Online Security
In its continued efforts to further enhance security while logging onto HBZweb, HBZ offers its clients multiple security options for accessing and transacting online. Some security features such as receiving an SMS every time your account is accessed or entering a challenge are set as defaults whilst others are required for certain types of transactions and/or are optional.
This ensures that eBanking customers have multiple levels of security to protect their information and puts the power of access only in the hands of the user. You choose the level and complexity of your security, so you are assured of a secure banking session. Be sure to read the Security Advisory on the login page as well.
Details
In order to further enhance security while logging onto HBZweb a “challenge” code has been introduced. A dynamically generated 5-digit challenge embedded in a graphic background is displayed whenever the HBZweb login screen appears on a user’s browser. In addition to the Login ID, password and the optional secure key, the use has to enter the challenge digits displayed in the specified field. This feature enhances security as the challenge image is only visible to human eyes and given it refreshes every time the login screen appears, it prevents automated processes from guessing HBZweb passwords.
Welcome to the world of secure convenience with HBZsecure Key. Apart from 128 bit security, the highest level of security on the web today, to commercial and proprietary firewalls and User Name and Password protection, the Bank has developed an unique HBZSecure Key that works in combination with existing HBZweb banking User Names, Passwords and Challenge Mechanisms.
HBZsecure Key is a security key, which is provided in a USB. Each USB is specially configured for the customer account with a Very Long Variable Password (VLVP). Once a client has this proprietary “Key”, they can access their accounts and make real time transfers, access other services, etc. from any computer that has Internet access.
To apply for a HBZsecure Key, login to your HBZweb account and select “Request for HBZSecure Key”.
An authentication process called HBZotp (One Time Password) for its HBZsecure Key users was introduced in order to further enhance security for HBZweb transactions such as HBZcms, HBZwps, etc.
Every HBZweb subscriber currently using a HBZsecure Key must register either their mobile number or email ID. Upon logging-in with the HBZsecure Key, a “one time password” (HBZotp) is sent via SMS, email or both depending upon the subscription selection, for each session log-in. This OTP will has to be entered before accessing services such as HBZcms, HBZwps, etc. Each SMS or email will contain an OTP as well as a reference number for the individual session and will also be displayed on the screen. This will allow the user to match the OTP with the correct session. Each OTP will be valid for 90 seconds only.
HBZotp is mandatory for transactional services. To subscribe to this service, download the application form by selecting “Download Request Form” from the option selection menu once you, have logged into your HBZweb account.