DFAS adds a layer of security to myPay

The Defense Finance and Accounting Service is using a virtual keyboard feature to increase security for users of its myPay online payment system.

Customers will use the feature to enter their personal identification numbers each time they access the myPay system, DFAS said. The virtual keyboard will appear on customers' computer screens after they type their myPay log-in IDs into the system on standard keyboards. The system will then prompt customers to enter their PINs via mouse clicks on their screens.

The feature changes the appearance of the virtual keyboard each time it appears. This is done to thwart hacking techniques used to capture or generate PINs, including Trojan horses, spyware and keystroke logging software, DFAS said.

The accounting service began providing the feature in mid-May. The system's other features will continue to operate as they always have, DFAS said. DFAS manages payments departmentwide, including payrolls and payments to contractors.

inside gcn

  • data wrangler

    Data wrangling: How data goes from raw to refined

Reader Comments

Mon, May 18, 2009 Jerry USA

The virtual keyboard is OK for their security, but not for my sanity. You would think that DFAS being on the DISA military .MIL domain, that they would be required to CAC enable their MyPay website. In doing so, they would create a totally secure means for Active Duty and Civilian CAC card holders to access MyPay instead of the crazy virtual keyboard. Why DFAS has not created the logon option to use a CAC instead of that crazy virtual keyboard is beyond me!

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group