METHOD AND SYSTEM FOR DYNAMICALLY DETECTING ILLEGAL ACTIVITY
First Claim
1. A method for dynamically detecting illegal activity, the method comprising:
- collecting new information, each new information comprising at least an identity of an entity and a type of information;
for each new information;
determining whether there is at least one relation between the new information and at least one previous information stored in a storage module, and if there is at least one relation, adding a logical link between the new information and the at least one of the previous information with which there is the at least one relation;
verifying whether the new information with the at least one previous information sharing the logical link correspond to at least one of a plurality of stored surveillance patterns, and if the new information with the at least one previous information sharing the logical link correspond to at least one of the plurality of stored surveillance patterns, generating a first type of alert for the new information;
assigning a risk factor to each new information, the risk factor being determined based on one or several of the following;
the identity of the entity, the type of information, an amount or the at least one logical link;
verifying whether the assigned risk factor for the new information is above a predetermined threshold, and if the assigned risk factor is above the predetermined threshold, generating a second type of alert for the new information; and
integrating the new information in the storage module, and storing with the new information the logical link and the assigned risk factor.
1 Assignment
0 Petitions
Accused Products
Abstract
The present relates to a method and system for dynamically detecting illegal activity. The method and system collect new information, where the new information comprises at least an identity of an entity and a type of information. For each new information, the method and system determine whether there is at least one relation between the new information and at least one previous information stored in a storage module, and if there is at least one relation, a logical link is added between the new information and the at least one of the previous information with which there is the at least one relation. The method and system further verify whether the new information with the at least one previous information sharing the logical link correspond to at least one of a plurality of stored surveillance patterns, and if the new information with the at least one previous information sharing the logical link correspond to at least one of the plurality of stored surveillance patterns, a first type of alert is generated for the new information. The method and system further assign a risk factor to the new information, and verify whether the assigned risk factor is above a predetermined threshold, and if the assigned risk factor is above the predetermined threshold, generate a second type of alert. The method and system further integrate the new information in the storage module, and storing with the new information the logical link and the assigned risk factor.
42 Citations
15 Claims
-
1. A method for dynamically detecting illegal activity, the method comprising:
-
collecting new information, each new information comprising at least an identity of an entity and a type of information; for each new information; determining whether there is at least one relation between the new information and at least one previous information stored in a storage module, and if there is at least one relation, adding a logical link between the new information and the at least one of the previous information with which there is the at least one relation; verifying whether the new information with the at least one previous information sharing the logical link correspond to at least one of a plurality of stored surveillance patterns, and if the new information with the at least one previous information sharing the logical link correspond to at least one of the plurality of stored surveillance patterns, generating a first type of alert for the new information; assigning a risk factor to each new information, the risk factor being determined based on one or several of the following;
the identity of the entity, the type of information, an amount or the at least one logical link;verifying whether the assigned risk factor for the new information is above a predetermined threshold, and if the assigned risk factor is above the predetermined threshold, generating a second type of alert for the new information; and integrating the new information in the storage module, and storing with the new information the logical link and the assigned risk factor. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for dynamically detecting illegal activity, the system comprising:
-
a communication module for collecting new information, each new information comprising at least an identity of an entity and a type of information; a storage module for storing previous information, the new information, logical links, and surveillance patterns; an analysis module for analyzing for each new information; whether there is at least one relation between the new information and at least one previous information stored in the storage module, and if there is at least one relation, adding a logical link between the new information and the at least one of the previous information with which there is the at least one relation; a risk factor to be assigned to each new information, the risk factor being determined based on one or several of the following;
the identity of the entity, the type of information, and the at least one logical link;whether the new information with the at least one previous information sharing the logical link correspond to at least one of the surveillance patterns, and if the new information with the at least one previous information sharing the logical link correspond to at least one of the surveillance patterns, generating by means of the communication module a first type of alert for the new information; and whether the assigned risk factor for the new information is above a predetermined threshold, and if the assigned risk factor is above the predetermined threshold, generating by means of the communication module a second type of alert for the new information; and an integration module for integrating the new information, the logical link and the assigned risk in the storage module. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
Specification