat their birth year to be sensitive information. While it's not easy to obtain birthdates, it's not difficult as well. Your friend and schoolmates will know. You are listed on year books. Some post their age on social media.

Trying to educate the masses to protect their birth year through reverse engineering is plain naive.

Let's separate the bizfile issue with the issue of using NRIC as a secured way of verifying identity. Both are problems that must be addressed.

 

[lalalalalala]

Small space teo really powerful tho. Can get the whole govt to change stance on nric and flip their pdpc rules

 

[trueb1u3]

her*

真是他××的‘她‘’，胡说八道。叫她闭上她的大口

 

[lifeisinforashock]

Next, divulge ur HIV status ?

 

[prusswan.net]

Let's see how long it will take to abolish nric

But damage for previous breach is irreversible, coz nric ish indeed unique personal id

 

[lizzykai]

Point is that assuming that NRIC is secured is flawed as people don't treat their birth year to be sensitive information. While it's not easy to obtain birthdates, it's not difficult as well. Your friend and schoolmates will know. You are listed on year books. Some post their age on social media.

Trying to educate the masses to protect their birth year through reverse engineering is plain naive.

Let's separate the bizfile issue with the issue of using NRIC as a secured way of verifying identity. Both are problems that must be addressed.

they can tell people that NRIC shouldnt be treated as a sensitive information, but public display of NRIC number on a platform is just plain stupidity and creates unnecessary risks...

which scholar thought of this, please tell me...

 

[kuti-kuti]

Lol after some certain agencies got hack and millions of ICs info has been released out..

Thus now they begin to push out this ****? LOL

no blame culture again, but in a different way

 

[Evil_Boss]

WTF.... Because they failed to protect the privacy of the NRIC numbers now they argue that there is no need for NRIC numbers to be private anymore.

Superb logic from them.

If not confidential better stop using it as a verification question

 

[archie7]

Small space teo really powerful tho. Can get the whole govt to change stance on nric and flip their pdpc rules

should go her wikipedia page and update her nric number there