Common use of Base Product Description Clause in Contracts

Base Product Description. The Product without Additional Features is available for the license fees detailed in a signed Quote. Product - RSA Adaptive Authentication Components - Login Risk Based Authentication at Login (web-channel device identification using secure cookies, Flash Shared Objects, device forensics and network forensics including IP geolocation. This can be applied only during account login) Baseline Policy Manager and Risk Models. (One set of policies per institution and generic risk models.) Secondary Authentication: Challenge Questions. (Challenge Questions, including enrollment to collect challenge questions and answers.) RSA eFraud Network Access. (Shared fraud data.) It is understood by the parties that Customer’s access to the eFraud Network shall be contingent on Customer’s agreement to submit nonidentifiable fraud data via log files for inclusion in RSA eFraud Network’s aggregated database and subject to Customer’s ongoing subscription to the Enhanced Support and Data Services. Case Management Module: Provides the Client functionality to track and update Active End User activities that were flagged for follow-up or authentication Description of Additional Features: These components of the Product are available for extra license fees as detailed in a signed Quote. Product – Transaction Monitoring Assessment, analysis and scoring of post-login transactions activities by a Bayesian, self-learning risk engine that leverages both device and behavioral profiling. A case management application allows investigating high risk transactions, marking the fraudulent ones, and feeding feedback into the risk engine. A partial list of such post-login transaction activities includes but is not limited to: transferring funds, making online payments, establishing payees, viewing check images, changing personal information, etc. Product – Mobile Protection The RSA Adaptive Authentication Mobile Protection Module provides strong authentication to end users who access on-line banking applications via a mobile device (i.e. mobile phone, smart phone, iPhone, PDA, Blackberry etc.). This module complements RSA Adaptive Authentication’s web channel protection module. It is powered by the same risk-based authentication technology and provides the Customer with a unique risk model designed to address specific mobile transaction characteristics. By using the Mobile Protection Module, the Customer benefits from multi-channel fraud protection. Service – Authentication Methods OneTime Password (“OTP”). OTP generated by Adaptive Authentication and sent by Customer to the End User. . Out of band phone call. Out-of-band phone call (telephone confirmation using telephone numbers stored in Customer’s systems)feature involves set up costs and fees to make the phone calls (one time third party set up fee; onetime RSA setup fee; fee per phone call). Out-of-band SMS. One Time Password generated by Adaptive Authentication and sent by RSA to end user via SMS. The out-of-band SMS feature involves set up costs and fees to send the SMS (one time third party set up; onetime RSA set up fee; and a per SMS message fee). Out of band (“OOB”) phone call/SMS is provided via third parties and infrastructure not owned/controlled by RSA. Delivery of calls/messages (or the timing of delivery) is not guaranteed. RSA’s warranties and/or indemnities do not extend to nor apply to OOB services. EXHIBIT B Enhanced Support and Data Services Customer acknowledges that the Basic Support Services (as described on the Support Website) are not available for the Product licensed under this Schedule. In addition to then current Enhanced Support Services which will be provided as detailed on the Support Website, the Customer will also receive the Data Services described hereunder.

Base Product Description. The Product without Additional Features is available for the license fees detailed in a signed Quote. Product - RSA Adaptive Authentication – Outseer Fraud Manager Components - Login Risk Based Authentication at Login Assessment, analysis and scoring of login activities (webin the online and mobile channels) by a Bayesian, self-channel learning risk engine that leverages both device identification using and behavioral secure cookies, Flash Shared Objects, device forensics and network forensics including IP geolocation. This can be applied only during account login) Baseline Policy Manager and Risk Models. (One set of policies per institution and generic risk models.) Secondary Authentication: Challenge Questions. (Challenge Questions, including enrollment to collect challenge questions and answers.) RSA eFraud Outseer Global Data Network Access. (Shared fraud data.) It is understood by the parties that Customer’s access to the eFraud Global Data Network shall be contingent on Customer’s agreement to submit nonidentifiable fraud data via log files for inclusion in RSA eFraud Global Data Network’s aggregated database and subject to Customer’s ongoing subscription to the Enhanced Support and Data Services. Case Management Module: Provides the Client functionality to track and update Active End User activities that were flagged for follow-up or authentication Description of Additional Features: These components of the Product are available for extra license fees as detailed in a signed Quote. Product – Transaction Monitoring Assessment, analysis and scoring of post-login transactions activities by a Bayesian, self-learning risk engine that leverages both device and behavioral profiling. A case management application allows investigating high risk transactions, marking the fraudulent ones, and feeding feedback into the risk engine. A partial list of such post-login transaction activities includes but is not limited to: transferring funds, making online payments, establishing payees, viewing check images, changing personal information, etc. Product – Mobile Protection The RSA Adaptive Authentication Mobile Protection Module provides strong authentication to end users who access on-line banking applications via a mobile device (i.e. mobile phone, smart phone, iPhone, PDA, Blackberry etc.). This module complements RSA Adaptive Authentication’s web channel protection module. It is powered by the same risk-based authentication technology and provides the Customer with a unique risk model designed to address specific mobile transaction characteristics. By using the Mobile Protection Module, the Customer benefits from multi-channel fraud protection. Service – Authentication Methods OneTime Password (“OTP”). OTP generated by Adaptive Authentication and sent by Customer to the End User. . Out of band phone call. Out-of-band phone call (telephone confirmation using telephone numbers stored in Customer’s systems)feature involves set up costs and fees to make the phone calls (one time third party set up fee; onetime RSA setup fee; fee per phone call). Out-of-band SMS. One Time Password generated by Adaptive Authentication and sent by RSA to end user via SMS. The out-of-band SMS feature involves set up costs and fees to send the SMS (one time third party set up; onetime RSA set up fee; and a per SMS message fee). Out of band (“OOB”) phone call/SMS is provided via third parties and infrastructure not owned/controlled by RSA. Delivery of calls/messages (or the timing of delivery) is not guaranteed. RSA’s warranties and/or indemnities do not extend to nor apply to OOB services. EXHIBIT B Enhanced Support and Data Services Customer acknowledges that the Basic Support Services (as described on the Support Website) are not available for the Product licensed under this Schedule. In addition to then current Enhanced Support Services which will be provided as detailed on the Support Website, the Customer will also receive the Data Services described hereunder.

