Security

Community Bank of Nevada has taken every precaution to ensure a secure environment for our Internet banking customers. To accomplish our goal of secure CB Internet, we have contracted with one of the best service providers in the business, Aurum Technology., who employs state of the art Internet firewall and network security technologies.

Additionally, the CB Internet system uses several different methods to secure and protect your personal information:

• AccessIDs and Passwords
  • Access to the CB Internet system and your accounts requires your valid Access ID and separate Password that you change as often as you like.
• Automatic Time Out
  • After 10 minutes of non-use, the CB Internet system will automatically log you out of your session just in case you forgot to, and to prevent unauthorized access.
• Security Enhancements
  • The CB Internet system is constantly monitored and evaluated. The system is tested regularly to detect any potential problems that might compromise security or privacy. Security technologies are always being evaluated, and the system is upgraded whenever relevant improvements are identified. We also endeavor to keep you informed of any security upgrades available for your system through messages and links to software provider sites.

back to top

Your Responsibility to Security

The security of your accounts and personal information accessible through the CB Internet system is a joint responsibility of the Bank and you, the customer user. We will keep our security pledge to you, and in return, you are asked to fulfill certain responsibilities in our partnership to protect you and the system. Among the precautions you should take to help protect your accounts and information on the CB Internet system are:

• Do not share your Access ID or Password with anyone.
• You can change your Password as often as you like online, and we encourage you to do so regularly. Do not use birthdays, phone numbers or names that others can guess.
• A Community Bank of Nevada employee will never need to know your Password, and you should never furnish it to anyone claiming to represent the Bank.
• You should exit from CB Internet as soon as you finish your Internet banking transactions.
• Never walk away from your computer with your account information on the screen.
• It is best to close your browser after signing off to clear account information from you browser’s memory.
• Promptly notify the Bank whenever you suspect that unauthorized access or transactions have taken place on your accounts.

When you enroll for CB Internet with Community Bank of Nevada and first use the system, you agree to the terms and conditions explained in the Agreement & Disclosure. Although the Bank has taken every reasonable precaution to assure account security, we accept no liability for a breach of security that occurs for reasons outside of our control. Community Bank of Nevada cannot be responsible for customer errors or negligent use of the service, and will not cover losses due to:

• Customer input errors or misuse of any aspect of the Internet banking service.
• Negligent handling or sharing of Access IDs or Passwords leading to unauthorized access to accounts.
• Leaving a computer unattended during an CB Internet session that results in disclosure of personal information or unauthorized transactions on accounts.
• Failure to promptly report known incidents of unauthorized account access.

back to top

How Our System Security Works

To understand how the system protects your customer data, you must first understand how a hacker will try to steal it. A hacker will try one or both of the following:

• Snooping the data while it is in transit
• Attacking the server where the data resides

Data is in transit both when it is being acquired by the system (from Community Bank of Nevada) and when it is being queried by you, the customer end user. To provide a safe means of getting the data from the Bank to the system Data Server the following method is used: The Bank initiates an encrypted logon to the firewall. The firewall authenticates the request and sets up an encrypted file transmission session with the Data Server located on the private internal network (inside the firewall). Thus, when the Bank begins transmitting the data, it is encrypted and thus, protected from snooping attacks. To prevent snooping the customer end user during account queries, we're using Secure Socket Layer (SSL), a powerful encryption and server authentication protocol, based on the RSA encryption technology. The Internet Information Server supports 128-bit encryption keys, which provides the highest level of encryption capability available for SSL.

Several layers of security protect the Data Server, SQL Server for Windows NT. The Data Server is located inside the firewall, on a private internal network. All requests to this Data Server must come through the firewall that only allows legitimate requests from the Web Server. In other words, the only machine that the Data Server is talking to is the Internet Server and the only way it will do that is from safely behind the firewall. Combined with the filtering router on the perimeter, this means no one can access the data directly from the Internet. The data is in effect "hidden" from the Internet. The Data Server contains a "mirrored" drive arrangement that prevents any loss of data or denial or service even if one of the drives crashes. The Data Server is also attached to an Uninterruptible Power Supply (UPS), which will keep the server on-line, even during a power outage.

Furthermore, the Windows NT network on which the Internet banking applications run, have been tightly secured at the operations system level and at the application level of the Internet Information Server and SQL Server. In addition to these precautions, the network is monitored extensively. Every logon, successful and failed, is reviewed to pinpoint any intrusion attempts (accounts are locked out after three failed logon attempts). If necessary, these logon attempts may be traced back to the source by the user's IP address, request time, etc.

