This is a long answer (sorry!), but it should address any and all concerns you have.
The online banking products we offer allow you to manage your accounts more securely than receiving statements and sending checks through the mail. A recent study revealed that 90% of unauthorized access to sensitive information is through traditional nonelectronic channels, such as a lost or stolen wallet or theft from a nonsecure mailbox. In addition, consumers who access accounts online can monitor their account activity anytime – not just when the statement arrives – to detect fraud more quickly and take steps to minimize the damage.
To verify that only authorized users log in to our home banking system, we use password verification. When you submit your password, it is compared with the one we have stored in our secure data center. For added security, if a password is entered incorrectly three times, we automatically lock the Internet banking account. We monitor and record bad log-in attempts to detect any suspicious activity (i.e. someone trying to guess your password).
We also require additional security on your account. If you are a new home banking user, you will be prompted to request a verification code to be delivered instantly by phone (text or voice) or by email. Enter the verification code to gain access to your account. You can add extra security to one or more computers that you regularly use to access your home banking account. If you (or someone else) logs in from a non-enrolled computer, you will be prompted to request and enter a verification code. The rest of your online banking visit and any future visits from that computer will remain exactly the same.
This superior security technology – called multifactor authentication – identifies you as the true owner of your account by recognizing not only your password but your computer as well. If your computer isn’t recognized by us – because you’ve logged in from a public computer or one you haven’t used before – we’ll ask you to provide information that only you will know as an additional line of defense to prevent unauthorized access.
When you log in to your online accounts, you’re in a secure area, and all actions you take are encrypted. Basically, the information exchanged between your browser and our online banking server is scrambled so no one else can intercept it. Encryption involves exchanging numbers between the end user’s browser and the Internet banking server. The numbers act as keys to “unlock” the connection between browser and server, much like numbers on a combination lock. The higher the number of combinations, the less likely it is that an outside party could decipher the key and access sensitive information. We employ 128-bit Secure Sockets Layer (SSL) encryption. To find out if your browser supports 128-bit encryption, click on “Help” in the toolbar of your Internet browser, then “About [browser name].”
We also “time out” an Internet banking session after a specified period of inactivity. This keeps others from viewing or continuing Internet banking activity if you leave your computer unattended.
We have structured our network architecture so that the servers which store your actual account information are NOT connected to the Internet. The requests you make through the Internet are handled by our Internet banking servers. Firewall servers act as a traffic cop between segments of our online banking network used to store information and the public Internet.