|
As a recognized leader in providing technology
solutions to clients, Northern Trust continually evaluates the latest
developments and strives to implement the latest in security technologies.
We constantly review processes and procedures to ensure that the
highest standards of controls and security are in place. Your account
information is managed in a physically secure, state of the art
data center. We have incorporated techniques to ensure that your
account information is secure in transit between your computer and
our data center. The information below summarizes the security framework
in place and also summarizes your responsibilities as a user of
Northern Trust Private Passport.
Your Computer
Northern Trust Private Passport requires
that you use an SSL (Secure Sockets Layer) compliant browser. SSL
is a protocol that allows your personal computer to establish a
secure connection to our Internet server. We recommend the use of
Netscape Navigator Version 4.06 or higher or Microsoft Internet
Explorer Version 4.0 or higher set for 128 bit encryption. SSL uses
encryption techniques that turn all information transmitted into
a series of unrecognizable numbers as the information travels through
the Internet. Our servers turn the meaningless numbers into recognizable
information after the secure connection has been made. You can recognize
if your session is encrypted by looking for the KEY symbol in the
lower left corner of your screen in Netscape Navigator, or when
the PADLOCK symbol appears in Internet Explorer. SSL also utilizes
the additional protection of a digitally signed certificate that
assures you that you are communicating with the Northern Trust.
Cookies
Northern Trust Private Passport utilizes
"cookies." Cookies are small pieces of information that are sent
from Northern Trust Private Passport to your browser. The software
we use to run our web sites requires the use of cookies, but these
cookies do not collect personally identifiable information. Instead,
they are used to ensure secure online service while visiting our
sites. The cookies only can be read by Northern Trust's web sites
and disappear from your computer once you close your Web browser.
Establishing a Session with the Server
Once a secure connection is made between
your personal computer and Northern Trust's server, you will be
prompted for a valid User ID and Password. The first time you sign
on to Northern Trust Private Passport, you will be required to change
the initial password provided to you during enrollment. Although
we require you to select a six character password, we recommend
a password length of at least eight characters. You must have at
least one numeric character in your password. All numeric passwords
are not allowed. We also recommend that you change your password
often, with an interval of no more than 30 days between password
changes. As additional security precautions, after 15 minutes of
inactivity you will be required to re-enter your password and a
limit is placed on the number of invalid sign on attempts. Three
consecutive logon failures will result in suspension of your User
ID requiring you to contact the Northern Trust Private Passport
Help Desk for assistance.
The Server
After you have entered your User ID and Password,
we will authenticate your sign on information and pass your request
to the Northern Trust Private Passport server. This server is protected
by firewall technology. The firewall protects the server against
unwarranted intrusion and ensures that only approved customer requests
are processed. Both the firewall and the server are in physically
protected locations. All activity on both platforms is logged and
monitored to ensure that no attempts have been made to breach security.
After your request is processed by the
Northern Trust Private Passport server, the information is encrypted
and returned via the Internet to your personal computer.
Additional Security Tips
The following tips will further ensure secure
usage of Northern Trust Private Passport:
- Always keep your User ID and Password confidential.
Do not use information for your password that can be easily guessed
or ascertained, such as birth date, phone number, children/pets
names, month of the year, social security number, or address
- Never leave your computer unattended while
using Northern Trust Private Passport
- Always properly exit the system by clicking
on Sign Off located on each page upon completing use of Northern
Trust Private Passport
- Close your browser when you are finished using
Northern Trust Private Passport to ensure that others cannot see
your account information
- Use virus protection software regularly. Do
not allow a virus to remain on your computer while accessing Northern
Trust Private Passport
Your attention to these simple security provisions plus our commitment
to providing the most secure environment possible, will ensure that
you can use Northern Trust Private Passport with complete confidence.
We look forward to continuing to serve your financial services needs
now and in the future.
|
