Filtering Routers

All transactions sent to our Online Banking system must first pass through a filtering router system that verifies the source and destination of each network "packet", and manages the authorization process of letting packets through. This process blocks all non-secured activity and defends against inappropriate access to the Online Banking system server. Much like a security guard, the router is responsible for determining who has access to what components of the Online Banking system.

Firewalls

Firewalls are the next component that a user must pass through to gain access to account information. Any and all requests must pass through these validation controls, known as "firewalls", which are setup between UmbrellaBank.com and the Internet. 

Multiple firewalls are used to protect UmbrellaBank's systems and proprietary network from any unauthorized Internet traffic. The purpose of our firewalls is to ensure that only UmbrellaBank traffic is allowed to pass to our systems and networks - all other traffic from the Internet is rejected. Firewalls allow only authenticated UmbrellaBank customers to send or receive transactions. 

Trusted Operating System

The entire Online Banking system resides within a trusted operating system, which acts much like a firewall by protecting sensitive and proprietary information from the outside world. The trusted operating system accepts your authorized requests for account information, retrieves the information from our database, and sends the information back to your browser in an encrypted format. The system also contains numerous audit controls to track requests, including logins, logouts, and unsuccessful network connections, as well as navigation, which allows us to quickly identify any suspicious activity.

Host System

After passing through the Online Banking server, your encrypted transactions are sent via secure dedicated communication lines to our Transaction Server to verify a customer's identity. Once authenticated, customers may perform banking and bill payment functions. Only specific transactions in a proprietary format are allowed into the Transaction Server. In addition, communication time-outs ensure that requests are received, processed and delivered within a given timeframe. Any outside attempt to delay or alter the process will result in failure. Further password encryption techniques are also implemented at the host level.

Monitoring

Ensuring the security of your financial transactions is an ongoing process at UmbrellaBank. As such, systems and networks are monitored 24-hours a day, 7 days a week. Logging of security information occurs at all times and there is always a backup of the information logged. These security logs allow us to constantly monitor for a wide range of anomalies and to determine if attempts have been made to breach our security architecture. Additional security logging is also performed and reviewed at our host system.

UmbrellaBank regularly engages independent third party security and internal control experts to audit and review security practices and to ensure that security protections in place are functioning correctly. In addition, we operate under the strict banking security rules, regulations and supervision as set forth by the Federal Deposit Insurance Agency (FDIC) and the Office of Thrift Supervision (OTS).