Online Banking System Security
This Online Banking System brings together a combination of industry-approved security technologies to protect data for the bank and for you, our customer. It features password-controlled system entry, a VeriSign-issued Digital ID for the bank's server, Transport Layer Security (TLS) protocol for data encryption, and a router loaded with a firewall to regulate the inflow and outflow of server traffic.
There are four primary areas of concern when it comes to securing data over the internet; 1) Secure login and user authenticity, 2) Encryption while data is in transit, 3) Routing unwanted traffic away from the bank and 4) Physical security of the bank's server and internal configurations.
Secure Access and Verifying User Authenticity
To begin a session with Home State Bank's server you must key in a Log-in ID and a password. Our system, the Online Banking System, uses a "3 strikes and you're out" lockout mechanism to deter users from repeated login attempts. After three unsuccessful login attempts, the system locks the user out, requiring a phone call to the bank to verify the password before re-entry into the system. Upon successful login, the Digital ID from VeriSign, the experts in digital identification certificates, authenticates your identity and establishes a secure session with you.
The digital ID from VeriSign, the expert in digital identification certificates, provides a standard of authentication to confirm the identity of the user prior to access to the system; VeriSign describes Digital ID's as "electronic credentials that establish an individual's or entity's identity. A server secured with a Digital ID ensures visitors of the site's authenticity and allows the session with the client to be encrypted". It is essentially "third party evidence" that end users who are seeking and receiving data are indeed who the server understands them to be, and vice versa.
Secure Data Transfer
Once the server session is established; the user and the server are in a secured environment. Because our server has been certified as a 128-bit secure server by VeriSign, data traveling between you and the bank is encrypted with Transport Layer Security (TLS) protocol. With SSL, data that travels between the bank and you is encrypted and can only be decrypted with the public and private key pair. In short, the bank's server issues a public key to your browser and creates a temporary private key. These two keys are the only combination possible for that session. When the session is complete, the keys expire and the whole process starts over when a new end user makes a server session.
Router and Firewall
Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware, works in conjunction with the firewall, a piece of software, to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving web pages or sending your requests to the bank. Using the above technologies, your Online Banking transactions are secure.