System and method for evaluating risk in fraud prevention
First Claim
1. A method for providing a risk score to at least one of a plurality of merchants to be used thereby to determine whether to proceed with a not yet completed transaction, the method comprising:
- storing, by one or more computing devices, transaction data related to a plurality of past transactions between a plurality of network devices and the plurality of merchants;
identifying, by the one or more computing devices, as being fraudulent devices those of the plurality of network devices associated in the transaction data with fraudulent or abusive transactions;
identifying, by the one or more computing devices, characteristics common to those of the plurality of network devices that have been identified as being fraudulent devices;
constructing, by the one or more computing devices, a plurality of profiles based on the identified characteristics, wherein each of the profiles comprises one or more of the identified characteristics;
receiving, by the one or more computing devices, new transaction data associated with the not yet completed transaction, wherein the new transaction data includes a value for each of the one or more identified characteristics of each of the plurality of profiles;
identifying, by the one or more computing devices, those of the plurality of network devices that belong to each of the plurality of profiles, wherein, for each of the plurality of profiles, each of the plurality of network devices that belongs to the profile is associated with the value included in the new transaction data for each of the one or more identified characteristics of the profile;
determining, by the one or more computing devices, a portion of those of the plurality of network devices that belong to each of the plurality of profiles that have been identified as being fraudulent devices;
constructing, by the one or more computing devices, the risk score based at least in part on the portion of those of the plurality of network devices that belong to each of the profiles that have been identified as being fraudulent devices; and
providing, by the one or more computing devices, the risk score to at least one of the plurality of merchants.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of determining a risk score indicating a risk that an electronic transaction will involve fraud and/or abuse. The method includes receiving transaction data associated with a not yet completed transaction from a merchant. The transaction data includes one or more characteristics related to the transaction. A profile is selected that identifies network devices each associated with the characteristics and having a device reputation. Next, a profile-based risk factor is determined as a function of a percentage of the network devices having a negative reputation. The risk score is determined as a function of the profile-based risk factor. In some embodiments, a transaction-based risk factor may also be determined. In such embodiments, the risk score is determined as a function of the profile-based and transaction-based risk factors. The risk score is provided to the merchant to be used thereby to determine whether to proceed with the transaction.
-
Citations
24 Claims
-
1. A method for providing a risk score to at least one of a plurality of merchants to be used thereby to determine whether to proceed with a not yet completed transaction, the method comprising:
-
storing, by one or more computing devices, transaction data related to a plurality of past transactions between a plurality of network devices and the plurality of merchants; identifying, by the one or more computing devices, as being fraudulent devices those of the plurality of network devices associated in the transaction data with fraudulent or abusive transactions; identifying, by the one or more computing devices, characteristics common to those of the plurality of network devices that have been identified as being fraudulent devices; constructing, by the one or more computing devices, a plurality of profiles based on the identified characteristics, wherein each of the profiles comprises one or more of the identified characteristics; receiving, by the one or more computing devices, new transaction data associated with the not yet completed transaction, wherein the new transaction data includes a value for each of the one or more identified characteristics of each of the plurality of profiles; identifying, by the one or more computing devices, those of the plurality of network devices that belong to each of the plurality of profiles, wherein, for each of the plurality of profiles, each of the plurality of network devices that belongs to the profile is associated with the value included in the new transaction data for each of the one or more identified characteristics of the profile; determining, by the one or more computing devices, a portion of those of the plurality of network devices that belong to each of the plurality of profiles that have been identified as being fraudulent devices; constructing, by the one or more computing devices, the risk score based at least in part on the portion of those of the plurality of network devices that belong to each of the profiles that have been identified as being fraudulent devices; and providing, by the one or more computing devices, the risk score to at least one of the plurality of merchants. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for providing a risk score to at least one of a plurality of merchants to be used thereby to determine whether to proceed with a not yet completed transaction, the system comprising:
-
one or more data storage devices storing transaction data related to a plurality of past transactions between a plurality of network devices and the plurality of merchants; and one or more computing devices connected to the one or more data storage devices, the one or more computing devices storing computer executable instructions, the one or more computing devices comprising one or more processors configured to execute the computer executable instructions, wherein when the one or more processors execute the computer executable instructions, the computer executable instructions cause the one or more computing devices to; identify as being fraudulent devices those of the plurality of network devices associated in the transaction data with fraudulent or abusive transactions; identify characteristics common to the identified fraudulent devices; construct a plurality of profiles based on the identified characteristics, wherein each of the profiles comprises one or more of the identified characteristics; receive new transaction data associated with the not yet completed transaction, wherein the new transaction data includes a value for each of the one or more identified characteristics of each of the plurality of profiles; identify those of the plurality of network devices that belong to each of the plurality of profiles, wherein, for each of the plurality of profiles, each of the plurality of network devices that belongs to the profile is associated with the value included in the new transaction data for each of the one or more identified characteristics of the profile; determine a portion of those of the plurality of network devices that belong to each of the plurality of profiles that have been identified as being fraudulent devices; construct the risk score based at least in part on the portion of those of the plurality of network devices that belong to each of the profiles that have been identified as being fraudulent devices; and provide the risk score to at least one of the plurality of merchants. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
Specification