The data provided by users or generated by our services are encrypted by the SSL protocol to prevent unauthorized persons to read or modify it without the consent of all involved parts. Eventually, we will need personal information in order to identify members and extern users. In any case, the GCG website only publishes personal information with authorization.

CAUTION, there is only one way: the address of the site should now read "https://". The "s" after the http stands for "secure". The little padlock image near the address on your browser must be closed. This indicates all data to and from the website is being encrypted. If it is open, or if it isn't there, then your information is not being encrypted and you should offer nothing to the site. In this case you should leave, except if you particularly trust the site. Even so, do not provide any sensible information.

CAUTION: believe only in the closed padlock of the browser. Images of closed padlocks in any website can fool you. Any person can put a locked padlock image in a page to distract your attention and make you believe the connection is secure.

The SSL protocol (used within HTTPS) is the unique way to establish encrypted transfers between browsers and web servers. However, SSL protocol is based on trusted certification. A trusted company verifies the identity of the website and emits a certificate. Upon a connection, the browser checks if the presented certificate is valid and was issued by a Certification Authority stored in its database. If it is not the case, the browser alerts the user of a possible attack. This protocol avoids a big security problem: is the website provider exactly who he says he is?

The trusted companies evidently charge expensive to issue their certificates. GCG Laboratory cannot afford to have one.

To use encryption, the GCG website presents a certificate issued by CAcert Organization which provides free certification by verifying the origin of our website. Unfortunately, this organization is not recognized by all browsers as a Certification Authority. Thus, the browser emits an alert to prevent you from being foolished by someone that say they are GCG. Since we do not ask any critical information concerning internet banking, credit card numbers, payment demands, or any type of extern password beyond the needed to access our services, we believe there is no problem for you to insert GCG's website into your exception list.

No. Secure connections through SSL provide encryption which is important to keep your data and credentials safe.

Yes. The best way of doing that is to add CAcert Organization as a Certification Authority. Be aware that your browser will recognize all organizations having valid certificates from CAcert as trusted. Specific instructions for the most popular browsers are presented here.

Yes. Your password is encrypted and stored using latest state-of-the-art non-invertible hash algorithms. This means that no person, included administrators, can see your plain password or recover any part of it. Forgetting your password will require to set up a new one.

Without Secure Socket Layer or, in other words, using HTTP protocol (http://www.gcg.ufjf.br), all data is transferred as plain text to and from GCG's website. This makes your private data vulnerable to eavesdropping. Furthermore, a person can inject malicious code into GCG's scripts to obtain or modify personal or work data.

Yes. Just make sure to always use HTTPS protocol by starting your navigation from https://www.gcg.ufjf.br.