Security Policy

Security Alert

The Internet has become an ongoing target for criminals who attempt to commit identity theft. One of the most common schemes used is through email, an act called “phishing.” The email directs the user to visit a website to update personal information such as passwords and credit card, social security and bank account numbers that the legitimate organization already has on file. The website, however, is bogus and set up only to steal the user’s information. To help prevent identity theft and protect out members, Advance Financial would like to remind you that we will NEVER send you an e-mail requesting personal information.

Security Notice

In order to provide our members with a secure home banking system, Online Banking is designed with multiple levels of electronic and physical information security. The security infrastructure in place is a combination of: 1) security components, such as routers, firewalls and intrusion detection systems, 2) controls and procedures designed for configuring, monitoring and reporting on these components and 3) ongoing validation of the effectiveness of these components.

Secure Data Transfer

Online Banking utilizes a Thawte (a VerisSign Company) Global Certificate on the Web Server to force a 128-bit encrypted session with the user when they log on. By exchanging messages using the public/private key pair, the member can be assured they are actually communicating with the ASP (Application Service Provider) Web Server and not a third party trying to intercept the transaction. When a session is encrypted, the key icon at the lower left corner of the browser’s screen becomes solid and a blue line appears at the top of the screen. If the key icon appears broken, encryption is not in use and the current session is not secure.

Router and Firewall

All requests must filter through a router and firewall before they are permitted to reach the server. Together they are configured to isolate and protect the remote environment by insuring that only the traffic with the proper destination addresses and services are authorized.

Cookies

Cookies are small pieces of information, sent from the server, to be stored in a file on your computer. Cookies can be used for many purposes, but at our site, a cookie is used to store security information needed to maintain a secure, confidential connection to our Internet server. You can disable the cookie-warning message, but you must accept the cookies. Please refer to your browser’s HELP function for instructions on changing your options for cookies.