Base Product Description. The Product without Additional Features is available for the license fees detailed in a signed Quote. Product - RSA Adaptive Authentication – Outseer Fraud Manager Components - Login Risk Based Authentication at Login Assessment, analysis and scoring of login activities (webin the online and mobile channels) by a Bayesian, self-channel learning risk engine that leverages both device identification using and behavioral secure cookies, Flash Shared Objects, device forensics and network forensics including IP geolocation. This can be applied only during account login) Baseline Policy Manager and Risk Models. (One set of policies per institution and generic risk models.) Secondary Authentication: Challenge Questions. (Challenge Questions, including enrollment to collect challenge questions and answers.) RSA eFraud Outseer Global Data Network Access. (Shared fraud data.) It is understood by the parties that Customer’s access to the eFraud Network shall be contingent on Customer’s agreement to submit nonidentifiable fraud data via log files for inclusion in RSA eFraud Network’s aggregated database and subject to Customer’s ongoing subscription to the Enhanced Support and Data Services. Case Management Module: Provides the Client functionality to track and update Active End User activities that were flagged for follow-up or authentication Description of Additional Features: These components of the Product are available for extra license fees as detailed in a signed Quote. Product – Transaction Monitoring Assessment, analysis and scoring of post-login transactions activities by a Bayesian, self-learning risk engine that leverages both device and behavioral profiling. A case management application allows investigating high risk transactions, marking the fraudulent ones, and feeding feedback into the risk engine. A partial list of such post-login transaction activities includes but is not limited to: transferring funds, making online payments, establishing payees, viewing check images, changing personal information, etc. Product – Mobile Protection The RSA Adaptive Authentication Mobile Protection Module provides strong authentication to end users who access on-line banking applications via a mobile device (i.e. mobile phone, smart phone, iPhone, PDA, Blackberry etc.). This module complements RSA Adaptive Authentication’s web channel protection module. It is powered by the same risk-based authentication technology and provides the Customer with a unique risk model designed to address specific mobile transaction characteristics. By using the Mobile Protection Module, the Customer benefits from multi-channel fraud protection. Service – Authentication Methods OneTime Password (“OTP”). OTP generated by Adaptive Authentication and sent by Customer to the End User. . Out of band phone call. Out-of-band phone call (telephone confirmation using telephone numbers stored in Customer’s systems)feature involves set up costs and fees to make the phone calls (one time third party set up fee; onetime RSA setup fee; fee per phone call). Out-of-band SMS. One Time Password generated by Adaptive Authentication and sent by RSA to end user via SMS. The out-of-band SMS feature involves set up costs and fees to send the SMS (one time third party set up; onetime RSA set up fee; and a per SMS message fee). Out of band (“OOB”) phone call/SMS is provided via third parties and infrastructure not owned/controlled by RSA. Delivery of calls/messages (or the timing of delivery) is not guaranteed. RSA’s warranties and/or indemnities do not extend to nor apply to OOB services. EXHIBIT B Enhanced Support and Data Services Customer acknowledges that the Basic Support Services (as described on the Support Website) are not available for the Product licensed under this Schedule. In addition to then current Enhanced Support Services which will be provided as detailed on the Support Website, the Customer will also receive the Data Services described hereunder.