Security

Information about the security measures employed on the portal.

Portal Security


Q: Is my personal information secure on portal.issny.org?

A: Yes! ISS utilizes 256 bit encryption to encrypt data during transfer and while data is at rest so that it cannot be read by unauthorized parties. This, paired with user authentication, ensures that your information is only accessible by ISS.


Q: Why does issny.org say that it is insecure?

A: This is because the home page at issny.org does not handle personal user data and it is not currently using the 256 bit encryption that other ISS services that manage sensitive user data utilize.

Simply visiting https://issny.org will show you the secure version of our website.


Q: How can I verify that my connection to issny.org is secure?

A: When visiting web pages, you may notice a small padlock next to the URL at the top of the web page. This padlock icon means that your connection to that website is safe and sound!

image-1621357441388.png

Multi-Factor Authentication

Multi-factor authentication (sometimes also called two-factor authentication) is used on the Portal to increase security and help protect your data. After entering your username and password, you will be sent a one-time passcode (OTP) which you will enter to complete your log in.

Be sure to add both your email address and a cell phone number capable of receiving text messages in your preferences. In case you don't receive the OTP at one, you can use the other method as a back up.

Existing Users

Upon login, existing users will select whether to receive the code via email or text message. You can only choose from the email address or cell phone number that you set up in your OTP preferences.

image (1).png

New Users

As part of the initial login process, along with resetting the temporary password, you are required to specify your multi-factor authentication preferences. After providing an email address and cell phone number, a one-time passcode will be sent via the method you choose.
8.png

Edit Multi-Factor Authentication Details

To edit your existing multi-factor authentication preferences:
  1. Click the Menu button.
  2. Click My Profile.

    menudrawer-myprofile.png
  3. Make the desired changes.
  4. Click Update.

    7.png

FAQ

The one-time passcode isn't working.

I didn't receive the one-time passcode.

Entered one-time passcode, back at Login?

Email or Text option is grayed out.

  • This happens when the information entered is invalid in some way.  For example:  an email address missing the @, spaces or carriage returns before or after the email or phone number.

  • Please correct or re-enter your information by following the steps above under the Edit Multi-Factor Authentication Details section.

    otpchanges-grayedout.png


Updated 03/16/23.