With security breaches and data theft reported every few weeks, you might wonder how secure your military pay information is in the myPay system. Here is what the DoD has to say:
This is a Department of Defense (DOD) computer system. This computer system, which includes all related equipment, software, networks, and network devices, is provided only for official U.S. Government business.
DOD computer systems may be monitored by authorized personnel to ensure that their use is authorized to manage the system, to facilitate protection against unauthorized access, and to verify security procedures. During these activities, information stored on this system may be examined, copied and used for authorized security purposes, and data or programs may be placed into this system. Use of this or any other DOD interest computer system constitutes consent to monitoring at all times.
The unique combination of Login ID, Password / PIN used to access myPay makes myPay as secure as using an automated teller machine (ATM) at a bank. myPay users must use a browser with Secure Socket Layers (SSL) protocol with 128-bit encryption software (strong encryption). This combination prevents information from being retrieved by someone else while it is being transmitted.
While myPay uses a variety of security features to protect your data in our system, it is also important that you do everything you can to protect data from being compromised or captured on your computer, especially when using personal computers at home. Here are several things you should consider to protect your data not only when using myPay, but any electronic commerce activity (e.g. on-line banking, credit card purchases, etc.):
1. Install operating system and application software (e.g. Internet Explorer) updates regularly. Many of these updates are issued to fix security problems which have been identified.
2. Install and use anti-virus software and personal firewalls. Keep this software updated. The correct use of these programs can help protect your system from being compromised by malicious software (e.g. software which can capture information processed on your computer, etc). The DOD CERT makes this type of software available for DOD active employees (military and civilian) at: a.www.jtfgno.mil (This link can only be used from a Department of Defense computer)
3. Do not store your various User-IDs and passwords in files on your computer. If someone gains access to your computer this is the type of information they look for and would aid them in accessing your account.
4. After using your browser (e.g. Internet Explorer, etc) to access a site where you process sensitive information (e.g. myPay, your bank account, etc.) close all of your browser windows and restart a new browser session. Sometimes the browser can hold that information in memory (e.g. cache, etc) and some web sites know where to look to find it.
5. Be very careful when installing software that gives others access to your computer. Remote service software or peer-to-peer software used for file sharing can create unintended openings into your computer that outsiders can use if the software is not configured correctly.