Citation[]
FFIEC, Authentication in an Internet Banking Environment (Oct. 2005) (full-text).
Overview[]
This guidance addresses why financial institutions should conduct risk-based assessments, evaluate customer awareness programs, and develop security measures to reliably authenticate customers remotely accessing their Internet-based financial services. This guidance applies to both retail and commercial customers and does not endorse any particular technology. Financial institutions should use this guidance when evaluating and implementing authentication systems and practices whether they are provided internally or by a service provider.