Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving (i) audio data that encodes a spoken natural language query, and (ii) environmental audio data, obtaining a transcription of the spoken natural language query, determining a particular content type associated with one or more keywords in the transcription, providing at least a portion of the environmental audio data to a content recognition engine, and identifying a content item that has been output by the content recognition engine, and that matches the particular content type.

Abstract: A telephone fraud prevention system is provided. A fraud application server is in communication with a fraud database and a switch that determines which calls are sent to the fraud application server. A policy function may be integrated with existing fraud detection and correlation systems. When a call is originated and authentication fails, whether that's through a PIN, voice recognition, etc., the fraud application server sends a message indicating that this customer has failed to authenticate. After a number of authentication failures, evidence of high-risk calling is determined. Instead of reactively dealing with the fraud, the risk has been captured at the fraud application server and the switch blocks potential damage from that call and from that user.

Abstract: A network assurance analytics (NAA) system and method is disclosed. The NAA can be part of a risk analytic for telecom (RAFT) program. The NAA system is configured to monitor telecommunications networks, detect errors or fraud in those telecommunications networks, and provide solutions to resolve the errors or reduce the fraud. Traffic of a telecommunications network is electronically monitored for at least one pattern that is indicative of a telecommunications anomaly. Based on a set of a set of telecommunications profiles stored in a database, a model score representing a value of the telecommunications anomaly is generated. A solution for the telecommunications network to reduce the model score associated with the telecommunications anomaly is then generated for execution on the telecommunications network.

Abstract: An approach provides detection of unauthorized use of data services. The number of data calls for access to a data network is tracked over a predetermined time period, and the cumulative duration of the data calls is determined. Thereafter, a determination is made as to whether the number of the data calls and the cumulative duration satisfy, respectively, a first threshold and a second threshold. A potential fraudulent use of the account is determined, if the thresholds are satisfied.

Abstract: A communication system providing a multimedia service that informs a calling terminal that a communication sent from the calling terminal to a called terminal is undesired by the called terminal.

Abstract: A facility for blocking telephone calls is described. The facility is implemented by a telecommunications system that manages assigned and unassigned telephone numbers. The facility determines that a call originator has made two telephone calls to two different unassigned telephone numbers. The facility adds the call originator to a blacklist for a default time period. If the call originator calls any managed telephone number during the default time period, the facility renews the default time period. After the default time period expires, if the call originator makes additional telephone calls to other unassigned telephone numbers, the facility adds the call originator to the blacklist for a time period that is increased from the default time period. The facility increases the time period with each additional call to an unassigned telephone number. Accordingly, the time period is a function of the number of unassigned telephone numbers called by the call originator.

Abstract: A system and method for profitably operating communications services may include providing a service plan inclusive of at least a portion of the communications services being unlimited for a user. A computing system may collect usage data of the user during a time period associated with the unlimited portion of the service plan. The computing system may determine whether the usage data is indicative of the user using the communications services in violation of service terms and conditions associated with the unlimited portion of the service plan. The computing system may perform an action in response to determining that the user is in violation of the terms and conditions.

Abstract: Embodiments of the invention provide a system and method for providing call connections between a calling party and a verified called party. A person-to-person account is identified for the called party. An answering party is prompted to provide identification information. The identification information is compared to data in the person-to-person account. The call connection is not completed unless the called party's identity is verified.

Abstract: A computer-implemented method to detect scam on a communications device is described. An incoming communication is detected at the communications device. A determination is made as to whether a requested response message is detected. The requested response message is analyzed to determine whether the message is suspicious. A response message to the incoming communication is detected. The response message is blocked based on a determination that the requested response message is suspicious.

Abstract: A network assurance analytics (NAA) system and method is disclosed. The NAA can be part of a risk analytic for telecom (RAFT) program. The NAA system is configured to monitor telecommunications networks, detect errors or fraud in those telecommunications networks, and provide solutions to resolve the errors or reduce the fraud. Traffic of a telecommunications network is electronically monitored for at least one pattern that is indicative of a telecommunications anomaly. Based on a set of a set of telecommunications profiles stored in a database, a model score representing a value of the telecommunications anomaly is generated. A solution for the telecommunications network to reduce the model score associated with the telecommunications anomaly is then generated for execution on the telecommunications network.

Abstract: Systems, methods, and programs for generating an authorized profile for a text communication device or account, may sample a text communication generated by the text communication device or account during communication and may store the text sample. The systems, methods, and programs may extract a language pattern from the stored text sample and may create an authorized profile based on the language pattern. Systems, methods, and programs for detecting unauthorized use of a text communication device or account may sample a text communication generated by the device or account during communication, may extract a language pattern from the audio sample, and may compare extracted language pattern of the sample with an authorized user profile.

