Upload File

global trends in online fraud (2016) · 2017. 10. 6. · accuracy and being able to deal with...

  • Home
  • Documents
  • GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,
11
1 WHITE PAPER | Invisible Challenges: BioCatch’s Game-Changing Technology for Online Fraud Prevention White Paper GLOBAL TRENDS IN ONLINE FRAUD (2016) Use Cases for Behavioral Biometrics in the Banking Industry March 2017

Upload: others

Post on 14-Sep-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

1

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

WhitePaper

GLOBALTRENDSINONLINEFRAUD(2016)UseCasesforBehavioralBiometricsintheBankingIndustryMarch2017

Page 2: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

2

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

TableofContents

ExecutiveSummary..................................................................................................................3

IntroductiontoBehavioralBiometrics&InvisibleChallenges.................................................2

RotationofMovement.........................................................................................................5

SpinningWheel....................................................................................................................6

DisappearingMouse.............................................................................................................7

InvisibleChallenges,InvincibleChallenges...............................................................................8

ResultsandConclusion–LessFriction.LessFraud................................................................10

AboutBioCatch......................................................................................................................11

CopyrightThiscontentiscopyrightofBioCatchTM2017.Allrightsreserved.Anyredistributionorreproductionofpartorallofthecontentsinanyformisprohibitedotherthanthefollowing:

• youmayprintordownloadtoalocalharddiskextractsforyourpersonalandnon-commercialuseonly• youmaycopythecontenttoindividualthirdpartiesfortheirpersonaluse,butonlyifyouacknowledgethe

documentasthesourceofthematerialYoumaynot,exceptwithourexpresswrittenpermission,distributeorcommerciallyexploitthecontent.Normayyoutransmititorstoreitinanyotherwebsiteorotherformofelectronicretrievalsystem.

Page 3: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

3

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

ExecutiveSummary

BioCatchisacybersecuritycompanythatdeliversbehavioralbiometrics,analyzinghuman-deviceinteractions,toprotectusersanddata.BanksandotherenterprisesuseBioCatchtosignificantlyreduceonlinefraudandprotectagainstavarietyofcyberthreats,withoutcompromisingtheuserexperience.OneofthekeyaspectsthatdistinguishesBioCatchasthemarketleaderinbehavioralbiometricsisitspatentportfolio,whichasofthiswritingismadeupof46patents,17ofthemgrantedorpublic.Amongthem,isagroupthatpertaintoacapabilitycalled“InvisibleChallenges™”.InvisibleChallengesrefertoteststhatareinvokedintoanonlinesessionwithouttheuser’sknowledge,butthatelicitsubconsciousresponsesthatcanbeusedtodistinguishafraudsterfromalegitimateuser.Thispowerfulmechanismrepresentsthelatestgenerationoffraudpreventiontools,thataddressestheweaknessoftraditionalapproachesthatrelyonmalwarelibraries,two-factorauthentication,deviceIDandothermeansthatthesophisticatedfraudstersoftodayhavefiguredouthowtocircumvent.InvisibleChallengesalsoseparatesBioCatchfromotherbehavioralbiometricsprovidersthatarefocusedontraditionalkeyboard,mousemovementsandgestureanalysis,intermsofaccuracyandbeingabletodealwithdifferenttypesofreplayattacks,humaninteractionsimulationandadvancedmalwareinjections.

Page 4: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

4

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

IntroductiontoBehavioralBiometrics&InvisibleChallenges

TheBioCatchsystemauthenticatesusersbywhotheyare,ratherthanbywhattheyknow(e.g,passwords,securityquestions).Employingcutting-edgebehavioralbiometrictechnology,thesystemanalyzesmorethan500differentbehavioralpatternsduringasession(post-login)todeterminewhethertheuserisinfactthegenuineuserandnotahuman/non-humanimposter.Theseparametersinclude:

• Cognitivefactorssuchaseye-handcoordination,applicativebehaviorpatterns,usagepreferencesanddeviceinteractionpatterns.

