Skip to main content
U.S. flag
An official website of the United States government
Dot gov
The .gov means it’s official. 
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.
Https
The site is secure. 
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.
INACTIVE
This page is no longer active. Its content has expired or been rescinded by the FDIC.

Authentication in an Internet Banking Environment Frequently Asked Questions

Information Technology / Cybersecurity
August 21, 2006
Summary: The Federal Financial Institutions Examination Council (FFIEC) has published the attached frequently asked questions (FAQs) to assist financial institutions and their technology service providers in conforming with the FFIEC guidance entitled Authentication in an Internet Banking Environment .

Highlights:
  • On October 12, 2005, the FFIEC issued guidance on Authentication in an Internet Banking Environment (see FDIC FIL-103-2005 ).
  • The FFIEC has published the attached FAQs to assist financial institutions and their technology service providers in conforming with the guidance.
  • The FAQs are divided into seven areas and include answers to questions concerning:
    • the scope of the guidance,
    • the time frame for compliance,
    • definitions,
    • risk assessment,
    • customers,
    • technology service providers, and
    • the appendix.

Distribution:
FDIC-Supervised Banks (Commercial and Savings)

Suggested Routing:
Chief Executive Officer
Chief Information Security Officer

Note:
FDIC financial institution letters (FILs) may be accessed from the FDIC's Web site at www.fdic.gov/news/financial-institution-letters/2006/index.html .

To receive FILs electronically, please visit http://www.fdic.gov/about/subscriptions/fil.html .

Paper copies of FDIC financial institution letters may be obtained through the FDIC's Public Information Center, 3501 Fairfax Drive, E-1002, Arlington VA 22226 (1-877-275-3342 or 703-562-2200).

FIL-77-2006
Attachment(s)
FIL-103-2005, "Authentication in an Internet Banking Environment," issued on October 12, 2005
Contact(s)
Senior Policy Analyst Jeffrey Kopchik at or, or Senior Technology Specialist Robert D. Lee at rolee@fdic.gov, (202) 898-3872

Last Updated: August 21, 2006