Data Transmission Protection
All transmissions via the Internet between the user and the credit union are protected by Secure Socket Layering (SSL). SSL utilizes authentication and encryption technology developed by RSA Data Security Inc. This method of cryptography (also known as Public Key Encryption) provides for:

• Server Authentication (thwarting impostors)
• Privacy using encryption (thwarting eavesdroppers)
• Data Integrity (thwarting vandals)

Public key encryption is a technique that uses a pair of asymmetric keys for encryption and decryption. One is called the public key, and one is called the private key. The public key is made public by distributing it widely. The private key is never distributed and is always kept secret. When data is encrypted using the public key, it can only be decrypted using the private key. Conversely, when data is encrypted using the private key, it can only be decrypted using the public key.

A message encrypted with 40-bit RC4 takes on average 64 MIPS-years to break. In other words, a 64-MIPS computer needs a year of dedicated processor time to break the message's encryption. The RC4 128-bit U.S. domestic version, which is the version we use, provides protection exponentially more vast. To provide additional protection, we change our private keys at irregular intervals. The server authentication uses RSA public key cryptography in conjunction with ISO X.509 digital certificates.

| Prev Page |