Abstract: The present disclosure describes techniques that facilitate a Governance Regulatory Compliance (C-GRC) controller that is configured to dynamically monitor and collate data associated with an agricultural operation for demonstrating compliance with an agricultural compliance plan. The C-GRC controller may act as a centralized server that dynamically monitors the cycle of agricultural activities for an agricultural product and in doing so, automates the governance of an agricultural compliance plan across a plurality of entities that are each responsible for one or more agricultural activities. The C-GRC controller may detect independent interactions conducted between a complying entity and a participating entity. These interactions may be intended to gather information relating to compliance of a pending task. In doing so, the C-GRC controller may update an agricultural compliance plan accordingly.

Abstract: A system and method for accelerating a disposition of a digital dispute event includes routing a digital dispute event to one of a plurality of distinct machine learning-based dispute scoring models; computing, by the one of the plurality of distinct machine learning-based dispute scoring models, a preliminary machine learning-based dispute inference based on one or more features extracted from the digital dispute event, wherein the preliminary machine learning-based dispute inference relates to a probability of the subscriber prevailing against the digital dispute event based on each piece of evidence data of a service-proposed corpus of evidence data being available to include in a dispute response artifact; and generating the dispute response artifact based on the digital dispute event, wherein the generating includes installing one or more obtainable pieces of evidence data associated with the digital event into one or more distinct sections of the dispute response artifact.

Abstract: A system and method for linking authentication documents to a piece of artwork using blockchain. The method includes maintaining a blockchain with a plurality of computing devices; obtaining one or more documents comprising data corresponding to a piece of artwork; generating a document hash for each of the one or more documents based on text contained in the respective documents; generating a frequency hash based on a light wave frequency; appending a block instance to the blockchain by generating a block address based on the document hashes for the one or more documents, the frequency hash, and an identification of the piece of artwork; and transmitting instructions to a seal coating device, receipt of the instructions causing the seal coating device to apply a seal coating to the piece of artwork and a certificate containing the document hashes for the one or more documents.

Abstract: Disclosed embodiments include identity verification and management services in which users authenticate their identities during an enrollment process, and may access and modify their identity information via a secure portal. The enrollment process includes collecting various identifying data and biometric data of a user. A live interview portion during the enrollment process is used to check the liveness and verify the collected identifying data and biometric data. Once the user is enrolled, the user's identity can be verified for multiple entities using the same enrolled identity, and the user can manage the specific data used to verify their identity with different entities. This provides users with the ability to use their authenticated/verified identity across various industries, markets, locations, and the like, while keeping their identifying data private. Other embodiments may be described and/or claimed.

Abstract: The present disclosure relates to a method for a management node to page a terminal device, and a management node for use in wireless communication network. The method for a management node to page a terminal device includes: receiving a first indication about whether the terminal device shares a subscriber number with another terminal device; checking a second indication about whether the terminal device supports a circuit switching call function; receiving a paging request about the terminal device; and determining whether to respond to the paging request, based on the first indication and based on a result of the operation of checking the second indication. The success rate of the circuit switching call in the wireless communication network may be improved.

Abstract: A method includes an accepting step of causing an information processing apparatus to accept a request for switching a contracted device from a first image forming apparatus to a second image forming apparatus, the contracted device being an image forming apparatus allowed to use contracted consumables accommodating printing materials based on a contract, an enablement-establishing step of causing the information processing apparatus to establish a first enabled state in which the second image forming apparatus is allowed to use a contracted consumables, in response to acceptance of the request, and an enablement-continuing step of causing the information processing apparatus to establish a second enabled state in which the first image forming apparatus is allowed to continuously use the contracted consumables that has been previously used in the first image forming apparatus for a predetermined period, in response to acceptance of the request.

Abstract: A data structure representing the state of courier assignments is described. For each courier assignment, the data structure contains: information identifying a destination location for the courier assignment; information identifying a drop-off protocol specified for the courier assignment, the drop-off protocol specifying a sequence of steps; and, for each of at least some of the steps of the identified drop-off protocol, a representation of compliance evidence collected with respect to the step of the courier assignment. The contents of the data structure are usable to present collected compliance evidence for steps of the drop-off protocol specified for courier assignments among the plurality of courier assignments, either contemporaneously or at later times.

Abstract: One embodiment of a system for automatically generating code for attributes includes a credit bureau data store that stores credit bureau convention information and an attribute generation system that communicates with the credit data store to detect rules associated with respective credit bureaus.

