The South African Revenue Service (SARS) has introduced a range of enhanced security measures to protect taxpayers from fraud and safeguard sensitive information. These measures aim to fortify its eFiling platform against malicious attacks, ensuring a safer experience for users.
Two-Factor Authentication Strengthened
One of the cornerstone enhancements is the implementation of mandatory two-factor authentication (2FA) for all individual eFiling profiles. This method adds an additional layer of security by requiring two distinct steps for user authentication.
- First Layer: Users must provide their username and password.
- Second Layer: After the initial credentials are verified, a One-Time-Pin (OTP) is sent to the user’s registered contact details, which must be entered to complete the login process.
Only after both layers are validated can users access their eFiling profiles.
Improvements to 2FA
SARS has also enhanced the two-factor authentication process by:
- Enforcing its use across all individual profiles.
- Requiring users to confirm and update their security contact details.
New Password Requirements
To bolster account security further, SARS has updated its password guidelines. New and updated passwords must now meet stringent criteria, including:
- A minimum of 8 characters.
- At least one uppercase letter, lowercase letter, numeric digit, and special character.
- Exclusion of personal information such as names, email addresses, or usernames.
- Avoidance of repetitive or sequential characters like “12345” or “aaaaa.”
To assist users, a password strength meter has been introduced, offering a visual representation of password robustness.
Biometric Facial Recognition for New Registrations
For new eFiling registrations for Personal Income Tax, SARS is introducing biometric facial recognition authentication. This cutting-edge technology aims to protect taxpayers from identity theft and profile hijacking.
Using a valid South African ID, individuals registering on eFiling may now need to complete facial recognition verification. Photos captured during the process are matched in real-time with reference data to authenticate users.
According to SARS, this system ensures immediate verification outcomes, significantly enhancing user security.
Conclusion
These proactive measures by SARS demonstrate a commitment to protecting taxpayers’ information in a digital age increasingly prone to fraud and cyberattacks. With advanced technologies like biometric authentication and strengthened password protocols, the tax authority is setting a new standard for secure eFiling practices in South Africa.
Comments