Impt.: Security Measures by Naukri.com

By ( 1,595 views ) Feb 23, 6:54 am
Posted in Resdex
0.00 avg. rating (0% score) - 0 votes

Naukri.com has introduced a suite of measures to make your usage of Naukri’s Recruitment Solutions safer, and more secure.

In the First phase, for a secured login, we have moved the login pages of the recruitment section from HTTP protocol to HTTPS protocol.

Now, in the Second phase, we will be making some changes in the modules related to your PASSWORDS. These changes are being done as per security standards and will dissuade any security breach. For instance, we will now be storing your passwords in encrypted formats and, thus, decrypting them as text will not be possible at all. Hence under any scenario, we will not display your passwords.

To accommodate the above security enhancements, there are a few changes in some PASSWORD related processes too, as detailed below:

1. Change Password Page:

Current: The user has to enter the old & new password. A confirmation email goes to the user with new password in the email content.

New: The user will have to enter the old & new password. A confirmation email will still go to the user, but without the new password in the email content.

2. New sub-user creation:

Current: Super user enters the password for the sub-user along with the details. An email goes to the sub-user with new password in the email content.

New: Super user will enter other details for the sub-user but not the password. Instead, an email will go to the sub-user with create new password link in the email content. Using this link sub-user will create his password.

‘Create new password’ link
• This link will be functional for one time use upto 72 hrs
• It will lead to a page where user has to enter a new password and confirm the same
• After confirmation, user will be taken back to the login page.

3. Manage Sub-user:

Current: The passwords of sub-users are displayed to the super-user on the ‘Manage Sub-user’ interface in MNR.

New: This facility will be removed. The Super-user can not view the passwords of the sub-users.

4. Change Sub-user Password (by super user):

Current: Current password is displayed and super user can change the password. An email goes to the sub user with new password in the email content.

New: Current password will not be displayed yet the Super-user will be allowed to change the password of the sub-users. An email will go to the sub user (without new password in the content) communicating only that his/her password has been changed by Super-user, and that she/he contact the Super-user for the new password.

5. Forgot Password module:

Current: When a user tries to fetch his password from the “forgot password” module of MNR, an e-mail is sent to the user with his login details (username/password).

New: An email will go to the user with create new password link in the email content.

If the user account is that of a sub-user, then an e-mail alert will also be sent to the super-user of the company informing him/her about the password change (if the sub-user has created a new password successfully).

These changes will be implemented by last week of February. We wish you a safe and secure usage of our services.

For any queries regarding these changes you are welcome to contact us at support@naukri.com