|
OceanFirst Security Statement
OceanFirst values the confidentiality and security of your assets and personal information as much as you do. Accordingly, we have created systems to protect you and your confidentiality when using our online resources and communicating with us.
Confidential Access - Your User ID Number and confidential password protect against others accessing your online banking accounts.
State-of-the Art Technology - OceanFirst has built in multiple technological security features to help safeguard your financial information.
OceanFirst Protects You and your Assets
To assist us in offering our Web-based banking services in a secure manner, we employ a number of measures, which are described below. These measures allow us to properly authenticate your identity when you access these services and protect your information as it traverses the Internet between your PC and OceanFirst.
3 Levels of Protection. The security of the OceanFirst Internet banking application is addressed at three levels. The first concern is the security of customer information as it is sent from the customer's PC to the Web server. The second area concerns the security of the environment in which the Internet banking server and customer information database reside. Finally, security measures are in place to prevent unauthorized users from attempting to log into the online banking section of the Web site.
Access Codes. OceanFirst utilizes two different pieces of information, collectively known as your Access Codes, to properly identify and authenticate you prior to allowing online access to our web-based Online Banking and Online Bill Pay services. The first piece of information needed is a User ID, which serves to identify you and your account relationship with OceanFirst. The second piece of information, your Password, serves to authenticate your identity.
User ID and Password Security. Your User ID is a 9 digit number that identifies who you are. Your Password is something that you choose to verify your identity. To further protect your Password, OceanFirst recommends that you select something that is easy for you to remember, but hard for others (even people who know you) to guess. Thus, OceanFirst recommends you use something other than significant dates (i.e., anniversary, birthday), phone number or extensions, or even street addresses. Your password must contain between 4 and 14 characters. If you are a registered Online Banking user and have forgotten your Password or User ID, or think your Online Banking Password has been compromised, call OceanFirst Direct Online Banking Customer Relations at 1-888-OCEAN33, ext. 7710.
How to Protect Yourself When Using Online Banking and Online Bill Pay
- Eliminate cached pages before leaving a shared or public computer
- Don't share your User ID or Password with anyone
- Select a Password that is hard to guess, but easy for you to remember
- Don't leave your computer while it is in the middle of an Online Banking or Online Bill Pay session
Secure Environment. Data security between the customer browser and our Web server is handled through a security protocol called Secure Sockets Layer (SSL). SSL provides data encryption, server authentication, and message integrity for an Internet connection. In addition, SSL provides a security "handshake" that is used to initiate the connection. This handshake results in the client and server agreeing on the level of security they will use and fulfills any authentication requirements for the connection. Currently OceanFirst's online banking application supports data encryption at the highest level (128 bit). In order to get this level of encryption, you will need a browser that supports it.
Secure Browsers. OceanFirst also requires the use of secure browsers to protect you while you access our online financial services. More specifically, the personal and account information that flow back and forth between your PC and OceanFirst must be encrypted while in transit - secure browsers are how we achieve this level of protection. Encryption is the process of scrambling information (typically for data transmission) so that it can only be reassembled in its original clear text format by someone who has the correct encryption key to do so. This technology encrypts your personal information as you send it to us, which only OceanFirst can decrypt. Likewise, when we send personal or account information to you, this technology encrypts it, which then only you can decrypt. Both versions 3 and 4 of the most popular browsers support 40-bit encryption as a default, and have complete versions as well as patches that will support the stronger 128-bit encryption. Check with your browser manufacturer's website for more information.
Firewalls. Requests for online banking information are passed on from the Web server to the Internet banking server. The Internet banking application is designed using a three-tiered architecture. The three-tiered architecture provides a double firewall, completely isolating the Web server from the customer information SQL database.
The World Wide Web interface receives SSL input and sends requests through a firewall over a dedicated private network to the Internet banking server. The World Wide Web interface is the only process capable of communicating through the firewall to the Internet banking server. Therefore, only authenticated requests communicate with the Internet banking server. A firewall is an additional protection system used to protect our computer systems and your information. Firewalls can be thought of as selective barriers that only let authorized traffic (i.e., you, our Online Banking customer) through to OceanFirst's systems.
Secure Hardware. The customer information database is housed on a Microsoft SQL Server, which implements Microsoft NT security in addition to the firewall technology. The customer database is stored on a RAID-5 drive array, which provides uninterruptible data access, even in the event of a hard drive failure. Just as the World Wide Web interface is the only process capable of communicating with the Internet banking server, the Internet banking server is the only process able to send requests to the SQL database. Thus, the outside world is removed from the customer database by two dedicated private networks.
Constant Monitoring. A security analyzer constantly monitors login attempts and recognizes failures that could indicate a possible unauthorized attempt to log into an account. When such trends are observed, steps will be taken automatically to prevent that account from being used.
Secure Process. Security concerns have been addressed from every angle within the architecture of the Internet banking application. Implementation of the SSL security protocol on the Web server and customer browser ensures authenticated data has been received from the customer. The three-tiered approach of the Internet banking application creates a double firewall, which performs information requests over dedicated networks designed to handle specific functions. Placing all business logic and event logging within the Internet banking server creates a controlled environment, which allows quick incorporation of Internet security technologies as they evolve. Finally, the security analyzer monitors login attempts in order to prevent unauthorized logins.
|