Business Credit Business Travel Franchising Personal Finance Sales & Selling Technology Women in Business Careers E-Commerce & Internet Finance & Accounting Labor & Employment Management Marketing & Advertising Operations Starting a Business > See All

by Title A-H by Title I-P by Title Q-Z > See All

Business Intelligence Small Business Blog Business Planning E-Commerce & Internet Finance & Accounting Home-Based Business Human Resources & Employment Management & Leadership Marketing & Advertising Operations Sales Technology Women in Business > See All

Hiring & Firing Intellectual Property Internet & Technology Legal Mergers & Acquisitions Money & Fundraising Real Estate/Landlord-Tenant Sales & Marketing Starting a Business Business Guides Forms Kits > See All

Construction Medical Practices Restaurants Retail Trade Manufacturing Real Estate Wholesale Trade > See All

Accounting Advertising & Marketing Computers & Software Financial Services Human Resources Internet & Online Management Small Business > See All

Business Exchange Business Answers Buyer's Guides Franchise Opportunities Glossary White Papers Trials & Downloads Partner Resources Podcast Library Quote Center Video Library Web Site Tools > See All

FFIEC urges stronger security for Internet banking

By Anonymous
Publication: Mortgage Banking
Date: Sunday, January 1 2006

New guidance issued by the Federal Financial Institutions Examination Council (FFIEC) in the form of a report urges financial-services institutions to move beyond use of user name and password to authenticate the identity of online banking customers.

FFIEC said it issued its guidance, Authentication

in an Internet Banking Environment, to reflect the many significant legal and technological changes with respect to the protection of customer information, increasing incidents of identity theft and fraud, and the introduction of improved authentication technologies and other risk-mitigation strategies.

The continued growth of Internet banking and other forms of electronic financial activities, including the advent of eMortgage processing, and the increased sophistication of security threats have resulted in higher risks for financial institutions and customers alike.

An effective authentication system, as well as a risk assessment, is necessary in order to ensure financial institutions' ability to secure sensitive information, noted FFIEC.

"Where risk assessments indicate that the use of singlefactor authentication is inadequate, financial institutions should implement multifactor authentication, layered security or other controls reasonably calculated to mitigate those risks," the report said. "The agencies consider singlefactor authentication as the only control mechanism to be inadequate in the case of high-risk transactions involving access to customer information or movement of funds to other parties."

The guidance, which replaces FFIEC's Authentication in an Electronic Banking Environment, issued in 2001, does not endorse any particular technology.

In addition, make sure to read these articles:

CC Pace launches risk-assessment toolkit

CC Pace, Fairfax, Virginia, has launched an online banking risk-assessment toolkit designed to help financial institutions comply with recent guidance issued by the Federal Financial ......

Proginet's Two-factor Authentication Solution Mitigates Risks of Online Banking.

Satisfies Federal Financial Institutions Examination Council Guidelines for Authentication in Online Banking Environments GARDEN CITY, N.Y. -- Proginet Corporation [OTCBB: PRGF], developer of enterprise security ......

Cogneto Provides Clarity on FFIEC Online Banking Guidelines.

As December 31 Deadline Nears, Financial Institutions Still Unclear about FFIEC's Authentication Guidelines SEATTLE -- Cogneto, the pioneer of cognitive authentication, today issued recommendations to ......

FFIEC releases small business lending stats

The Federal Financial Institutions Examination Council has released lending data for 2000 collected through the Community Reinvestment Act. The FFIEC reports 5 million small business ......

OUTSOURCED I.T. ACTIVITY SHOULD BE SUBJECTED TO STRICT SCRUTINY

The Federal Financial Institutions Examination Council has added two new information technology booklets as part of an update of its 1996 Information Systems (IS) Examination ......

FFIEC guidance on electronic authentication

The Federal Financial Institutions Examination Council (FFIEC) has issued a guidance, "Authentication in an Electronic Banking Environment." It focuses on the risk-management controls necessary to ......

Leveraging the T-FA expense

Regulators are requiring banks that offer internet services to provide for two-factor authentication by the end of this year. I've seen it referred to as ......

FFIEC thinks twice.

FFIEC thinks twice. The Federal Financial Institutions Examination Council has withdrawn its proposal to require banks to file their call reports electronically. March 31st was ......

FFIEC: Annual Indebtedness Reports No More

Bank officers and shareholders no longer have to file an annual board of directors report itemizing any outstanding loans they have with their institution's correspondent ......

FFIEC offers guidance on authentication for Internet banking

The Federal Financial Institutions Examination Council released updated guidance on the risks and risk management controls necessary to authenticate the identity of customers accessing Internet-based ......

Wachovia No. 1 in small business lending for third year

Wachovia Corporation recently announced that it is the number one small business lender within its markets by dollar volume, based on data from the Federal ......

Regulators send mixed signals on subprime reporting in call reports

Bank regulators postponed until further notice a controversial proposal to expand Call Report data to include subprime lending, while the Office of Thrift Supervision said ......

FFIEC to Phase in Call Report Changes

The Federal Financial Institutions Examination Council approved revisions to call report reporting requirements that will be phased in during the next two years. The revisions ......

Addamark Technologies Offers Guidance on Establishing Log File and Audit Compliance to...

Business Editors/High-Tech Writers SAN FRANCISCO--(BUSINESS WIRE)--March 4, 2004 New White Paper Explains FFIEC Guidelines for the Collection, Retention and Review of Audit Log Files and ......

Compliance Corner: FFIEC Issues New Guidance for Technology Risks

Anew set of booklets issued by the Federal Financial Institutions Examination Council offers financial institutions guidance on measuring and protecting against the inherent risks associated ......

T T T

Digg It

del.icio.us

Related Resources

Press Releases

Proginet's Two-factor Authentication Solution Mitigates Risks of Online Banking.

Cogneto Provides Clarity on FFIEC Online Banking Guidelines.

SentryCom Announces Release of Comprehensive Solution for Authentication in Internet Banking.

HAIFA, Israel -- On October 12th, 2005 the US Federal Financial Institutions Examination Council (FFIEC) issued guidance for authentication in the Internet banking environment....

FFIEC urges stronger security for Internet banking

In addition, make sure to read these articles:

Related Resources

Press Releases

Business Resources

Sponsored Links