CESB - Forgot Password

Terms and Conditions of Use
Your username, in this case the email address you registered, is unique throughout the eCESB systems. All users 
are asked to register and verify a username and password. All computer systems implement this for three (3) main 
reasons: 

	•  Authentication is the process of identifying an individual, usually based on a username and password. 
	   Authentication is based on the idea that each individual user will have unique information that sets him or 
	   her apart from other users. This security mechanism ensures that no unauthorized parties can access your 
	   eCESB information. 

	•  Authorization is the process of granting or denying a user access to eCESB information once the user has 
	   been authenticated through the username and password. The amount of information and services the user 
	   has access to depend on the defined access rules for your that user.

	•  Accounting is the process of keeping track of a user's activity while accessing the eCESB information, 
	   including the amount of time spent in the system, the services accessed while there and the amount of data 
	   transferred during the session. Accounting data is used for trend analysis, capacity planning, auditing 
	   and resource allocation.

As illustrated above, your authentication (username and password) grant you access eCESB information. Your 
password is your protection against information leakage and misuse of your account. It is important that you 
maintain a strong password. A strong password has the following characteristics:

	•  Password Length. The eCESB system requires a minimum password length of 6 characters. Longer password 
	   length provides additional protection against brut force attacks.

	•  Password Complexity.  Use a combination of uppercase and lowercase alphanumeric characters and 
	   sysmbols.

	•  Avoid Use of Common Names and Dictionary Dictionary Words as part of your password. Most brute force 
	   attacks make use of dictionary and common names to compromise a user account. 

Below are some tips on how to practice good password security:

	•  Never store usernames and passwords on paper or in an unencrypted computer file. The eCESB system 
	   stores your password in an encrypted manner using one-way hash function. The system administrators 
	   cannot decrypt passwords.

	•  Never disclose usernames and passwords to any other persons.
 
	•  Do not use passwords that have been used in the past.

	  Do not use the same password for any other sites or programs (email for instance, your social security 
	   access, tax offices online, banking accounts, etc). If one is cracked they might have access to them all.

	•  Never provide credentials when requested through email. eCESB system will never ask you for your 
	   credentials on email.

	•  Scan your USB for virus when inserting in your computer. Phishing bots are often hidden in the USB.

	•  Regularly change your password.

For assistance and additional information, please contact the systems administrator through info@cesboard.gov.ph.
I understand the above information.
CES Performance Evaluation System 2017-2024
