Enhanced Security Notification

On July 23rd, 2017, the bank will be disabling the Transport Layer Security (TLS) protocol 1.0 and 1.1 on our web applications. In short, please update your Operating System and\or Internet Browser to its latest version to access these applications without issue.  

Transport Layer Security (TLS) is a protocol that ensures that a connection to a remote endpoint is securely encrypted in order to provide privacy and data integrity. The banks web applications and application programming interface (API) connections use TLS as a key component of our security. TLS 1.2 is the most current version and is considered to be the most secure. TLS 1.0 and 1.1 are earlier, now less secure versions. This change will affect our web applications such as Retail and Business Internet Banking.

As we enhance our security to align with industry requirements, you will need to verify if your operating systems (OS)  or browsers support TLS 1.2 and upgrade if necessary. If you do not have a compatible OS version or browser after we disable the old versions, you will get a connection warning and\or error when attempting to access our online banking applications.

 

Mobile Banking Users

Mobile banking users who are on older OS versions that do not support TLS v1.2, will need to upgrade their mobile OS version to be able to connect. Mobile users who do not have a compatible OS version will get a connection warning\error when attempting to access Mobile Banking.

If issues are encountered, Mobile Banking users should be advised to upgrade their OS version to compatible versions as noted below:

Users with devices on Android KitKat (Level 20) and above will be able to connect to Mobile Banking.
Users with devices on iOS 8 and above will be able to connect to Mobile Banking.

 

TLS Preparations

To prepare for this change, you will need to ensure that you are using operating systems and browsers that support TLS 1.2. Below is a basic TLS 1.2 compatibility chart.  Please contact the bank if you have any questions.

 

Operating System

Microsoft Windows Server 2008 R2 or higher

Compatible by default

Microsoft Windows Server 2008 R2 or lower

Not compatible with TLS 1.2

Microsoft Windows 7, 8.0, 8.1 and 10

Compatible by default

Microsoft XP/Vista and below

Not compatible with TLS 1.2

 

Browser System

Microsoft Edge

Compatible by default

Microsoft IE Desktop and mobile version 11

Compatible by default

Microsoft IE Desktop  version 9 and 10

Capable when run in Windows 7 or newer, but not enabled by default

Firefox 27 and higher

Compatible by default

Google Chrome 38 and higher

Compatible by default

Mobile Safari versions 5 and higher

Compatible by default

 

How to enable TLS 1.2 in most Internet Explorer Versions:

In the Tools menu, which is displayed by clicking on the gear icon near the top-right corner of an Internet Explorer 10 window, select the "Internet options" menu item, as depicted below:

IE10-Win8-Tools-Menu.png

 

In the Internet Options window that appears, click on the Advanced tab at the top of the window. Scroll down to the end of the list and click in the square check boxes next to "Use TLS 1.1" and "Use TLS 1.2" if they don't already have a check mark in them. For additional security, click in the square check box next to "Use SSL 3.0" if it has a check mark in it to remove the check mark. When complete, the screen should resemble the following, where "Use TLS 1.1" and "Use TLS 1.2" both have check marks in the check boxes next to them while "Use SSL 2.0", "Use SSL 3.0", and "Use TLS 1.0" do not have check marks in the check boxes next to them. Press the OK button to save this change.

 

ie-tls-enable.png

 

How to enable TLS 1.2 in Google Chrome

  1. Open Google Chrome

  2. Click Alt F and select Settings

  3. Scroll down and select Show advanced settings...

  4. Scroll down to the Network section and click on Change proxy settings...

  5. Select the Advanced tab

  6. Scroll down to Security category, manually check the option box for Use TLS 1.1 and Use TLS 1.2


Safari versions 7.0 and above already have TLS 1.2 enabled. No action is necessary.