• Physiologicalfactorssuchasleft/righthandedness,press-size,handtremors,armsizeandmuscleusage.

• Contextualfactorssuchastransaction,navigation,deviceandnetworkpatterns.Eachuserprofileisbasedonthe20parametersthataremostuniquetothem.Aftercomparingthesessiondatatothegenuineuser’sprofile,BioCatchprovidesariskscoreinreal-timethatcanbeusedasastandaloneindicatororincombinationwithotherthreatdetectionsystems.Oursolutionisdesignedtoreducefrictionassociatedwithauthentication,savecostsassociatedwithescalationstocost-centersbecauseoffailedauthenticationsandfalsealarmsandreduceoverallfraudbyrecognizingfraudsterbehaviorasopposedtofixedmeansofidentitywhichmaybelost,stolenorcircumvented.Attheheartofwhatmakesthispossiblewithveryhighaccuracy,aretheInvisibleChallenges.Thesearepatentedtechniquesthatintroducesubtletestsintotheonlinesessionthatuserssubconsciouslyrespondtowithoutsensinganychangeintheirexperience.Theresponsecontainsbehavioraldatathatisusedtodistinguisharealuserfromanimposter,whetherhumanornon-human(roboticactivity,malware,aggregator,etc.).ItisimportanttonotethatBioCatch’steamofresearcherstesteachchallengeanditscorrespondingdeviationtodeterminethethresholdatwhichusersnoticeachangeinexperienceonthemobileorwebsite.

Page 5: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

5

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

ThefollowingaresomeexamplesofInvisibleChallenges.NotethatthislistisprovidedsolelyforillustrativepurposesanddoesnotrepresentthefullrangeofInvisibleChallengesthatmaybeemployed.

RotationofMovement

Challenge:Introduceadeviationinthemousemovement.Theexamplebelow(leftimage)showsauserreactingtotheInvisibleChallengebymakingasmallcorrectiontoaright-sidedeviationthatwouldhavemadehimmisshistargetwithoutcompensating.Whengiventhischallengerepeatedly,thisusertypicallymakesonesmallcorrectionata60-80degree(redhook)madeduringthelast10%ofthemovement.Butotherpeopleresponddifferentlytothesamechallenge.Inthemiddleimage,aQAmanagerrespondswithmultiplecorrections(bluelines).Shebeginshercorrectionduringthelast20%ofthemovement.Bothusersreportedthattheydidnotsensethechallengeornoticeanythingdifferentintheuserexperience.Arobot(rightimage)wouldnotneedtocompensateatall,becausesuchmovementdoesnotinvolvehand-eyecoordination.

User1User2Robot

ThisexampledemonstratesaniPadtouchinterfacechallenge-responsebyleveragingadrag-and-dropeffect,withoutanychangetotheuserexperience.Additionalchallengescaninvolvescrolling,swiping,typingandpinching/zooming.

InvisibleChallengesFacts

• Proactiveandpassive• Injectedatspecificpoints

withinasession• Changeeachtimeina

randomizedway• Elicituniquebehavioral

andcognitiveparameters• Donotaltertheuser

experience

Page 6: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

6

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

SpinningWheel

Challenge:Introduceafluctuationinthewaytheselectionwheelspins.Acommonuserinteractionelementinmobileappsisthespinningselectionwheelfordates,time,numbers,etc.Thisisoftenusedwhenenteringinformationsuchasanewdestinationaccountformoneytransactions.BioCatchcollectspassivemeasuresrelatedtospinningthewheel(speed,stoppingstrategy,correctionstowardstheend),butalsointroducessubtlefluctuationsthathelpusseehowtheusersubconsciouslyreacts.

