Internet Banking Security
We use specialized software and other technologies to protect your information within
When you log in to Internet banking from the Bank of Utah home page, we secure the connection with Secure Socket Layer [SSL]
technology, then transmit access ID and passcode. SSL encrypts your personal information before it leaves your computer, ensuring
that no one else can read it. Once received, this information is transported within our systems via an encrypted network. This is
how we prevent unauthorized users from accessing our systems and your information through the Internet.
Read our Internet banking security guarantee
Our Internet Banking System brings together a combination of industry-approved security technologies to protect data for
the bank and for you, our customer. It features password-controlled system entry, a GeoTrust-issued Digital ID for the bank's
server, Secure Sockets Layer (SSL) protocol for data encryption, and a router loaded with a firewall to regulate the inflow and
outflow of server traffic.
Secure Access and Verifying User Authenticity
To begin a session with the bank's server the user must key in a Access ID and a password. Our system, the Internet Banking
System, uses a "three strikes and you're out" lock-out mechanism to deter users from repeated login attempts. After three
unsuccessful login attempts, the system locks the user out, requiring either a designated wait period or a phone call to the
bank to verify the password before re-entry into the system. The Digital ID from Digicert, the experts
in digital identification certificates, authenticates the user's identity and establishes a secure session with that visitor.
Once the server session is established, the user and the server are in a secured environment. Because the server has been
certified as a 128-bit secure server by Digicert, data traveling between the user and the server is encrypted with Secure
Sockets Layer (SSL) protocol. With SSL, data that travels between the bank and customer is encrypted and can only be decrypted
with the public and private key pair. In short, the bank's server issues a public key to the end user's browser and creates a
temporary private key. These two keys are the only combination possible for that session.
Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware,
works in conjunction with the firewall, a piece of software, to block and direct traffic coming to the server. The configuration
begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving
web pages or sending customer requests to the bank.
Using the above technologies, your Internet banking transactions are secure.
Protecting Your Confidential Information
As an Internet banking user, you are responsible for safeguarding your information on the user end. Practice the following
measures to ensure that your activity is secure:
Keys to a Secure Computer
We require the use of a secured 128-bit enabled browser to log in to your account and perform transactions. Firefox,
Microsoft Internet Explorer, Chrome and Apple Safari are all secure browsers. If you are not using one of these browsers,
or feel your browser does not meet our security requirements, you should download an upgraded browser version.
Once you have signed in, there are two ways to verify that your Internet banking session is secure:
Padlock icon: Look for the small padlock icon in your web browser window, usually located in the lower right corner.
A closed or locked padlock indicates a secure connection.
Https//: Look for the letters "https://" at the beginning of the website address or URL in your browser.
The "s" means secure. (If your Internet banking session is in a framed website, you may need to right click on the
frame and VIEW SOURCE to see the "https://" address for your session.
Patches are software updates designed to add features, fix problems or security weaknesses
Keep software current with the latest version
Software examples include:
- Operating System (OS)
- Web browser
- Office applications
AntiVirus and AntiSpyware (Malware protection)
This software is designed to protect your computer from malicious software
Use reputable protection software
Update software and definitions at least weekly
Complete a system scan weekly
Many Internet providers include antivirus software with your subscription
Designed to block unauthorized access to your computer from the Internet
Tips for Safe Computer and Internet Use
- Use strong passwords that are not easily guessed.
- Don't write your password down, email, or tell it to others.
- Don't use the same password for multiple logins. For example, don't use the same password for email and Internet Banking.
- How strong is your password? Try Microsoft password checker
- Only browse to trusted websites.
- Ensure you are on a secure site when viewing or entering private or confidential information.
- Only read email from trusted senders.
- Be wary of unsolicited links or attachments included in the email.
- Copy and paste links from emails into the browser.
- Don't include personal or private information in email.
Public Wireless Networks
- Don't send sensitive information across public wireless networks unless you can verify they are secure.
Precautions While Logged in to Internet Banking
We recommend that you do not send us standard email containing any sensitive information such as your Social Security number,
account numbers and other private personal information. If you wish to send an email with that type of information, please use
the "Contact Us" function within Internet banking. Inquiries sent in this manner utilize the secure network since you are already
logged in. Reponses back to secure emails through the Internet banking system will be replied to within the Internet banking system.
Please be sure to log out if you are going to be away from your computer for an extended period of time. Logging out will end your
session and prevent others from using your access. After logging out, you will have to resubmit your username and password before
entering the site again.
As an additional security measure, your Internet banking session will automatically time out after a 10-minute period of inactivity.
To restart your session, re-enter your username and password at the log in screen.
Certain online business transactions require the use of a security token provided by the bank.
Additional Fraud Advisories
For more information, visit OnGuardOnline.gov
. This site provides tips from the
federal government and technology authorities on preventing cybercrime.
This page was created to provide security awareness and tips for protecting sensitive information in accordance with
Gramm-Leach-Bliley Act (GLBA)