Important Information Regarding Your security
Our online banking software provider Q2 is making a change to our online and mobile banking security protocols. They will be officially retiring TLS 1.0 security protocol support on all of our services in order to align with industry best practices and ensure that your data continues to be highly secure.
TLS stands for “Transport Layer Security.” It is a protocol that provides privacy and data integrity between two communicating applications. It’s the most widely deployed security protocol used today,and is used for web browsers and other applications that require data to be securely exchanged over a network.
On May 31, 2018 they will disable the TLS 1.0 encryption protocol, which may prevent you who still use it from using some or all of your online and mobile banking functionality. This means that you may need to upgrade your browsers to disable TLS 1.0 and use TLS 1.1 or higher, but this change will not affect you in any other way.
We will send you more resources and information as they become available to us. Please contact our customer service team at 719-544-6928 (customer service phone number) with any questions or concerns.
We aim for this process to be as smooth and simple as possible. Our primary goal in this effort is to maintain the highest possible security standards and help keep your data secure.
How does this affect accessing Online Banking from my personal computer or smart phone?
Personal computers with an older operating system, or website browsers that have not been updated, may not be able to access Online Banking. Smart phones running older versions of the Android OS and Apple iOS will no longer have access to Online Banking mobile apps.
Does this affect you?
The operating systems and browser versions below are affected:
- Windows Vista and older
- Apple OS 10.8 and older
- Internet Explorer (IE) 7 and older
- Apple iOS 4 and older
- Android 4.4.4 and older
Please make sure your operating system and browser have both been updated to the latest versions.
Q: Why is TLS 1.0 being disabled?
A: Due to the potential for future protocol downgrade attacks and other TLS 1.0 vulnerabilities, TLS will be disabled.
Q: When is this happening?
A: TLS 1.0 is scheduled to be disabled on May 31, 2018.
Q: Who is impacted?
A: Anyone or any third party site trying to access online or mobile banking, this includes our members or any third party site that uses aggregation to access their account through their site.
Q: Why should I care if TLS 1.0 is disabled?
A: Once TLS 1.0 is disabled, the two new supported security protocols will be TLS 1.1 and TLS 1.2. If you are not using at least the minimum supported internet browser on your PC or laptop or Android OS on your mobile device, you will not be able to access online or mobile banking. The following minimum versions support TLS 1.1 and TLS 1.2:
- Google Chrome version 22+
- Mozilla Firefox version 27+
- Safari version 7+
- Internet Explorer version 10+
- Windows 7+
- Android Operating System version 5.0+
- iOS version 9+
Q: What should I do if I am using an unsupported internet browser?
A: You can go to this site, http://outdatedbrowser.com/en, and download the latest version of your browser.
Q: What if I am unable to upgrade the Operating System on my Android device to the minimum support version?
A: In order to access your account on your Android device, you would need to replace your device with a newer one that will support the minimum Android OS. You will still be able to access online banking on your PC with a compatible browser.