User1 User2

User1:Thechallengeisinjected,andthewheelspinsslowly(notkinetically).Theusercompensatesbyafewlongandcontinuous"pushes"tospinthewheel,andaddstwopowerfulstrokesintheotherdirectionforfine-tuningandfinaltargeting.User2:Thechallengeisinjected,andthewheelspinsslowly(notkinetically).Theusercompensatesbymanysmallandshort"pushes"tospinthewheel.Afterwards,theuseraddsseveralshort,concentratedandpowerfulstrokesinthesamedirectionforfinaltargeting.

Page 7: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

7

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

DisappearingMouse

Challenge:Hidethecursor.Userssearchforthecursor/mouseinverydifferentanduniqueways.Someusewidesearchpatterns,othersusesmallones,somearehorizontalwhileothersarediagonal,andcertainusersalwayssearchcounter-clockwise.Sometimesusersmoveonacertainlearningcurveandtheirresponsesvaryaccordingtotheirlocationonthecurve.Allthesecanbecapturedasuniqueparameters,however,typicallythisisnotpractical,becausethetimerequiredfortheusertoprovideenoughrelevantmousemovementstoaccuratelyauthenticatethemselvesistoolong.InvisibleChallengesunconsciously“forces”theusertomakevariousmousemovementsinaveryshorttime,allowingBioCatchtocaptureadequatedatafromtheuserin500milliseconds.Thismakesitusefulfordetectinganomaliesinuserbehaviorinnearreal-time.Theexamplebelowshows25users,eachwithaslightlydifferentsearchpatternfora

missingcursor.

Page 8: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

8

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

InvisibleChallenges,InvincibleChallenges

Asaclassoftechnologies,behavioralbiometricsoffersdistinctadvantagesoverotherauthenticationmodalities.Itispassive,seamless,worksinthebackgroundanddoesnotrequireactiveenrollment.Ontheotherhand,allthesecharacteristicsalsomakeshighaccuracyhardtoobtain.Intheworldofonlinetransactions,itiscriticaltokeepfalsepositivesanduserfrictiontoanabsoluteminimum,whileensuringveryaccuratefraudalerts.Invisiblechallengesmakethispossible.InvisibleChallengeshelpdeliverthepromiseofbehavioralbiometricsforcontinuousauthenticationandovercomemanyofthechallengesthattraditionalbehavioralandfraudpreventionapproachesdonotaddress:

• Accuracy:Invisiblechallengesgeneratemoredata,whichcannotbecapturedinotherways.ThedatacapturedviaInvisibleChallengesisintimateinthesensethatitdivulgescognitiveandphysiologicalparameters.Intheworldofmachinelearninganddeeplearning,theamountofdataandthequalityofdataiswhatdeterminesaccuracy.InvisibleChallengesnotonlyspeedupthedatacollectionprocess,buttheoveralldetectionandfalsepositiverates.

• RATanddevicespoofingdetection:InvisibleChallengescandetectanunnaturalresponseordelayindicatingaremoteconnectionorVirtualMachineattack;forexample,iftherearetworesponsestoasinglechallenge,thiscanbeindicativeofaRemoteAccessTrojanorManintheBrowserattack.WithBioCatch,thismethodofdetectioncanbedonewithoutanyactiveenrollmentorindexingofthemalicioustool,atanEqualErrorRate(EER)of0%.

• Roboticdetection:Traditionalbotdetectioninvolvesdevicefingerprinting,IP

addressverification,useranalytics,andendupbeingacatandmousegamethatrequireslearningthebehaviorofbotsandclassifyingthemasharmfulornot.InvisibleChallengescircumventsallthisbyrequiringtheusertocompensatesubconsciouslyviahand-eyecoordination.Giventhatbotsareautomatedtools,bynaturetheyignorethechallenges.