Abstract: A security document with a first security element, which includes a first item of visually recognizable and in particular machine-readable information, and a second security element, which includes a second item of in particular machine-readable information which can be used to verify the first item of information. A method for the authentication thereof is also described.

Abstract: A system for predicting an anomalous request comprises a processor associated with a server. The processor is configured to parse a user profile from a plurality of user profiles to generate a first set of data objects associated with the first user profile. The processor is configured to compare the first set of the data objects to approved data and audit data to generate a second set of data objects with a set of anomalous data indicators for the first user profile. The processor is further configured to process the second set of the data objects through an anomaly learning model to determine a predictive degree of approval associated with the user profile. The processor is further configured to determine to approve, flag or disapprove the user profile based on the predictive degree of approval. The processor is further configured to assign a profile indicator to the user profile.

Abstract: Secure vehicular part communication is described herein. An example apparatus can include a processing resource, a memory having instructions executable by the processing resource, and a vehicular communication component coupled to the processing resource. The vehicular communication component can be configured to, in response to receiving a part public key and a part signature from a part communication component associated with a vehicular part, verify an identity of the vehicular part based on the part signature. The vehicular communication component can be configured to, in response to verifying the identity, generate a vehicular public key. The vehicular communication component can be configured to encrypt vehicular data using the part public key. The vehicular communication component can be configured to provide the vehicular public key and the vehicular data to the part communication component.

Abstract: A method includes an accepting step of causing an information processing apparatus to accept a request for switching a contracted device from a first image forming apparatus to a second image forming apparatus, the contracted device being an image forming apparatus allowed to use contracted consumables accommodating printing materials based on a contract, an enablement-establishing step of causing the information processing apparatus to establish a first enabled state in which the second image forming apparatus is allowed to use a contracted consumables, in response to acceptance of the request, and an enablement-continuing step of causing the information processing apparatus to establish a second enabled state in which the first image forming apparatus is allowed to continuously use the contracted consumables that has been previously used in the first image forming apparatus for a predetermined period, in response to acceptance of the request.

Abstract: Computer-implemented methods, non-transitory, computer-readable media, and computer-implemented systems for blockchain-based payment withholding and agreement signing are described. In one computer-implemented method, an agreement signing transaction submitted by a user is received and used to authorize a payment system to provide a payment withholding service for a payment order of the user in a third-party service system. The agreement signing transaction includes agreement signing information of a tripartite agreement submitted by the user. Withholding verification logic declared in a first smart contract published on the blockchain is invoked to check whether there is a withholding agreement signed between the payment system and the third-party service system on the blockchain. If yes, the tripartite agreement is created that authorizes the payment system to provide the payment withholding service for the payment order for the user and published to the blockchain for certificate storage.

Abstract: A fraud detection as a service system is provided that can be implemented via one or more microservices that can be instantiated on an operation support system and/or business support systems. Each fraud detection microservice instantiated can have one or more fraud detection models and sets of rules for a particular type of incoming data stream or transaction and/or interaction data. In this way, there can be more than one fraud detection microservice operating on the OSS/BSS allowing each fraud detection microservice to be dynamically updated in real time, provide continuous integration and continuous delivery of services, and work with a particular data flow, providing for an optimal fraud detection process.

Abstract: Systems and methods for authenticating handbags using a portable electronic device along with a bilinear convolutional neural network (CNN) model are described. One method includes using a portable electronic device comprising a camera, and a lens-accessory attached to the portable electronic device such that an optical feature of the lens-accessory is positioned in front of the camera. The portable electronic device acquires one or more pictures of a handbag and sends the one or more pictures to a bilinear CNN model via a network asset where an authenticity is determined. The systems and methods disclosed are capable of allowing the portable electronic device to be spaced apart from the handbag while acquiring pictures, and the lens-accessory can be between 10× and 50× magnification.

Abstract: Disclosed herein is a data storage device with storage medium that stores encrypted user content data. A cryptography engine uses a cryptographic key to decrypt the encrypted user content data. An access controller receives, from a user device, a request to register the user device and generates a challenge for a manager device. The manager device is located remotely from the data storage device. The controller sends, to the user device, the challenge for the manager device; receives, from the user device, a response calculated by the manager device to approve the request to register; calculates the cryptographic key based at least partly on the response calculated by the manager device; and creates and stores authorization data associated with the user device. The authorisation data indicates the cryptographic key, to register the user device with the data storage device.

