Tuning product policy using observed evidence of customer behavior
First Claim
Patent Images
1. A method of determining and enforcing a risk policy on a pay-per-use device, the method comprising:
- collecting and storing operational data at the pay-per-use device, wherein the operational data indicates a metered measurement of usage by a user of the pay-per-use device based on user input by the user to the pay-per-use device, wherein the pay-per-use device includes a processor, memory, and an input and/or output device, and the processor of the pay-per-use device is configured to collect and store the operational data and to perform a local analysis of the operational data;
collecting and storing user financial data reflecting at least one of payment history or credit data associated with the user;
determining a risk factor based on the operational data and the user financial data, the risk factor being associated with the user;
setting the risk policy based on the determined risk factor, the risk policy being determined from a plurality of available risk policies, the risk policy including measurement criteria for collecting measurement data by the pay-per-use device to assess compliance with the risk policy when monitoring subsequent activity at the pay-per-use device, wherein the risk policy includes sanctions for non-compliance with the risk policy; and
collecting the measurement data during the subsequent activity at the pay-per-use device to determine compliance with the risk policy, wherein the collecting of the measurement data is performed according to the measurement criteria, and the collecting of the measurement data is accomplished at a tamper resistant secure component using the processor of the pay-per-use device to determine compliance with the risk policy,wherein the measurement criteria for collecting the measurement data at the pay-per-use device are based on both the operational data collected at the pay-per-use device and the user financial data.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer adapted for pay-as-you go or other metered use has a policy for determined what measurements to take to detect fraud as well as steps to take when fraud is found. To optimize between good performance and sufficient tests to reduce the risk of fraud, a policy is developed based on observation of the users behavior, using data taken at the computer, data from a payment processor or both. After analysis, an updated policy is securely loaded at the computer to determine what, and how often to measure for suspected fraud.
-
Citations
20 Claims
-
1. A method of determining and enforcing a risk policy on a pay-per-use device, the method comprising:
-
collecting and storing operational data at the pay-per-use device, wherein the operational data indicates a metered measurement of usage by a user of the pay-per-use device based on user input by the user to the pay-per-use device, wherein the pay-per-use device includes a processor, memory, and an input and/or output device, and the processor of the pay-per-use device is configured to collect and store the operational data and to perform a local analysis of the operational data; collecting and storing user financial data reflecting at least one of payment history or credit data associated with the user; determining a risk factor based on the operational data and the user financial data, the risk factor being associated with the user; setting the risk policy based on the determined risk factor, the risk policy being determined from a plurality of available risk policies, the risk policy including measurement criteria for collecting measurement data by the pay-per-use device to assess compliance with the risk policy when monitoring subsequent activity at the pay-per-use device, wherein the risk policy includes sanctions for non-compliance with the risk policy; and collecting the measurement data during the subsequent activity at the pay-per-use device to determine compliance with the risk policy, wherein the collecting of the measurement data is performed according to the measurement criteria, and the collecting of the measurement data is accomplished at a tamper resistant secure component using the processor of the pay-per-use device to determine compliance with the risk policy, wherein the measurement criteria for collecting the measurement data at the pay-per-use device are based on both the operational data collected at the pay-per-use device and the user financial data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification