There are a number of controls in place to designed to secure transmissions through Fedline Advantage: Authentication, Role-Based Access, Encryption, Firewalls, Intrusion Detection, and Security Reviews.

 

The Federal Reserve Bank (FRB) requires two-factor authentication using a physical USB security token that the user keeps that requires a passphrase which can be changed at any time and a unique user ID and logon that changes every thirty days at a minimum.

 

Each user is assigned a subscriber access level that limits activities for the user to functionality associated with their designated level of access.

 

All information is encryptred using both software and hardware encryption. Secure Socket Layer (SSL) encrypts information as it moves between CU*Answers and the FRB. Further, the connection is established via a dedicated device providing an IPSEC VPN tunnel. Operations connects to a 128-bit https (TLS) encrypted web page over this VPN link to perform all transactions.

 

Firewalls are in place both at CU*Answers and at the FRB to block unauthorized traffic.

 

Finally, both CU*Answers and the FRB employ intrusion detection systems to monitor for unauthorized access attempts.

 

The above measures exceed any current security requirements we have encountered to date. Further information regarding the security of ACH transmission can we found at the FRB website (see below).