In summary, a secure environment is provided for Internet banking by protecting customer data both in transit and on the Data Server. The combination of the filtering router, the tightly secured Web Server, the firewall and the hidden Data Server make this secure environment work. Finally, all network activity is monitored and recorded to prevent intrusion.

back to top

Security Highlights

Security is more than just preventing unauthorized computer access. Security means minimizing the risk of interrupted service too. In addition to providing protection against unauthorized access, we reduce the risk of equipment failures, power failures, computer viruses, and disasters.

ICSA Certification: Community Bank of Nevada’s Internet banking service provider, Aurum Technology, is ICSA Certified. This certification involves an extensive ICSA onsite and external security audit including ongoing external "intrusion testing".

Encryption:

We use the Secure Socket Layer (SSL) protocol, based on RSA encryption methods, to ensure that data passing through the Internet is kept secure. This includes support for "strong" or 128 bit key encryption. Encryption protects data from being monitored while it is being transmitted.

Firewall:

The firewall protects our servers against unauthorized access from the Internet. All access from outside the Internet banking system goes through the firewall.

Internet Banking System:

Aurum Technology servers are secured at the operating system level, at the database level, at the Web server level, and at the our Internet banking application level through user login and passwords.

back to top

Server Authentication:

We obtain a Digital ID (also known as a Digital Certificate) from a Certificate Authority. Our Certificate Authority is VeriSign, Inc. This Digital ID ensures that a customer looking at a page on our server is actually using our server. If you are looking at a fraudulent page, your browser will warn you that the Digital Certificate does not match.

Password Security:

The Bank's personnel logins, for performing customer and Bank level maintenance, require an eight character alphanumeric password. Customer logins require an Access ID (assigned by the Bank) and Password. Although the Bank sets the initial Password, a private Password must be chosen the first time that customers use the system. The Bank’s personnel can not see a private Password that has been set by the customer. The Bank has set security options to specify the minimum password length, require passwords to be a mixture of alphabetic and numeric characters, and to control how many failed login attempts "lock" a customer out and for how long. All failed login attempts are reported to the Bank through standard reports.

Monetary Transfers:

The Bank, at the individual account level, enables this feature. The customer can only transfer funds between accounts that have been pre-authorized and set up by the Bank. The Bank may set an individual dollar transfer limit per day for each account or use the account balance as a limit.

back to top

Audit Trail:

Every "hit" on any Web page is recorded, even anonymous browsing. Every maintenance login is logged in NT's Event Viewer. Every customer login is logged in the Internet Banking application. All the Bank and customer activity is logged.

Direct Hosting:

Our service provider does not outsource the hosting of Internet banking. The data is running on Aurum Technology's servers, operated and monitored by Aurum Technology personnel and the Bank. Communication lines and access to the Internet are provided directly by the telephone company. There is no other intermediate Internet Service Provider (ISP) or local communications company involved.

Disk Redundancy:

Our Internet servers have either mirrored hard drives or RAID drives to reduce the risk of problems associated with a "disk crash".

UPS (Uninterruptible Power Supply):

All Internet servers are connected to a data processing caliber UPS (battery backup) for protection against power failures. This is not to be confused with UPS systems meant to protect against momentary or transient power outages.

Disaster Recovery Capability:

Aurum Technology maintains a separate disaster recovery center or "hot site". This hot site includes duplicate communication lines already programmed for a "switch over" in a disaster. This means there is a minimized risk of disruption of customer service. Daily offsite data file backups are maintained.

back to top

Virus Checking:

Our servers are protected against computer viruses through automated ongoing scanning processes utilizing McAfee’s NetShield for Windows NT Server (McAfee and Network General have merged to become Network Associates, Inc.). This anti-virus software is ICSA Certified (formerly the NCSA).

Secure Socket Layer (SSL) Technology:

The Secure Socket Layer Protocol was developed by Netscape to protect information transferred over TCP\IP-based protocols and applications such as HTTP (the Web protocol), FTP, Gopher, etc. To simplify, what the SSL protocol does is establish an encryption key between the client (your web browser) and the server (our Internet server). After this key is established, only the client and server can decode the information transmitted between them. As long as your web browser stays in a secure area, you can be assured that all data transmitted and received is protected.

back to top

Questions?
Contact us at (702)878-0700

Lost or stolen credit/debit card? Click here for helpful information.