Your online security has always been a top priority to us! In order to provide you with a more secure online banking experience and be in compliance with national guidelines, we have added a new security feature called Enhanced Authentication. Enhanced Authentication is a free and easy way to prevent fraud!
How does Enhanced Authentication work?
When you enroll in Enhanced Authentication, you select a secret image and phrase known only to you. Whenever you log on to your Home Banking/Bill Payment site, you will see your image and phrase so you know that you are accessing your Home Banking/Bill Payment site and not a bogus site. The secret image and phrase does not impact or change your logon ID and password information - this information remains the same. Please DO NOT use your password as your phrase.
We also check the computer or device that you use to access your Home Banking/Bill Payment site. If you use two computers to access your Home Banking/Bill Payment site (for example from work and home), you can register both computers as devices you use for Home Banking/Bill Payment. If you access Home Banking/Bill Payment from a comupter that you did not register, you wil be asked to provide the answer to one of your challenge questions.
Enhanced Authentication remembers your computer by assigning a unique identifier (cookie) to each computer you use to access Home Banking/Bill Payment using standard cookies. The cookie is used to store the identification information only. NO personal or private data is stored.
Enhanced Authentication FAQ
Q: What is Enhanced Authentication?
A: Enhanced Authentication is a security feature that uses multiple factors to authenticate our Home Banking/Bill Payment site to you, our members, to validate you when you log on to your Home Banking/Bill Payment site.
Q: How is Enhanced Authentication more secure?
A: In today's online environment, fraudsters attempt to steal your identity by impersonating or spoofing web sites you trust. Verifying your image and phrase protects you from accidentally revealing your username and password to a fake Home Banking/Bill Payment web site.
Q: What is my Logon ID?
A: Your Logon ID did not change. Use the same Logon ID you used before you enrolled in Enhanced Authentication.
Q: What is my Security Code (password)?
A: Your Security Code (password) did not change. Use the same code you used before you enrolled in Enhanced Authentication.
Q: I selected my image and phrase, but I don't see the phrase. Where is it?
A: The image is in a "picture frame". The phrase is shown at the bottom of the frame.
Q: I share my computer with someone who has their own financial institution membership. Can both of us use the same computer to access our Home Banking/Bill Payment site?
A: Yes, you can register more than one member's accounts on the same computer.
Q: Can I register for Enhanced Authentication on more than one computer?
A: Yes. You can register your Home Banking/Bill Payment accounts on more than one computer. If you are using a computer that is accessed by numerous users (i.e. at a library), we recommend that you do NOT register your account on that computer.
Q: What happens if someone compromises my Home Banking/Bill Payment password? How will Enhancded Authentication prevent them from accessing my financial institution accounts with Home Banking/Bill Payment?
A: If someone tries to log onto your Home Banking/Bill Payment account from a computer that you did not register for Enhanced Authentication, they will be challenged to answer one of your Challenge Questions. Since they will not be able to answer the question correctly, they will not be able to log on.
Q: Can I change the image or questions I established when I enrolled for Enhanced Authentication?
A: Yes, you can change your image, phrase, or challenge questions at any time. Simply click the Enhanced Authentication linkin the left menu bar.
Q: I tired to log on to Home Banking/Bill Payment from my own computer, but cannot see my image and phrase. Instead, I'm being asked to provide the answer to a Challenge Question. Why is this happening?
A: This might happen if you deleted cookies from your computer. Before answering the challenge question or entering your password, make sure you are accessing the Home Banking/Bill Payment web site. The easiest way to ensure this is by typing http://www.hawaiifirstfcu.com into your browsers address window, and then clicking the "Online Access" link. The answer to your Challenge Question and verify that the image and phrase shown is the one you selected.
Q: Where can I find information to help me configure my browser to work with Enhanced Authentication?
A: See Browser Checklist
Q: Can I un-register a computer from Enhanced Authentication?
A: In order to un-register a computer, you will need to delete the cookies from your browser, so the information is no longer available to authentication you logon.
Q: Do I have to re-enroll for Enhanced Authentication when I delete cookies on my browser?
A: No, the system uses your computer hardware and software information to recognize you are a valid user. If you delte your cookies, the information is no longer available to authenticate your logon. You will be prompted to answer you Challenge Questions.
Frequently used online identity theft and online security terminology.
A computer software program that detects and responds to viruses and worms, blocking access to infected files and performing frequent updates.
A computer software program that is used to view and interact with Internet material on the World Wide Web. Netscape Navigator and Microsoft Internet Explorer are two of the most popular browsers.
Thieves rummage through trash looking for bills or other paper that includes your personal information.
A process in which data is scrambled before it is transferred so that it cannot be read by unauthorized parties.
Enhanced Security Login
Provides security at login, no matter what computer you sign in from, using additional end user authentication that helps to protect against onine fraud.
A gateway supported by hardware or software that limits access between computer networks. Firewalls can protect your home computer from hackers and your family from web sites that may contain offensive material.
A person who tries to gain unauthorized access to a computer system. Hackers are known to modify computer programs and security systems that protect home and office computers.
The stealing of a peron's financial information, esp. credit cards nad Social Security Number, with the intention of using that data to commit fraud and create a phony persona.
A spyware program or device that records what users type on their computer. Also referred to as Keystroke Logger.
Also known as 'malicious software', malware is designed to harm, attach or take unauthorized control over a computer system. See Virus, Trojan and Worm.
A new software release created to update a computer software program. Updates may include security, performance, or usability enhancements.
Pharming takes place when users type in a valid URL and you are illegally redirected to a web site that is not legitimate in order to capture personal information through the internet such as credit card numbers, bank account information, Social Security number and other sensitive information.
The process of seeking to obtain personal information illegally through email or pop-up messages in orde to deceive you into disclosing your credit card numbers, bank account information, Social Security number, passwords, or other sensitive information.
A form of web advertising that appears as a "pop-up" on a computer screen, they are intended to increase web traffic or capture email addresses. However, sometimes pop-up ads are designed with malicious intent like when they appear as a request for personal information from a financial institution.
A standard policy included on most corporate websites that explains how personal information collected about visitors to a company's site is handled.
A software program that updates, fixes and/or enhances a software program found on your computer, typically delivered in the form of a single, installable package.
When an unauthorized second copy of a credit or debit card is taken by an employee at a store by using a storage device that copies the details held within the card's magnetic strip.
Unsolicited bulk electronic "junk" messages sent to huge numbers of people via email, instant messaging, Usenet newsgroups, and more.
A form of phishing, a way for cyber criminals to send emails that look legitimate, but are not, to falsely represent a legitimate company or organization. The false email from phishing will include a phony link to what closely resembles a legitimate website address. Once clicked upon, the victim is asked to provide personal information which is then forwarded to criminals.
Loaded onto your computer unbeknownst to you, sypware is a type of program that watches what users do and forwards information to hackers over the internet.
A malicious program that is disguised or embedded within legitimate software program that, when activated, unwittingly allows hackers to gain unauthorized access to the computer.
A self-replicating computer program, loaded on to your comptuer without your knowledge that spreads by making copies of itself and clogging up your computer's memory.
Similar to a computer virus, a worm attaches itself to, and becomes part of, another executable program. Able to self-propagate, worms generally harm the network and cosume bandwidth.