First allow me to describe the largest security threat: to log onto the Bank of America account you had to insert your actual account number. I’ve dealt with many on-line banking systems and this is the only one that requires the actual account numbers. This alone causes several security risks that a challenge question and picture can not eliminate. First, the account number is being transferred by the computer, so it would be very possible to intercept. Second, I don’t know many people who can remember this number, so they have to use some sort of notation system which could be stolen or even forgotten in shared computer areas.

In addition to this unique log-on information, when you first set up an on-line account Bank of America has to mail you the first password. Then if you forget your password, you are locked out of the system in three tries and have to wait a few weeks for a new password to arrive in paper mail format. These delays are not acceptable to on-line bankers.

While a challenge question isn’t a bad thing, what will happen when someone forgets that they previously wrote? (For example: H.S. instead of high school.) Will this be yet another cause for the online account to be frozen until a paper document is mailed to you? Security is one thing but more than 24 hour delays are another.

It seems like Bank of America isn’t addressing these issues at all, so I doubt that the added security feature will help to make on-line bankers more satisfied with Bank of America.