Abstract: A method for dynamically updating a model is described. The method includes accessing a model that specifies expected characteristics for a transaction. The model includes variables associated with fraud. The method also includes receiving at least one value for each of the variables while monitoring transactions, and updating a distribution of values for each variable based on the received value. The received value is compared with the updated distribution to determine a deviation from a threshold value associated with a percentile of the updated distribution that is indicative of fraud.

Abstract: A method of operating a network server, for a network comprising a plurality of wireless mobile routers is provided. Each mobile router comprises a wide area network wireless interface to access a cellular network provided by a predetermined cellular service provider and is operable to upload and download data via the cellular network. Each mobile router is operable to monitor the uploaded and downloaded data to generate usage. The method comprises: selectively coupling the server to the plurality of mobile routers via the cellular network; receiving from each of the mobile routers the corresponding usage data; operating the server to access billing data from the service provider for each mobile router; and comparing the usage data for each mobile router to corresponding billing data for each mobile router to determine if there is a billing discrepancy.

Abstract: A method of operating a network server for a network comprising a plurality of wireless mobile routers comprises: selectively coupling the server to a plurality of mobile routers via a cellular network; operating the server to access billing data from a predetermined carrier providing the cellular network for each of the mobile routers; receiving from each of the mobile routers corresponding usage statistical data; comparing the usage statistical data for each mobile router to corresponding billing data for each mobile router to determine if there is a billing discrepancy.

Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving (i) audio data that encodes a spoken natural language query, and (ii) environmental audio data, obtaining a transcription of the spoken natural language query, determining a particular content type associated with one or more keywords in the transcription, providing at least a portion of the environmental audio data to a content recognition engine, and identifying a content item that has been output by the content recognition engine, and that matches the particular content type.

Abstract: A method and device for preventing fraud in collect calls from a domestic origin point to an international terminating point through a long-distance telecommunications system is described. In the system and method, a Screening for International Calls database is added to the call processing platform. This Screening of International Calls database contains records keyed by country codes, and each record has a blocked collect call field listing destination numbers that are blocked from receiving collect calls. When a domestic-to-international collect call is made, the record corresponding to the country code of the international terminating point of the collect call is retrieved from the Screening for International Calls database. This record is checked to determine if the destination number of the collect call matches any destination numbers listed in the blocked collect call field of the country code database record. If there is a match, the call is blocked.

Abstract: Devices, systems, and methods for recording call sessions over a VoIP network using a distributed record server architecture are disclosed. An example recording device for recording segments of a call session includes a record server configured to receive an agent voice data stream and an external caller voice data stream from an agent telephone station, and a file repository configured to store voice data and call data associated with each recorded segment of the call session. The recording device is configured to tag recorded segments of each call session, which can be later used by a third-party application or database to check the status and/or integrity of the recorded call session.

Abstract: A voice recognition system comprises: a voice input unit that receives an input signal from a voice input element and output it; a voice detection unit that detects an utterance segment in the input signal; a voice recognition unit that performs voice recognition for the utterance segment; and a control unit that outputs a control signal to at least one of the voice input unit and the voice detection unit and suppresses a detection frequency if the detection frequency satisfies a predetermined condition.

Abstract: A method of establishing communication including providing a communication by a sending party to a receiving party, and verifying the sending party's identity by a trusted instrumentality. The trusted instrumentality can be at least the sending party communication controller and is usually both the sending and receiving parties' communication controllers. The communication controllers should be certified and preferably be certified by a mutually trusted communication controller certification authority. Also disclosed is a system for establishing communication.

Abstract: Systems, methods, and programs for generating an authorized profile for a text communication device or account, may sample a text communication generated by the text communication device or account during communication and may store the text sample. The systems, methods, and programs may extract a language pattern from the stored text sample and may create an authorized profile based on the language pattern. Systems, methods, and programs for detecting unauthorized use of a text communication device or account may sample a text communication generated by the device or account during communication, may extract a language pattern from the audio sample, and may compare extracted language pattern of the sample with an authorized user profile.

Abstract: Improved indexing of telephony sessions is achieved by: (a) receiving, during the recording of the telephony session or during a playback of the recording, an indication including parameters which identify a discrete segment of the recording as being of interest; and (b) storing, in an index associated with the recording of the session, an identifier which identifies that discrete segment of the recording.

