×

Keystroke analysis

  • US 10,453,066 B2
  • Filed: 07/07/2016
  • Issued: 10/22/2019
  • Est. Priority Date: 07/01/2003
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for authenticating an online session, the method comprising:

  • establishing, by a computer processor of a fraud detection server, a first online session with a remote computing device, the remote computing device configured to establish a second online session for an online transaction, wherein the online transaction involves an electronic form with a plurality of user input fields;

    receiving, by the computer processor of the fraud detection server, a plurality of field data strings from the remote computing device via the first online session, the plurality of field data strings comprising user inputs for the plurality of user input fields;

    for each field data string of the plurality of field data strings;

    identifying, by the computer processor of the fraud detection server, a plurality of ordered alpha-numeric characters in the field data string;

    determining, by the computer processor of the fraud detection server, whether one or more of alpha-numeric characters in the plurality of the alpha-numeric characters are entered with a shift key; and

    calculating, by the computer processor of the fraud detection server, a field data string score based on the determination of whether the one or more of alpha-numeric characters in the plurality of the alpha-numeric characters are entered with the shift key, wherein the field data string score is adjusted to reflect less risk in response to a determination that the one or more alpha-numeric characters are entered with the shift key; and

    calculating, by the computer processor of the fraud detection server, a transaction risk score associated with the online transaction, the transaction risk score calculated using the field data string scores;

    determining, by the computer processor of the fraud detection server, whether the online transaction is potentially fraudulent based on the transactional score; and

    in response to a determination that the online transaction is potentially fraudulent, providing, by the computer processor of the fraud detection server, an indication to the remote computing device that the online transaction is potentially fraudulent.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×