I heard someone in the industry say that dual authentication is mandated by FFIEC for anyone doing high risk transactions, like bill pay and moving money to another account. Who’s right?

Welcome Guest | Log In |

Knowledge Base

CU*BASE Software Topics > It's Me 247 Online Banking/ARU > Personal Internet Branch (PIB)

I heard someone in the industry say that dual authentication is mandated by FFIEC for anyone doing high risk transactions, like bill pay and moving money to another account. Who’s right?

Search

Rating: 10.00 out of 10 (1 Rating)

Article

Related Content (1)

Here’s what NCUA letter 05-CU-18 says:

“You should identify and evaluate the risks associated with the Internet related services you provide for your members...

“Where the risk assessment indicates that the use of single-factor authentication is inadequate for the types of services period [sic], you should employ multifactor authentication, layered security, or other controls.”

So yes, if your risk assessment says that bill pay and moving money to other accounts are high-risk transactions, then you have to implement an additional authentication method. That means multifactor, or layered, or other controls.

Poor

Outstanding

(0/10)

What suggestions do you have to make the content better?

Comments left here will not be responded to. Please click Contact Me if you wish to be contacted

Submit

I heard someone in the industry say that dual authentication is mandated by FFIEC for anyone doing high risk transactions, like bill pay and moving money to another account. Who’s right?

https://kb.cuanswers.com/cuanswers/ext/kbdetail.aspx?kbid=2179

I heard someone in the industry say that dual authentication is mandated by FFIEC for anyone doing high risk transactions, like bill pay and moving money to another account. Who’s right?

Search

Tools

Article Information

Rating: 10.00 out of 10 (1 Rating)

Related Content