Abstract: A computer implemented method and system is provided for managing false answer supervision (FAS) in a telephony network. A call record recording multiple call events occurring at a terminal gateway is accessed. FAS events originating at the terminal gateway are detected. Suspect illegitimate call events are analyzed based on a combination of conditions. The suspect illegitimate call events are filtered for detecting events suspected of FAS. The FAS events are confirmed after discounting the suspected FAS events based on whether a proportion of the suspected FAS events is within a FAS threshold. A statistical inference of current behavior and past behavior of the terminal gateway is inferred. Threshold values are established for acceptable number of FAS events. A non-compliant behavior of the terminal gateway is inferred when the FAS events exceed the established threshold values. A service provider associated with the terminal gateway is notified for remedying the non-compliant behavior.

Abstract: A system and method that may include placing a first telephone call from a data network to a target phone number using a trusted carrier; recording the first telephone call in a reference audio data file; placing a second telephone call from the data network to the target phone number using a suspect carrier; recording the second telephone call in a test audio data file; and comparing the test audio data file to the reference audio data file.

Abstract: The present disclosure provides a method and a system for verifying identity of a user and a system for generating and maintaining verification codes. The method and the system use system-generated caller numbers as verification codes. When an application system needs to verify the identity of a user, the verification system generates a caller phone number and uses a communication switching system to place a call originating from the caller phone number to the user's phone. The user's phone has a caller ID display function to automatically display the caller number, which serves as a user identity verification code. The user provides the received caller number to the application system for user identity verification. No text messaging or other ways of communication is required. The method and the system can achieve reliable user identity verification. A centralized system may support multiple application systems for user identity verification.

Abstract: Revenue leakage is one of the major concerns of telecom operators worldwide. There are several reasons for revenue leakage including frauds, data loss, poor utilization of network infrastructure, and churn. With the growth in subscriber base and increased competition in the market space, the lack of control on revenue leak could potentially affect the profit margins drastically. The operators are ever looking for solutions that could limit the various aspects of the revenue leakage. A system and method for addressing revenue leakage due to data loss in general and incomplete/partial data in particular needs to handle the issues related to the obtaining of additional information so that incomplete/partial data records lead to additional billing opportunity for the operators.

Abstract: A monitoring apparatus and method in a mobile communication system are provided. A WGW receives information relating to a monitored subscriber from a WSS, establishes a monitoring path between the monitored subscriber and a monitoring server, upon request from the WSS, begins to monitor the monitored subscriber upon receipt of a monitoring start request from the WSS, and transmits monitored data to the monitoring server.

Abstract: Systems, methods, and programs for generating an authorized profile for a text communication device or account, may sample a text communication generated by the text communication device or account during communication and may store the text sample. The systems, methods, and programs may extract a language pattern from the stored text sample and may create an authorized profile based on the language pattern. Systems, methods, and programs for detecting unauthorized use of a text communication device or account may sample a text communication generated by the device or account during communication, may extract a language pattern from the audio sample, and may compare extracted language pattern of the sample with an authorized user profile.

Abstract: A method of and system for discovering and reporting the trustworthiness and credibility of calling party number information, such as Automatic Number Identification (ANI) or Calling Number Identification (Caller ID) information, or for inbound telephone calls. The disclosed method entails the use of real time telephone network status and signaling, network data, locally stored data, and predictive analytics. Practice of the disclosed method is neither detectable by nor intrusive to the calling party, and the method can be implemented into existing enterprise, telecommunications, and information service infrastructures.

Abstract: This invention enables people from the at-home viewing or listening audience of any television or radio broadcast to talk with each other to discuss the program's content on the telephone at any time before, during or after a show. In addition to discussion forums based on broadcast and print media content, the system provides premium priced telephone access to people with specific expertise, e.g., sports stars, politicians and a host of other specialists. Income is earned on a per-minute or flat-rate basis and billed to the caller primarily via credit card or their phone bill. Revenue can be derived from the sale of advertisement, e.g., mentions of the sponsor over the telephone during the initial greeting and within conferences, as well as from the licensing of the service to media networks as a value added service.

Abstract: The present invention is a system and method for establishing a secure connection using a public a wireless telephone network. The method utilizes a proxy base station and establishes an encrypted session over the public wireless network between a wireless handset and the proxy base station. The proxy base station further establishes a connection with second communication station such as a landline phone. The proxy base station determines a most secure channel between the base station and the second communication station by consulting a database of channels and associated measures of security.

Abstract: A system, method, and computer readable medium for event driven call generation, comprises, monitoring a database transaction, detecting a suspect pattern in the monitored database transactions, and generating a telephone call based upon the detected suspect pattern.

