Security Tips

• When you sign in to TWU Pass, make sure you're on the real TWU Pass website.
  • Check your web address (URL) - it should always start with https://pass.twu.ca/ or https://www3.twu.ca/twupass/
  • If you're not on https://pass.twu.ca/ or https://www1.twu.ca/, you may have found a "phishing" website. Please report the web address (URL) on the help desk.
  • If you get a certificate warning, it means a website is trying to pretend to be TWU Pass - don't enter your username or password
• TWU Pass will help you create a password that's hard to guess. Keep your password safe - avoid writing it down unless you're going to store it in a locked location.
• For extra security, you can use an OpenID provider like myVidoop or myOpenID to sign you in without a username and password. (It's actually safer without a regular password!) After you set up your account, use the OpenID sign in tab to do this.
• It's best not to save your password into your web browser's password manager because anyone with physical access to your computer could get your password. (Browsers store passwords in a form that is typically easy to hack by someone physically using your computer.)