Velocity@ocbc

Online Security

Security of Velocity@ocbc

OCBC uses routers, firewalls, intrusion detection systems and secure operating system including Secure Socket Layer (SSL) communication protocol to safeguard your interest. Digital certificate technology is used to ensure transaction privacy, message integrity and server-side authentication. This also serves as an assurance that the website runs legitimately under the care of OCBC Bank.

All connections must pass through at least one router and one firewall to gain access to the server. The firewall checks for the appropriate source address and restricts unauthorised access to the appropriate server.

Additional technical security features include VeriSign digital certificates, 256-bit encryption, one-way hashing of all user passwords and automatic logout after 10 minutes.

Velocity@ocbc is also equipped with two-factor authentication (2FA), an enhanced process to secure your access and use of Velocity@ocbc.

OCBC Business Internet Banking is regularly reviewed and audited by external and internal auditors to ensure that your interest is safeguarded.

Two-factor authentication (2FA)

Two-factor authentication is a security process in which the user provides two means of identification.

One is something memorised i.e. Organisation ID, User ID and password, while the other is typically a physical token which generates a security code or one-time password.

Used in combination, these two factors will provide greater peace of mind in performing banking transactions over the internet.

Check security settings

To check if the page you are accessing is encrypted:

Internet Explorer
(Note : the steps may differ depending on the version you are using)

a) Near the top right hand corner of the url address bar, click on the lock icon.

b) A window will open, presenting the website identification information as velocity.ocbc.com

c) Click on the 'View Certificates' link in the window and ensure that the following appears on the certificate :   

  • Issued to: velocity.ocbc.com
  • Issued by: VeriSign Class 3 International Server CA - G3
  • Validity date : DD/MM/YY to DD/MM/YY

d) Click on the 'Certification Path' tab and ensure that the 'Certificate status' at the bottom is showing 'This certificate is OK.'

e) If the internet connection is not secured, you will get a 'Mismatch Address' error in the window mentioned in point (b). Click on the 'Certificate Error' tab, you will see the reason for the error encountered. Please call us at (65) 6538 1111 (Monday - Friday, 8:30am to 6:00pm, excluding public holidays) to report the error. You will still be able to login to Velocity@ocbc but you will be doing at your own risk.

To check if your internet browser settings are correct in order to access Velocity@ocbc, refer below for steps for the commonly used browsers.

For Internet Explorer

a) Launch your Internet Explorer browser

b) On the browser menu bar, go to “Tools”

c)  Select “Internet Options”

d) Select “Advanced” and scroll down to “Security”

e) Uncheck the options 'Use SSL 2.0', “Use SSL 3.0”

f)  Check the options “Use TLS 1.0” (if available), 'Use TLS 1.1' (if available), 'Use TLS 1.2' (if available)

g) Click 'Apply', then “OK”

h) Close Internet Explorer and re-open it

i)  Access https://velocity.ocbc.com/login.html again


For Chrome

a) Launch your Google Chrome browser

b) Click on menu icon at top right corner of the browser

c) Select 'Settings'

d) Click on 'Show Advance Setting' hyperlink

e) Click 'Change proxy settings''

f) Select 'Advanced' tab

g) Scroll down to 'Security' section  and uncheck the options “Use SSL 2.0”, “Use SSL 3.0”

h) Check the options “Use TLS 1.0”, “Use TLS 1.1” (if available), “Use TLS 1.2” (if available)

i) Click “Apply” then “OK”

j) Close all browser tabs and re-open browser to ensure settings are changed

k) Access https://velocity.ocbc.com/login.html again


For Firefox

a) Launch your Firefox browser

b) Type 'about:config' in address bar

c) You will see a warning message : 'This might void your warranty!'. Click on 'I'll be careful, I promise!'

d) Type 'TLS' in 'Search' bar

e) Under 'Preference Name', select 'security.tls.version.max'. Place mouse cursor under 'Value', right click to 'Modify' and change value to '3' to enable TLS 1.2. Click 'OK'.

f) Under 'Preference Name', select 'security.tls.version.min'. Place mouse cursor under 'Value', right click to 'Modify' and change value to '1' to make TLS 1.0 the minimum required security protocol. Click 'OK'.

g) Close all browser tabs and re-open browser to ensure settings are changed

h) Access https://velocity.ocbc.com/login.html again

Frequently Asked Questions on IBM® Security Trusteer Rapport™

Read more on:

1) How to log ticket or request a callback for installation queries
2) Other frequently asked questions