Page 9: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

9

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

• Malwaredetection:Traditionalbehavioralapproachestomalwaredetectionsimulateshumaninteractionandcomparesittothemalwareinteractionforagivenactivity.Thisisproblematicbecauseitrequiresthesystemto“know”themalwareandthelearningphasetakessometime.ByusingInvisibleChallengesinarandomizedway,themalwarewillnotknowhowandwhentorespond,anditisthereforenotnecessarytomaintainmalwarelibrarieswhichareinevitablyobsoletethemomenttheyareupdated.Thismethodhashadperfectsuccesstodate.

• Replayattacks:Traditionalbehavioralapproachesrecognizereplayattacksby

comparingthebehaviorinagivensessionagainstthebehaviorinapriorsession.Thisisnotidealbecausereplayattackscontainnatural“noise”whichinvariablymakesthemdifferentfromprevioussessionsbutstillsimilarenoughtobemarkedasvalid.InvisibleChallengesarerandomintiming,intensityandflavor,sonopastactivitycanbeusedtoproducealegitimateresponsetothechallenge,makingBioCatchimmunetoreplayattacks.Seefigurebelow.

• Risk-basedauthentication:Bydefinition,risk-basedauthenticationisamethodofapplyingvaryinglevelsofstringencytotheauthenticationprocessesbasedontheriskprofileofthepersonorthesensitivityoftheapplicationbeingaccessed.BecauseInvisibleChallengesarecompletelytransparenttotheuser,theycanbeintroducedatdifferentjunctures,andindifferentflavors,toincreasetheaccuracyofthedetectionrate.Thismakesiteasytoestablishdifferentbusinessruleswithinanapplication,sothathigherriskactivities,likeaddinganewpayee,changingthe

Page 10: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

10

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

phonenumberfortheaccount,makinglargetransfers,etc.canhavespecificchallengesassignedtotheminarandommanner,whilekeepingfrictionandfalsepositiveslow.

ResultsandConclusion–LessFriction.LessFraud.

Asstatedearlier,maintainingthebalanceofidentifyingrealfraudwhilemaintaininglowfalsealarmratesandlowuserfrictionisthecatch-22forbehavioralbiometricswhicharepassiveinnatureanddonotrequireanactiveenrollment.BioCatchInvisibleChallengesoptimizethisbalance.IntroducingasinglechallengeintoasessioncanlowertheEERofanyby3%;addingmorechallengesdrivesperformanceexponentially1.CriticaltothisisthetiminginwhichtheInvisibleChallengesareinjected.Usingadvanceddatascienceandmachinelearningmethods,thechallengesareintroducedasaformofrisk-basedauthenticationpriortocrucialonlinetaskssuchas:changingpayees,transferringlargesumsofmoney,updatingpersonaldetails,cardactivationanddeactivation.Moreover,challengesmayalsobeinjectedwhenthesystemrequiresmorebehavioraldatatocalculateamoredeterministicriskscore.Thisapproachensuresveryhighdetectionrateswithextremelylow-ratesoffalsepositivesbydefinition,anddifferentiatesBioCatchfromotherbehaviorialbiometricsapproaches,deliveringimmediateresultsandreturnoninvestment,withoutbeinghostagetothecat-and-mousegameoftraditionalfraudpreventionapproaches.

1Thesefiguresarebasedonrealdatacomingfromthe2milliontransactionspermonththataremonitoredby

theBioCatchsystem,togetherwithnumeroussimulatedtransactionexperiments.

Page 11: GLOBAL TRENDS IN ONLINE FRAUD (2016) · 2017. 10. 6. · accuracy and being able to deal with different types of replay attacks ... Employing cutting-edge behavioral biometric technology,

11

WHITEPAPER|InvisibleChallenges:BioCatch’sGame-ChangingTechnologyforOnlineFraudPrevention

