Privacy & Security
This Internet Banking System brings together a combination of industry-approved security technologies to protect data for the bank and the customer. It features password-controlled system entry, Secure Socket Layer (SSL) protocol for data transmission encryption, and router & firewall security to regulate the inflow and outflow of server traffic.
Password controlled system entry
When beginning a session with the bank’s Online Banking system, you must use a Login ID and password. Password “guessing” is deterred with a lock out feature. After three unsuccessful attempts to enter a password, the user is “locked out” of the Online Banking.
Secure Data Transfer
Once the server session is established, the user and the server are in a secured environment. Data traveling between the user and the server is encrypted with Secure Sockets Layer (SSL) protocol. When a connection is established between a client and a secure server, the client software automatically verifies the server by checking the validity of the server's Digital ID. The key pair associated with the server's Digital ID is then used to encrypt and verify a session key that is passed between the client and server. This session key is used for each client-server connection, and the session key automatically expires in a set period of time after disconnect. Even if a session key is intercepted and decrypted (very unlikely), it cannot be used to eavesdrop on subsequent sessions.
Router and Firewall
Requests must filter through one or more routers and firewalls before they are permitted to reach the server. These devices serve to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens ports only when necessary to process acceptable data requests, such as retrieving web pages.