DEVICE IDENTIFICATION SYSTEMS

US 20170289188A1
Filed: 03/29/2016
Published: 10/05/2017
Est. Priority Date: 03/29/2016
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a database configured to store, at least, historical device information associated with a user account;

a non-transitory memory configured to store instructions; and

one or more hardware processors coupled to the non-transitory memory, and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising;

receiving transactional data associated with a transaction from a user device, wherein the transactional data comprises network address information associated with the user device and user account information, and wherein the network address information comprises an IPv6 address,determining, from at least the network address information including the IPv6 address, current device information associated with the user device,accessing the historical device information,comparing the current device information to the historical device information, anddetermining, a transaction risk, wherein the transaction risk is determined, at least in part, based on the comparison of the current device information to the historical device information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.

Citations

20 Claims

1. A system comprising:
- a database configured to store, at least, historical device information associated with a user account;
  
  a non-transitory memory configured to store instructions; and
  
  one or more hardware processors coupled to the non-transitory memory, and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising;
  
  receiving transactional data associated with a transaction from a user device, wherein the transactional data comprises network address information associated with the user device and user account information, and wherein the network address information comprises an IPv6 address,determining, from at least the network address information including the IPv6 address, current device information associated with the user device,accessing the historical device information,comparing the current device information to the historical device information, anddetermining, a transaction risk, wherein the transaction risk is determined, at least in part, based on the comparison of the current device information to the historical device information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The system of claim 1, wherein the operations further comprise:
    - comparing the transaction risk to a transaction risk threshold.
  - 3. The system of claim 2, wherein the operations further comprise:
    - determining whether the transaction is fraudulent, wherein the transaction is determined to be fraudulent, at least in part, based on the transaction risk; and
      
      denying, responsive to a determination that the transaction is fraudulent, the transaction.
  - 4. The system of claim 1, wherein the device information comprises an identifier of the device.
  - 5. The system of claim 1, wherein the IPv6 address comprises a device identification component and wherein the current device information is determined, at least in part, with the device identification component.
  - 6. The system of claim 5, wherein determining the transaction risk comprises:
    - identifying the user device with at least the device identification component; and
      
      determining whether the user device is associated with a plurality of user accounts within a threshold time period.
  - 7. The system of claim 6, wherein determining whether the user device is associated with the plurality of user accounts comprises determining whether the plurality of user accounts were logged in from the user device within the threshold time period.
  - 8. The system of claim 1, wherein the network address information comprises a dynamic network address comprising at least location information and the device information is determined from at least the location information.
  - 9. The system of claim 8, wherein the operations further comprise:
    - receiving, from the user device, link information associated with at least one of a device name, an operating system model, an operating system language, a web browser model, a device ID, an advertising ID, a phone number, a location, a specific device, and a device model, wherein the current device information is determined, at least in part, from the link information.
  - 10. The system of claim 9, wherein the operations further comprise:
    - determining, from at least the link information and/or the network address information, a sameness factor, wherein the transaction risk is determined, at least in part, with the sameness factor.
  - 11. The system of claim 9, wherein the operations further comprise:
    - storing a history of the link information, wherein the transaction risk is determined, at least in part, by comparing the link information received to the history of the link information.
  - 12. The system of claim 1, wherein the transactional data further comprises data associated with the transaction and wherein the transaction risk is further determined, at least in part, from the data associated with the transaction.
  - 13. The system of claim 12, wherein determining the transaction risk further comprises, at least in part, comparing data associated with the transaction to historical transaction data.
  - 14. The system of claim 1, wherein the operations further comprise:
    - determining whether the transaction is valid, wherein the transaction is determined to be valid, at least in part, based on the transaction risk, wherein determining whether the transaction is valid comprises comparing the current device information with the user account information.
  - 15. The system of claim 14, wherein the operations further comprise:
    - receiving, from the user device, link information associated with at least one of a device name, an operating system model, an operating system language, a web browser model, a device ID, an advertising ID, a phone number, a location, a specific device, and a device model, wherein the device information is determined, at least in part, from the link information.
  - 16. The system of claim 1, wherein the operations further comprise:
    - determining, from the network address information, a plurality of devices associated with the user device.
  - 17. The system of claim 16, wherein the plurality of devices associated with the user device are devices associated with a router.
  - 18. The system of claim 16, wherein the operations further comprise:
    - accessing a history of the plurality of devices associated with the router; and
      
      comparing the plurality of devices determined from the network address to the history of the plurality of devices associated with the router, wherein the transaction risk is determined, at least in part, by comparing the plurality of devices determined from the network address to the history of the plurality of devices associated with the router.
  - 19. The system of claim 1, wherein the operations further comprise:
    - transmitting, to the user device, a persistent cookie, wherein the transactional data comprises the persistent cookie.
  - 20. The system of claim 19, wherein the network address information comprises a dynamic network address and wherein the current device information is determined, at least in part, from the persistent cookie.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Original Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Inventors
SHAIKH, ZAHID NASIRUDDIN, NARASIMHAN, SRIVATHSAN

Granted Patent

US 10,079,851 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

H04L 2101/659   Internet protocol version 6...

H04L 61/5007   Internet protocol [IP] addr...

H04L 63/1425   Traffic logging, e.g. anoma...

DEVICE IDENTIFICATION SYSTEMS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

DEVICE IDENTIFICATION SYSTEMS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links