|
|
|
|
Security and Protecting Your AccountMPO Federal Credit Union
takes fraud and fraud related activities very seriously. YES - PLEASE TELL ME MORE ABOUT ENHANCED AUTHENTICATION!! As usual, if you should have ANY questions or concerns, you may address them with credit union staff in the branch, via telephone, by email to admin@mpofederal.org (do not send account information via email) or via Online Banking Bank Mail (secured messaging system housed by MPO Online Services). MPO Federal Credit Union is strongly committed to protecting the security and confidentiality of our member account information. We use state of the art technology in the ongoing development of its MPO Online Bill Payment Service to ensure security and privacy. In order to access MPO Online Bill Payment Service you must have a browser that supports 128-BIT encryption. User Id and Security CodeUpon enrollment, you will be issued a User ID and eight (8) digit Security Code. Upon first use, you will be prompted to change your security code. Be prepared to enter a NEW 8 digit security code. About SecurityWe are pleased to offer MPO Online Bill Pay Services via the Internet. Delivering these services requires a solid security framework that can protect you and our institution from outside intrusion. The information below summarizes our security framework, which incorporates the latest proven technology. A section at the end also summarizes your responsibilities as a user of the Internet Banking System with regard to security. There are several levels of security within our security framework. User Level deals with cryptography and Netscape’s Secure Sockets Layer (SSL) protocol, and is the first line of defense used by all members accessing our Internet Banking Server from the public Internet. Server Level focuses on firewalls, filtering routers, and our trusted operating system. Host Level deals specifically with our Internet Banking Services, and the processing of secure financial transactions. User LevelThere are several components of User Level security that ensure the confidentiality of information sent across the public Internet. The first requires your use of a fully SSL-compliant browser such as Netscape Navigator or Microsoft Internet Explorer. SSL is an open protocol developed by Netscape that allows a user’s browser to establish a secure channel for communicating with our Internet server. SSL utilizes highly effective cryptography techniques between your browser and our server to ensure that the information being passed is authentic, cannot be deciphered, and has not been altered en route. SSL also utilizes a digitally signed certificate that ensures that you are truly communicating with the Internet Banking Server and not a third party trying to intercept the transaction. After a secure connection has been established between your browser and our server, you then provide a valid User ID and Security Code to gain access to the services. This information is encrypted, and a request to log on to the system is processed. Although SSL utilizes proven cryptography techniques, it is important to protect your User ID and Security Code from others. We recommend using a full 8-digit Security Code and changing it often. Session time-outs, a limit of 3 attempts on the number of logon attempts, forced Security Code change intervals, and special browser caching techniques are examples of other security measures in place to ensure that inappropriate activity is prohibited at the User Level. Server LevelAll transactions sent to our Internet Banking Server must first pass through a filtering router system. These filtering routers automatically direct the request to the appropriate server after ensuring the access type is through a secured browser and nothing else. The routers verify the source and destination of each network packet, and manage the authorization process of letting packets through. The filtering routers also prohibit all other types of Internet access methods at this point. This process blocks all non-secured activity and defends against inappropriate access to the server. The Internet Banking Server is protected using the latest and most powerful firewall platform. This platform is based on a government-rated B1 trusted operating system, in use for many years by high-security government agencies including the U.S. Department of Defense. This platform defends against every kind of system intrusion and effectively isolates all but approved member financial requests. The platform secures the hardware running the Internet Banking applications and prevents associated attacks against all systems connected to the Internet Banking Server. Additional measures to ensure the security of information involve the separation of server applications from host data. This means that information of value does not physically reside on the Internet Banking Server. Logging of security information occurs at all times and there is always a backup of the information logged about every attempt made to access the system. These security logs allow us to constantly monitor for a wide range of anomalies and to determine if attempts have been made to breach our security framework. Host LevelAfter passing through the Internet Banking Server, the transaction is sent via secure dedicated communication lines to our Transaction Server, which verifies member identity. Once authenticated, the member is allowed to process authorized Internet Banking and bill payment transactions using host data. No direct database access occurs between the Internet Banking Server and the Transaction Server. Only specific transactions in the proprietary format are allowed into the Transaction Server. Protocol conversions have also been implemented to ensure that information does not remain in a single state of existence, further securing the information at any given point in the transaction process. In addition, communication time-outs ensure that the request is received, processed, and delivered within a given time frame. Any outside attempt to delay or alter the process will fail. Further password encryption techniques are implemented at the host level, as well as additional security logging and another complete physical security layer to protect the host information itself. Your Responsibility
MEMBER LIABILITYIf you fail to maintain security of your User ID and Security Code and the Credit Union suffers a loss, we reserve the right to terminate service to you under this agreement, as well as to terminate other deposit and loan services. MPO Federal Credit Union will not be responsible for any losses you suffer due to your failure to maintain the security of your User ID and Security Code. Users of the service should use such other security code protection precautions as may be appropriate under any particular set of circumstances to ensure proper security over system access and access to account and transaction information. This service provides the capability for you to change your security code. To help safeguard your security, you should change your security code. If you forget your security code or your system access is disabled due to the use of an incorrect security code, you must contact the MPO Federal Credit Union to request that a temporary security code be issued to you. We reserve the right to require written re-application for a new and/or replacement security code.
|
|
|
Your savings federally insured to at least
$250,000 and backed by the full faith and credit of the US Government Send mail to
admin@mpofederal.org with
questions or comments about this web site.
|
![[Under Construction]](images/undercon.gif)
