Fair enough, even when I worked in banking this wasn't required, but alright..

Based on that article the agent to the back end is encrypted or at least can be. If the agent is ON the box then it is likely using the shared memory provider which has no encryption..

CEWII