Abstract: Methods, systems, and products are provided for intermediate message invalidation that include receiving, to an intermediate message validation service, a message to be forwarded to a device to administer at least one value of an attribute of the device; determining, by the intermediate message validation service, that the message is invalid; and terminating, by the intermediate message validation service, the invalid message. Embodiments may also include notifying a system administrator that the message is invalid.

Abstract: One preferred embodiment of the present invention provides a system and method for evaluating the performance of a network interface sub-system of an inter-messaging network of voice mail systems. This preferred embodiment includes a network query device that connects to the inter-messaging network and requests a test data file to be retrieved from a particular voice mail network interface sub-system in the inter-messaging network. The requests for the test data file are generated according to user command. Accordingly, the performance of a network interface sub-system in the inter-messaging network, as represented by the result of the request attempt, is evaluated according to a defined level of performance, such as a preferred time limit. Other systems and methods are also provided.

Abstract: A system and method of telephony resource management and security for monitoring and/or controlling incoming and outgoing calls between an enterprise's end-user stations and a public circuit-switched network and/or a public packet-switched network. A security policy is made up of one or more rules designating at least one action to be performed based on at least one attribute of the incoming or outgoing call. Calls are detected and sensed on the line, trunk and/or cabling, and analyzed to determine attributes associated with each call. Actions are performed based upon the determined attributes, in accordance with the security policy rules.

Abstract: A standalone notification system, including a notification server which generates electronic messages for alerting customers of potentially fraudulent activity on one or more of their financial accounts. Alternatively, or in addition thereto, the notification system may be used to forward transaction code(s) to customers for verification of a request for high risk transaction(s) with respect to a customer's financial account. The transaction code is generated in response to a high risk transaction request and sent to through an identified customer notification means, e.g., e-mail, short message service (“SMS”), facsimile, mobile phone, telephone, etc. The customer must enter the transaction code within a predetermined amount of time in order to verify the high-risk transaction request.

Abstract: Described are computer-based methods and apparatuses, including computer program products, for detecting fraudulent activity on a network. A user utilizes a transmitting device to transmit user requests that are split between a plurality of data centers for processing. The user requests are captured at the data centers. The user requests are unified into a user session. The user session can be analyzed for fraud detection, marketing analysis, network intrusion detection, customer service analysis, and/or performance analysis. If fraudulent activity is detected, then the user can be interdicted to prevent further fraudulent activity.

Abstract: Communication networks and associated methods are disclosed that provide charging for long duration sessions. A charging data system of the communication network receives interim accounting request messages from a network element that is serving a session. The charging data system identifies interim timestamps for the interim accounting request messages, and stores the interim timestamps. After a time period during the long duration session, the charging data system generates a partial CDR. The charging data system then inserts duration information for the long duration session in the partial CDR based on the stored interim timestamps, and transmits the partial CDR to a correlation system. The correlation system may then calculate a total duration for the session based on the duration information in the partial CDR. Even if a start/stop timestamp is not available, the correlation system may estimate the total duration of the session based on the interim timestamps.

Abstract: Communication networks and associated methods and systems are disclosed that provide duration alerting for communication sessions to subscribers. A communication network of the invention comprises a charging system and a network management system. The charging system receives charging information from at least one network node serving a session for a subscriber. The charging system monitors a duration of the session based on the charging information, and processes filter criteria and the duration of the session to determine whether to provide duration alerting for the session. If the charging system determines that duration alerting is proper based on the filter criteria, then the charging system transmits duration alerting information to the network management system. The network management system receives the duration alerting information, and transmits a duration alerting message to the subscriber.

Abstract: A wireless handset configured to be remotely accessed is described. The wireless handset comprises a user interface, a handset memory, a processor, and a software module. The user interface resident on the wireless handset is configured to enable the wireless handset to be remotely controlled with a remote lock password. The handset memory stores the remote lock password. The processor is adapted to receive a remote lock message from another electronic device. The remote lock message comprises a received password and a target phone number. The software module matches the received password with the remote lock password and then proceeds to send at least one call to the target phone number. Additionally, a method for controlling usage of the wireless handset is also described.

Abstract: Inmate communications systems provide a feature-rich platform with a high degree of flexibility and security employing call control facilities located off institutional premises. Authentication processes for calling and called party verification include biometric techniques in some embodiments. Distributed processing of call control and billing provide flexible interactive call payment processes. Preferred embodiments feature voice over IP transmission and control featuring controlled access to avoid addition of unauthorized third-party call participants. Monitoring, recording and selective forwarding of calls is provided under control of system administrators.

