IronKey Trusted Access for Banking™ FAQ

How does IronKey Trusted Access for Banking™ work and protect my business financial data and transactions?  
IronKey uses a portable USB device to store a tamper-proof virtual environment that runs completely separate of other applications on a computer. When you log on to your O2 Online Cash Management account with the secure IronKey USB device inserted into the computer you are using, it is like having a dedicated PC and protected direct line to your account. The IronKey™ operating system cannot be breached, viewed or tampered with by cyber criminals. You still need to exercise normal precautions related to securing the USB device, your user name and password.

Are there any system requirements for using IronKey™? 
Yes the minimum requirements are:

• 1G memory for Windows XP (32 bit version)
• 2G memory for Windows Vista and Windows 7 (32 bit/64 bit versions)
• Note: Ironkey Trusted Access™ will only work on Windows XP (32 bit version), Vista and 7 (32 bit/64 bit versions)
• USB 2.0 (high speed) port
• Active internet connection

The Secure Browser embedded in IronKey™ supports reading PDF files, Adobe Flash browser plug in and browser JavaScript.  IronKey™ does not require special server hardware or software.
 
Can IronKey™ be used on any computer? 
The IronKey™ device can be used on any computer whose system meets the minimum requirements and has internet connectivity.  We do not recommend the use of public computers available at libraries, internet cafes, etc. for any financial transactions. We also recommend using extreme caution when using public access WIFI services.
 
Does IronKey™ support cookies?  
Once the user unlocks and authenticates their IronKey™ device, IronKey™ Trusted Browser can use stored cookies.

What browser is used in IronKey™?  
Mozilla Firefox 3.x browser is used.

Can I use the IronKey™ device to store encrypted data? 
The IronKey™ device is not intended as a general purpose storage device.

If we have multiple Online Banking users, does everyone have to have their own IronKey™ device?  
All users that have rights to certain Cash Management functions should be required to use the device –this is determined by the rights assigned by your administrator. You can choose to have multiple IronKey devices or a shared device. Users that have view only or do not have external Cash Management rights do not need a device other than their current token. Your in-house Cash Management or IT department needs to determine if all employees use the IronKey™ security device or just those that access the Cash Management transfer capabilities such as wires and ACH.

How do you sign up for IronKey™? 
To sign up for IronKey™, complete and submit the online IronKey™ request for information form and a representative from Old Second National Bank will contact you. You can also call 1-877-866-0202 or stop at any of our convenient branches and request the service.

Is there a cost for this extra level of security? 
Yes, the cost for the peace of mind that IronKey brings to online transaction security is only $10 per month for the first key. Additional keys are $7 per key per month. This can be a hard charged fee or an analysis fee depending on how your monthly account fees are calculated. If any of your employees access Online Banking and do not have external Cash Management transaction capability, the employee can continue to use the security token at no charge.
   
Users that choose to pay for this protection annually will receive a price break.  Contact your O2 banker for more information related to costs of the service.

How do I activate and use IronKey™? 
Once you have submitted your request for IronKey™, we will contact you about delivery and first time set-up and access. At that time you will be provided with instructions on how to get started, how to use your IronKey™ USB device and other useful information.
  
Can the IronKey™ secure device be used to protect connections to any other online sites besides Old Second Online Banking? 
Yes, in addition to our Online Banking site, customers will automatically have the security layer added to all eligible Old Second password protected online services. The only service that cannot be accessed using IronKey™ is Remote Deposit Capture.

Can the IronKey™ device be used to secure other (non-O2) sites that my business wants to have this added layer of security access? 
Yes, for a nominal fee the bank will allow you to select other sites where you might want to have an added layer of security to protect online financial transactions or private information. An example would be if you purchase supplies from Amazon.com. They can be added as a bookmark and be accessed through IronKey™. Please contact your O2 banker for more details.

Can you print when IronKey™ is in use?  
Yes, you can do so by creating a PDF on your desktop which then allows you to print documents.

Can IronKey™ be accessed through a remote access session such as Log-Me-In or PCAnywhere? 
No. If a user is logged in remotely then the IronKey™ Browser will not accept remote keyboard input. The browser will only accept input for the keyboard driver on the PC that has the device inserted. This is by design to ensure a hacker cannot manipulate a session remotely. It is NOT recommended to attempt to use this device through remote sessions.

What happens if the IronKey™ Trusted device is lost or stolen? 
If the device is lost or stolen:

• the device will self-destruct after a set number of failed log in attempts.
• the device will self-destruct if someone tampers with it by trying to access the internal chip.
• the device can be remotely destroyed by the bank if we are alerted to the lost or stolen status.
• the device location or attempted use can be tracked by the bank to determine the approximate location.

Immediately contact the bank if the IronKey™ device is lost or stolen.

Is there a charge for replacing a lost, stolen, or damaged IronKey™ Device?  
Yes, there may be a charge.  Please ask your banker for a fee schedule related to this service.