AboutBioCatchTMBioCatchisacybersecuritycompanythatdeliversbehavioralbiometrics,analyzinghuman-deviceinteractionstoprotectusersanddata.BanksandotherenterprisesuseBioCatchtosignificantlyreduceonlinefraudandprotectagainstavarietyofcyberthreats,withoutcompromisingtheuserexperience.Withanunparalleledpatentportfolioanddeploymentsatmajorbanksaroundtheworldthatcovertensofmillionsofuserstodate,BioCatchhasestablisheditselfastheindustryleader.Thecompanywasfoundedin2011byexpertsinneuralscienceresearch,machinelearningandcybersecurityandiscurrentlydeployedinleadingbanksande-commercewebsitesacrossNorthAmerica,LatinAmericaandEurope.Formoreinformation,pleasevisit:www.biocatch.com

ContactUs

www.biocatch.com

[email protected]

@biocatch

www.linkedin.com/company/biocatch

BioCatchandInvisibleChallengesaretrademarksofBioCatchLtd.ThisreportreferstoBioCatch'sregisteredpatents:US9069942,US9418221,US9450971,US9477826,US9483292,US9531733,US9531701,US9547766,US9558339.Copyright2017.Allrightsreserved.


Compu training replay

Biometric Recognition Technologies and Biometric Applications

Storage, Replay and Disposal of Digital Evidential Imageslibrary.college.police.uk/docs/APPref/storage-replay-and-disposal.pdf · Storage, Replay and Disposal of Digital Evidential

Biometric Products By WYSE Biometric System

Cyrus: Unintrusive Application-Level Record-Replay for Replay Parallelism

Capture and Replay

EndlessYouTube: Repeat/Loop/Replay YouTube EndlessYouTube: Repeat/Loop/Replay YouTube EndlessYouTube: Repeat/Loop/Replay YouTube

Replay XD Accessories

Project REPLAY

RePlay Magazine

The Growing Adoption of Biometric Technology · 2020. 12. 4. · Hacking Biometric Data • What happens when biometric data is hacked: • Examples of attacks (presentation, replay,

Replay Brochure

Bubba mills replay

RePlay May 2013

CAE Replay - CAE · PDF fileCAE Replay ™ Intelligent recording, easy debriefing Never miss a minute of simulation again. With CAE Replay, there’s no need to hit record. Replay

Biometric information: introduction · Background to biometric ... information on biometric immigration documents (BIDs), ... introduction Background to biometric information enrolment

Record and Replay

Karma: Scalable Deterministic Record-Replay · replay. During Karma's replay, special wakeup messages (like coherence acknowledgment messages) trigger parallel replay of independent

Biometric Indicators 1 Running head: BIOMETRIC … Indicators-An...Biometric Indicators 1 Running head: BIOMETRIC INDICATORS ... passwords. Biometric indicators cannot be easily changed

Deborah leone replay

Orchard Replay

REPLAY Series

RePlay May 2012

CLICK HERE FOR WEBINAR REPLAY - FairWarning · Secure e-mail -- CypherTrust/McAfee Imprivata ESSO w/Biometric Readers HIPAA IT security compliance 2004 ISO 20000 / 27001 standards

RePlay September 2014

DrDebug: Deterministic Replay based Cyclic Debugging with ...ineamtiu/pubs/cgo14wang.pdf · design, experimentation Keywords deterministic replay, execution slice ... replay based

RePlay September 2011

Replay Corporate Profile

MERCEDES BENZ GLC - replaywheel.rureplaywheel.ru/files/media/27deaf0ece2081e95844c9760c674e85.pdf · mercedes benz glc для replay mr4r 8.5x18 replay mr42 7.5x17 replay mr47 8.5x18

Replay Notes

Light Field Based Biometric Recognition and Presentation ...€¦ · Keywords: Biometric Recognition, Biometric Presentation Attack Detection, Biometric Database, Light Field Imaging,

A New Encoding of Iris Images Employing Eight Quantization ... · Computer Engineering Department, Epoka University, Tirana, Albania . Email: {okoc12, auka}@epoka.edu.al . Abstract—Biometric

Employing Replay Connectors for SIEM Operator Education

Replay Troubleshooting

SHINee - Replay