Abstract: The likelihood that a called party to a telephone call has forwarded the call to another party, or has conferenced the call to include another party is estimated by requiring that the called party supply a first signal, illustratively a first DTMF signal, later requiring that the called party provide a second signal, illustratively the same DTMF signal provided by the first signal, and comparing characteristics of said first and second signals as received at a telephone network node.

Abstract: A method of identifying fraud in a telecommunications system, the method including receiving data related to a current call placed from an originating ANI to a terminating ANI, where the received data includes the terminating ANI and a billing number used to place the call. Billing numbers for prior calls to the terminating ANI, if any, and corresponding indicia of the times of the calls are retrieved. A determination is made of whether the number of billing numbers used for the current and prior calls to the terminating ANI over a prior period of time falling within a time interval satisfies a threshold. If the threshold is satisfied, a fraud alert is generated.

Abstract: A method, apparatus and computer program product for identifying a geographic location for a source of a call is presented. A central office receives a call from a calling party, the call including a telephone number of the calling party. A geographic location of the calling party is determined from information associated with the calling party. The geographic location is then provided to the called party.

Abstract: Inmate communications systems provide a feature-rich platform with a high degree of flexibility and security employing call control facilities located off institutional premises. Authentication processes for calling and called party verification include biometric techniques in some embodiments. Distributed processing of call control and billing provide flexible interactive call payment processes. Preferred embodiments feature voice over IP transmission and control featuring controlled access to avoid addition of unauthorized third-party call participants. Monitoring, recording and selective forwarding of calls is provided under control of system administrators.

Abstract: A standalone notification system, including a notification server which generates electronic messages for alerting customers of potentially fraudulent activity on one or more of their financial accounts. Alternatively, or in addition thereto, the notification system may be used to forward transaction code(s) to customers for verification of a request for high risk transaction(s) with respect to a customer's financial account. The transaction code is generated in response to a high risk transaction request and sent to through an identified customer notification means, e.g., e-mail, short message service (“SMS”), facsimile, mobile phone, telephone, etc. The customer must enter the transaction code within a predetermined amount of time in order to verify the high-risk transaction request.

Abstract: A method for dynamically updating a model is described. The method includes accessing a model that specifies expected characteristics for a transaction. The model includes variables associated with fraud. The method also includes receiving at least one value for each of the variables while monitoring transactions, and updating a distribution of values for each variable based on the received value. The received value is compared with the updated distribution to determine a deviation from a threshold value associated with a percentile of the updated distribution that is indicative of fraud.

Abstract: Systems for monitoring, storage, and analysis of information in signaling messages, communicated from originating networks to a destination network through one or more intermediate networks are described. Correlation and comparison between signaling messages of interest sent from an origination network to signaling messages received by the destination network allows for the detection of inconsistent information, e.g., information fields in a communicated message that have been altered, either intentionally or unintentionally, by an intermediate carrier. The introduction of an additional communications path over which notification messages are forwarded from signaling monitoring equipment in the origination network to signaling monitoring equipment in the destination network allows for a significant reduction in the memory storage requirements at the destination network and in the amount of processing required to match, compare, and evaluate signaling messages.

Abstract: An apparatus and method are disclosed that enables detecting the spoofing of a telephone number. To validate the identity of a calling terminal, some techniques in the prior art rely on exchanging data that only the legitimate calling system and the called system know about. In contrast, the illustrative embodiment of the present invention validates the identity of the calling terminal by assessing characteristics other than the calling terminal's telephone number, such as the telephone type and the signaling protocol. By using characteristics other than telephone number to validate the identity, the data-processing system of the illustrative embodiment makes it more difficult to spoof a legitimate telephone's number.

Abstract: An approach provides fraud detection in support of data communication services. A usage pattern associated with a particular account for remote access to a data network is monitored. The usage pattern is compared with a reference pattern specified for the account. A fraud alert is selectively generated based on the comparison.

Abstract: A network assurance analytics (NAA) system and method is disclosed. The NAA can be part of a risk analytic for telecom (RAFT) program. The NAA system is configured to monitor telecommunications networks, detect errors or fraud in those telecommunications networks, and provide solutions to resolve the errors or reduce the fraud. Traffic of a telecommunications network is electronically monitored for at least one pattern that is indicative of a telecommunications anomaly. Based on a set of a set of telecommunications profiles stored in a database, a model score representing a value of the telecommunications anomaly is generated. A solution for the telecommunications network to reduce the model score associated with the telecommunications anomaly is then generated for execution on the telecommunications network.