Abstract: An algorithm data store may contain information about a pool of available algorithms (e.g., to improve operation of an industrial asset). A deployment platform may be implemented in an edge portion at an industrial site associated with a live environment executing a current algorithm. A lifecycle manager of the deployment platform may manage execution of the current algorithm in the live environment creating source data. A performance manager may receive an indication of a selected at least one potential replacement algorithm from the pool of available algorithms and manage execution of the at least one potential replacement algorithm in a shadow environment using the source data. The performance manager may then report performance information associated with the at least one potential replacement algorithm. When appropriate, the potential replacement algorithm may replace the current algorithm.

Abstract: The present disclosure discloses a method and system for data ownership confirmation based on encryption. The method comprises following steps: determining whether data is open; and if the data can be open, encrypting, by a data owner, the data by using a private key of the data owner to complete ownership declaration, and ending a process; or if the data cannot be open, determining whether the data is shared; and if the data cannot be shared, encrypting, by the data owner, the data by using a public key of the data owner to complete data protection, and ending a process; or if the data can be shared, proceeding to ownership declaration and protection steps. The method achieves data ownership confirmation, technically ensures proprietary of data ownership, and implements unique ownership of the data owner for the data, laying a foundation for data responsibility, right, and profit allocation.

Abstract: A data structure representing the state of courier assignments is described. For each courier assignment, the data structure contains: information identifying a destination location for the courier assignment; information identifying a drop-off protocol specified for the courier assignment, the drop-off protocol specifying a sequence of steps; and, for each of at least some of the steps of the identified drop-off protocol, a representation of compliance evidence collected with respect to the step of the courier assignment. The contents of the data structure are usable to present collected compliance evidence for steps of the drop-off protocol specified for courier assignments among the plurality of courier assignments, either contemporaneously or at later times.

Abstract: To detect anomalous activity within a multi-provider environment of transactional data, a particular target entity of a plurality of entities, such as a provider, is identified; multiple relationships associated with the multi-provider environment are determined, wherein each relationship is associated with a relationship score, and wherein the relationship score is determined based on a relational proximity criterion satisfied by the relationship; one or more risk scores are generated; a network risk score is generated for the target entity, multiple levels of related entities are identified, and anomalous activity detection is performed based on the network risk score. Anomalous activity and entity relationships are presented in a graph interface.

Abstract: Secure vehicular part communication is described herein. An example apparatus can include a processing resource, a memory having instructions executable by the processing resource, and a vehicular communication component coupled to the processing resource. The vehicular communication component can be configured to, in response to receiving a part public key and a part signature from a part communication component associated with a vehicular part, verify an identity of the vehicular part based on the part signature. The vehicular communication component can be configured to, in response to verifying the identity, generate a vehicular public key. The vehicular communication component can be configured to encrypt vehicular data using the part public key. The vehicular communication component can be configured to provide the vehicular public key and the vehicular data to the part communication component.

Abstract: A user conducts activities, such as researching a product online or visiting a store that sells the product. A user then utilizes a risk analysis system to receive and store user activity data for the user's activities. When a purchase attempt is made with the user's financial account, a merchant sends a transaction request to the risk analysis system. The risk analysis system locates a record for the user and determines whether the product is identified in the user activity data. If the product is identified, the risk analysis system provides a risk score to the merchant indicating that the transaction is unlikely fraudulent. Alternatively, identification of the product provides a positive factor among multiple factors considered in a transaction risk analysis. An absence of the product in the activity can be used as a neutral or negative factor among multiple factors considered in a risk analysis of the transaction.

Abstract: An information presentation system includes an information presentation apparatus, a transmitter attached to a tire and configured to transmit tire ID information for identifying the tire, and a database configured to store tire ID information of tires which are genuine products, and the information presentation apparatus includes a reader configured to perform near field communication with the transmitter, to acquire the tire ID information transmitted by the transmitter, and a controller configured to cause an information presenter to present information indicating that the tire identified with the tire ID information is a genuine product in a case where the tire ID information is stored in the database, and/or cause the information presenter to present information indicating that the tire identified with the tire ID information is a counterfeit product in a case where the tire ID information is not stored in the database.

Abstract: Secure vehicular part communication is described herein. An example apparatus can include a processing resource, a memory having instructions executable by the processing resource, and a vehicular communication component coupled to the processing resource. The vehicular communication component can be configured to, in response to receiving a part public key and a part signature from a part communication component associated with a vehicular part, verify an identity of the vehicular part based on the part signature. The vehicular communication component can be configured to, in response to verifying the identity, generate a vehicular public key. The vehicular communication component can be configured to encrypt vehicular data using the part public key. The vehicular communication component can be configured to provide the vehicular public key and the vehicular data to the part communication component.

