This Internet Banking System brings together a combination of industry-approved security technologies to protect data for the bank and for you, our customer. It features password-controlled system entry, digital certificates for the bank's server, Secure Sockets Layer (SSL) protocol for data encryption, and a router loaded with a firewall to regulate the inflow and outflow of server traffic.
American National Bank employs numerous countermeasures to protect access to online banking systems. Depending on the type of account being accessed, customers may be required to use a unique Log-in ID in conjunction with a security token with randomly displayed unique number combinations, challenge questions and answers, or passwords. For our customers convenience, mobile banking and SMS banking is also provided. These access methods are also protected using usernames, passwords and special access codes to allow access to accounts using mobile devices. Internet banking access and authorization is protected using a special server configured specifically for protecting access to customer accounts.
Once the server session is established, the user and the server are in a secured environment. Because the server has been certified as a 128-bit secure server by Geotrust, data traveling between the user and the server is encrypted with TLS protocol. With TLS, data that travels between the bank and customer is encrypted and can only be decrypted with the public and private key pair. In short, the bank's server issues a public key to the end user's browser and creates a temporary private key. These two keys are the only combination possible for that session. When the session is complete, the keys expire and the whole process starts over when a new end user makes a server session.
Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware, works in conjunction with the firewall, a piece of software, to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving web pages or sending customer requests to the bank. Once a connection has been established, the customer is then directed to a server that is specially set up.