System for automated prevention of fraud
First Claim
1. A system for preventing fraud of a web service offered by a service provider at a website, which comprises:
- a fake credential distributor for automatically creating a set of valid but fake credentials to access such website of the service provider and for distributing such set of fake credentials to a plurality of predefined websites;
a fake user database including at least said set of fake credentials;
a real-time monitor connected between any possible user connection to such website and the service provider for real-time monitoring any user login attempt from any origin network location to the website, and for comparing the credentials used in such user login attempt with the set of fake credentials in the fake user database, and if the credentials used in such user login attempt coincide with any fake credential in the fake user database, such origin network location is added to an internal list of tainted connections; and
if there is any other login attempt of a user from an origin network location in said list of tainted connections, said user access request is refused, even when it is using real credentials and such user is redirected to a pre-established webpage not enabling such user to access the web service.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for preventing fraud at a service provider'"'"'s website has a fake credential distributor for creating a set of valid but fake credentials to access such website and distributing such set to a plurality of predefined websites, a fake user database including said set of fake credentials and a monitor for real-time monitoring any user login attempt from any origin network location to the website and comparing the credentials used in such user login attempt with the set of fake credentials in the fake user database. If the credentials used in such a login attempt coincide with any fake credential in the fake user database, such origin network location is added to a tainted connections list; and if there is another login attempt of a user from a network location in said tainted connections list, said user access request is refused even when it is using real credentials.
20 Citations
16 Claims
-
1. A system for preventing fraud of a web service offered by a service provider at a website, which comprises:
-
a fake credential distributor for automatically creating a set of valid but fake credentials to access such website of the service provider and for distributing such set of fake credentials to a plurality of predefined websites; a fake user database including at least said set of fake credentials; a real-time monitor connected between any possible user connection to such website and the service provider for real-time monitoring any user login attempt from any origin network location to the website, and for comparing the credentials used in such user login attempt with the set of fake credentials in the fake user database, and if the credentials used in such user login attempt coincide with any fake credential in the fake user database, such origin network location is added to an internal list of tainted connections; and
if there is any other login attempt of a user from an origin network location in said list of tainted connections, said user access request is refused, even when it is using real credentials and such user is redirected to a pre-established webpage not enabling such user to access the web service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
Specification