Abstract: A method is disclosed for supply chain management, the method comprising: capturing, by a part scanner, a first image of a surface of a part; generating, by the part scanner, a first surface descriptor for the part based on the first image; identifying, by the part scanner, a second surface descriptor that corresponds to a component of the part; generating, by the part scanner, an authentication record for the part based on the first surface descriptor and the second surface descriptor; and storing, by the part scanner, the authentication record in a cryptographically-auditable ledger of a blockchain platform.

Abstract: The disclosed fraud risk scoring tool provides data-driven identification of potential fraud cases. A fraud risk score is determined based at least on a weighted sum of multiple metrics, where weights are determined based on precision or inverse variance and suspension propensity importance, which is indicative of variable importance. An exemplary method includes: receiving and aggregating transaction metrics across customer IDs to produce an aggregated transaction metric data set; determining, for each aggregated transaction metric in the aggregated transaction metric data set, a precision value, a suspension propensity importance, and a scoring weight based at least on one of the precision value and the suspension propensity importance; determining, for each customer ID within the plurality of customer IDs, a risk score based at least on the scoring weights applied to corresponding transaction metrics and a risk priority; and reporting at least one customer ID associated with a selected risk priority.

Abstract: A method for creating a secure data block to validate an information source is disclosed. For example, the method is executed by a processor and includes receiving a story via a user interface, accessing a truth criteria database to identify a truth criteria associated with a category of the story, associating one or more parameters of the story to the truth criteria to create a map between the one or more parameters and the truth criteria, and creating one or more secure data blocks to record the map between the one or more parameters of the story and the truth criteria.

Abstract: The lottery administration entity typically maintains a retail network of terminals that can be used to purchase tickets as well as validate tickets. Each transaction at the retail locations, whether it is purchasing tickets or validating tickets, may be stored in a database or other data store. The data store may be used to search for ticket information, such as when or where a particular ticket was purchased. The stored data may processed in order to generate a risk profile of retailers.

Abstract: Techniques for managing complaints are disclosed. The system may receive complaints submitted by users. A complaint may describe an incident, such as a safety issue or a cheating incident. The system analyzes a set of complaints to identify similar complaints. Upon identifying a threshold number of similar complaints, the system generates an incident report based on the complaints. The system may refrain from generating or submitting any incident report for a complaint if the threshold number of similar complaints have not been received by the system. The system may or may not include information such as the identity of the reporter, the identity of the accused party, or the incident location in an incident report based on threshold criteria.

Abstract: Various embodiments disclosed herein provide for a fraud detection as a service system that can be implemented via one or more microservices that can be instantiated on an operation support system and/or business support systems. Each fraud detection microservice instantiated can have one or more fraud detection models and sets of rules for a particular type of incoming data stream or transaction and/or interaction data. In this way, there can be more than one fraud detection microservice operating on the OSS/BSS allowing each fraud detection microservice to be dynamically updated in real time, provide continuous integration and continuous delivery of services, and work with a particular data flow, providing for an optimal fraud detection process.

Abstract: A system and method for automated anomaly detection in automated disposal decisions of an automated decisioning workflow includes collecting a time-series of automated disposal decision data for a current period from an automated decisioning workflow, wherein the automated decisioning workflow computes one of a plurality of distinct disposal decisions for each distinct input comprising subject online event data and a machine learning-based threat score computed for the subject online event data; selecting an anomaly detection algorithm from a plurality of distinct anomaly detection algorithms based on a type of online abuse or online fraud that the automated decisioning workflow is configured to evaluate; evaluating, using the selected anomaly detection algorithm, the time-series of automated decision data for the current period; computing whether anomalies exist in the time-series of automated disposal decision data for the current period based on the evaluation; and generating an anomaly alert based on the

Abstract: A method for validating tax data of a taxable entity comprises: receiving at a computer processor, payment card transaction records including at least one of a customer identifier, a merchant identifier, and transaction purchase amounts corresponding to entity purchase transactions over a given time period; analyzing the payment card transaction records data to generate one or more spending profiles according to one or more categories of merchants; correlating the entity spending profiles with one or more other aggregated spending profiles representative of historical spending by additional entities whose reported income is within a given range of the entity reported income; comparing the degree of correlation with a threshold and generating a signal indicative of a request for secondary review of a tax filing of the entity when the degree of correlation is below the threshold; and otherwise generating a signal indicative of a validated tax filing of the entity.

Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that a system of the target terminal is modified in response to determining that the machine verification parameters of the target terminal satisfy a first condition, a second condition and a third condition, and displaying on a user interface of the target terminal that, the system of the target terminal is modified.

Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that the target terminal is a fake in response to determining that the machine verification parameters of the target terminal satisfy a first condition, a second condition and a third condition, and displaying on a user interface of the target terminal that the target terminal is a fake.

Abstract: Embodiments of the present disclosure provide a terminal verification method, a terminal device and a computer readable storage medium. The method includes: reading machine verification parameters of a target terminal, determining that the target terminal is incompletely configured in response to determining that the machine verification parameters of the target terminal satisfy a first condition and a second condition, and displaying on a user interface of the target terminal that, the target terminal is incompletely configured. The machine verification parameters of the target terminal include N terminal configuration parameters. The first condition includes abnormally reading the GPU manufacturer parameter and the GPU renderer parameter. The second condition includes normally reading a first group of terminal configuration parameters of the machine verification parameters of the target terminal. The first group of terminal configuration parameters includes (N?2) terminal configuration parameters.

Abstract: Introduced here are threat detection platforms designed to discover possible instances of email account compromise in order to identify threats to an enterprise. In particular, a threat detection platform can examine the digital activities performed with the email accounts associated with employees of the enterprise to determine whether any email accounts are exhibiting abnormal behavior. Examples of digital activities include the reception of an incoming email, transmission of an outgoing email, creation of a mail filter, and occurrence of a sign-in event (also referred to as a “login event”). Thus, the threat detection platform can monitor the digital activities performed with a given email account to determine the likelihood that the given email account has been compromised.

Abstract: A server configured to: read a first content of a data source based on an identifier received from a client, perform an analysis of the first content based on a second content of a data structure responsive to the first content meeting a criterion received from the client, run an analytic on the first content responsive to the first content meeting the criterion, generate a message based on the first content after the analysis and the analytic, generate a rating for the message based on the analysis and the analytic, and present the message based on the rating in an inbox accessible to the client.

Abstract: A method of risk monitoring in online business is disclosed. The method captures parameters of a user request and business data of processing the request by a business processing system; packs the parameters and the business data into an event object; analyzes the event object according to risk monitoring rules; and generates a risk record if a risk is determined to exist in an operation event that produces the business data. The method further determines a risk processing mode according to the risk record and a risk processing configuration, and processes the risk of the operation event in the risk processing mode. Also disclosed is a system for risk monitoring in online business.

Abstract: A method of using browsing activity to identify fraudulent online or virtual applications includes receiving a virtual application over one or more radio frequency links, determining an applicant name on the virtual application, determining an IP address of a source computer from which the virtual application originated, determining an online browsing or search history associated with the IP address, determining whether the online browsing or search history indicates recent Internet searches for the applicant name, and, in response to determining that the online browsing or search history does indicate recent Internet searches for the applicant name, flagging the virtual application as fraudulent and generating an electronic alert indicating that the virtual application is fraudulent to facilitate identifying fraudulent virtual applications for goods or services.

Abstract: A method for determining specific conditions occurring on industrial equipment based upon received signal data from sensors attached to the industrial equipment is provided. Using a server computer system, signal data is received and aggregated into feature vectors. Feature vectors represent a set of signal data over a particular range of time. The feature vectors are clustered into subsets of feature vectors based upon attributes the feature vectors. One or more sample episodes are received, where a sample episode includes sample feature vectors and specific classification labels assigned to the sample feature vectors. A signal data model is created that includes the associated feature vectors, clusters, and assigned classification labels.

Abstract: The invention provides methods and apparatus for detecting when an online session is compromised. A plurality of device fingerprints may be collected from a user computer that is associated with a designated Session ID. A server may include pages that are delivered to a user for viewing in a browser at which time device fingerprints and Session ID information are collected. By collecting device fingerprints and session information at several locations among the pages delivered by the server throughout an online session, and not only one time or at log-in, a comparison between the fingerprints in association with a Session ID can identify the likelihood of session tampering and man-in-the middle attacks.

Abstract: Systems, methods, and other embodiments associated with forecasting customer channel choice using cross-channel loyalty are described. In one embodiment, a method includes accessing historical values for each of one or more loyalty variables for respective customers. The method also includes determining respective loyalty variable predictors for each of the one or more loyalty variables for each customer based on the historical values. In response to a trigger event associated with a given customer, the loyalty variable predictors for the customer are used to estimate a present value of each of the one or more loyalty variables for the customer. The present value of each of the loyalty variables is input to a forecast model that calculates, for each channel, a probability that the customer will make a purchase using the channel. The purchase probabilities are provided for use in selecting a marketing message for the customer.

Abstract: Systems, apparatus, and methods are provided for efficiently authorizing a transaction initiated by a consumer. An authorization can be generated before the consumer actually initiates the transaction. For example, a future transaction can be predicted, and an authorization can be generated for the predicted transaction. In this manner, the authorization can be ready and quickly used when the consumer does initiate the transaction. Previous transactions made by the consumer can be used to predict when the future transaction is likely. In various examples, the authorization can be sent to a specific merchant or to the consumer for use when the consumer initiates the predicted transaction, or saved by an authorization server for use in response to an authorization request from the merchant.

Abstract: Systems and methods for managing concurrent secure elements on a mobile device to coordinate with an application or “app” running on the mobile device and an appropriate communications protocol for conducting transactions using the mobile device include: informing, by the processor, the reader device of a preferred app and a communication protocol usable by the preferred app; receiving, by the processor, information about which apps and communication protocols are supported by a reader for processing a transaction; locating, by the processor, a secure element supporting an app and a communication protocol supported by the reader; channeling the communication protocol for the specific configuration of the app and the supporting secure element; activating the secure element that supports the app; and processing, with the activated secure element, using the supported app and communication channel, the transaction with the reader.

Abstract: The present disclosure provides an authenticity verifying system capable of generating renewed database and updating unlock number upon occurrence of information leak, and comprises product (1) having lock device (11) with infrared ray transceiving unit (12) and keypad (14), and scratch card (13) with password and product serial number provided thereon; a manufacturer's verifying server (2) for verifying product authenticity through a commercial communication network; and an unlock number change device (3) responsive to leak of information stored in server (2) for downloading, from server (2), predetermined password that matches product (1) and renewed unlock number newly matched to the product serial number. Further, the present disclosure provides a method for verifying product authenticity through acquiring an unlock number, and comprises performing an unlock number acquiring process and applying the unlock number acquired to lock device (11) of product (1) to unlock lock device (11).

Abstract: A computer-implemented method of detecting an email spoofing and spear phishing attack may comprise generating a contact model of a sender of emails; determining, by a hardware processor, a statistical dispersion of the generated contact model that is indicative of a spread of a distribution of data in the generated model and receiving, over a computer network, an email from the sender.

Abstract: Examples herein disclose receiving and identifier associated with a first void pantograph and identifying a second void pantograph based on the received identifier. The examples facilitate authentication of the first void pantograph by making available the second void pantograph.

Abstract: The invention provides methods and apparatus for detecting when an online session is compromised. A plurality of device fingerprints may be collected from a user computer that is associated with a designated Session ID. A server may include pages that are delivered to a user for viewing in a browser at which time device fingerprints and Session ID information are collected. By collecting device fingerprints and session information at several locations among the pages delivered by the server throughout an online session, and not only one time or at log-in, a comparison between the fingerprints in association with a Session ID can identify the likelihood of session tampering and man-in-the middle attacks.

Abstract: A method for linking forensic data to transaction history includes: storing a plurality of consumer profiles, each profile including data related to a consumer including a consumer identifier associated with the related consumer and a plurality of transaction data entries, each entry including data related to a payment transaction involving the consumer including transaction data; receiving a forensic profile, the profile including forensic data obtained from a computing device; identifying a correspondence between the received forensic data and transaction data included in the stored transaction data entries to obtain a specific consumer identifier; identifying a specific consumer profile where the included consumer identifier corresponds to the specific consumer identifier; and transmitting at least the transaction data included in one or more transaction data entries included in the identified specific consumer profile.

Abstract: A real-time fraud prevention system enables merchants and commercial organizations on-line to assess and protect themselves from high-risk users. A centralized database is configured to build and store dossiers of user devices and behaviors collected from subscriber websites in real-time. Real, low-risk users have webpage click navigation behaviors that are assumed to be very different than those of fraudsters. Individual user devices are distinguished from others by hundreds of points of user-device configuration data each independently maintains. A client agent provokes user devices to volunteer configuration data when a user visits respective webpages at independent websites. A collection of comprehensive dossiers of user devices is organized by their identifying information, and used calculating a fraud score in real-time. Each corresponding website is thereby assisted in deciding whether to allow a proposed transaction to be concluded with the particular user and their device.