Skip to main content

Security Guideline

Filter by:

SSL/TLS Protocols Security Guidelines

  Introduction SSL/TLS1 protocols are pervasive throughout information systems and the Internet. They protect the confidentiality of communication. HTTPS protocol is one of the more common applications that make use of SSL/TLS for encrypting communication between browsers and websites2. A typical...
Release Date: 3 Mar 2016 6654 Views

Personal Internet Service Account Security Management Guideline

 To prevent your personal information stolen by hackers, account management is very important. Using a strong password can help to against brute force attack launched by hackers. However, nowadays, a strong password is not enough to protect your account from cyber criminals. HKCERT...
Release Date: 24 Feb 2016 5016 Views

Best Practice Guide (SSL Implementation) for Mobile App Development

Mobile platform is increasingly become a choice for delivering services. As more sensitive data and transaction data will be transported on mobile communication channels, the security risks associated with untrusted communication, such as public Wi-Fi have to be addressed, for example, fraudster can...
Release Date: 14 Sep 2015 5456 Views

Mobile Instant Messaging Security Guidelines

  What is IM? IM (Instant Messaging) is a real-time communication system that allows two or more users to transfer text messages, files, voice and video via a network immediately. With the rise of smartphones, IM application turned from PC to...
Release Date: 31 Mar 2015 5818 Views

Near Field Communication Security Guidelines

Near Field Communication (NFC), the name often appears in smartphone. Many electronic devices such as speakers and Bluetooth headsets also support NFC communication. In fact, NFC technology has been used since 1997 in Hong Kong in a popular payment service – the Octopus.   Most...
Release Date: 31 Oct 2013 5002 Views

Bring Your Own Device (BYOD) Security Guidelines

  What is BYOD?   In the past, corporations purchase electronic devices, such as laptops and mobile phones, for staff worked outside of the office. Security of these electronic devices are centralized and managed by IT departments.   In recent years, as the mobile devices...
Release Date: 26 Sep 2013 5533 Views

Guideline of Web Application Security Preventive Measures

Web application developer should take the below preventive measures to protect their web application.   10 Security Preventive Measures Follow HKCERT website for latest updates Ensure user use strong password and provide two-factor authentication Use web application firewall Restrict access and protect web admin...
Release Date: 9 Jul 2013 5371 Views

IPv6 Security Guideline for Business User

  As IPv4 address allocation have already exhausted, IPv6 is the only solution to the shortage of IPv4 address. IPv6 adoption will grow for business user and it is expected both version of Internet Protocol will coexist on the Internet for some years. Therefore, business organizations...
Release Date: 30 May 2013 3667 Views

IPv6 Security Guideline for Home User

Current Internet Protocol version 6 (IPv6) situation in Hong Kong   Everyone should be familiar with the term “IP address”. It is much like a delivery address on the Internet. IPv6 is the new generation Internet Protocol. As IPv4 address allocation have already exhausted...
Release Date: 29 May 2013 4225 Views

Guideline of Mobile Security

Now, more than ever, mobile device applications are getting more and more popular in our daily life. Mobile device applications is becoming a primarily communication channel for us to interact with business partners, family members and friends. Mobility brings us convenience, however, it...
Release Date: 28 Feb 2013 4108 Views