Passive Behavioural Biometric Authentication : A 'Probabilistic'? approach to prevent Online Frauds

Passive Behavioural Biometric Authentication : A 'Probabilistic' approach to prevent Online Frauds

Mastercard estimated that almost half of all login attempts in 2019 were high risk for being fraudulent, and nearly 1 in 5 of new accounts created in 2020 so far are fraudulent on average.

In such a world, authenticating the identity of a user is more crucial than ever. As fraudsters go high-tech, so, too, are the companies seeking to stop them. One such approach is  a connected intelligence approach, which includes multiple layers of authentication solutions, leveraging AI and working together to prevent fraud.

Various Fintech have  developed a range of products that use passive biometrics to help verify good users. Passive Behavioural Biometric Authentication  is centred on probabilistically identifying if a legitimate person is physically present in the interaction. This can happen during account creations, login attempts, and transactions.

There are over 300 distinct signals which can analyze in order to make a determination. These can range from how hard a screen is being pressed to how a person is navigating around their device.

Behavioural Biometrics is a passive frictionless mechanism, this is based on users data from both mobile as well as the web. The data collected from the applications while being used by the user, create a unique signature for every individual user based on how user behaviours. This ,by default ,becomes a multi factor authentication system. The beauty of the system is, it need not restrict solely on the login page, but can reside on every page of the app/web where there is human interaction.

In simple words, the authentication happens on every page from the time the customers enters the web or mobile and exits the web or mobile. In technical terms, this is Continuous authentication for the following :

  • Continuous Authentication: Impersonation frauds on both mobile and web;
  • Impersonation due to password sharing (Cloud, Core banking, E-Commerce etc ..);
  • Step Up Authentication: Multi-Factor Authentication (On top of the second factor);
  • BOT prevention;
  • Fraudulent account creation.

The success of passive biometric authentication solutions “in no way, shape, or form negates the need for active biometrics. Connected intelligence entails coupling the passive biometrics approach to an active one.

When passive biometrics indicate that an interaction has a high probability of being fraudulent, an active challenge can be issued to confirm the identity of the user.

In this way, both approaches are necessary to effectively fight fraud.

(Excerpts from various research papers)

Thanks for posting

回复
Rajul Jain

Director Risk - Head of Supervisory Risk Services at Visa India and South Asia

3 年

Agree - Multi-factor and real time behavioural biometric can assist in detecting anomalies in user transaction pattern but one key aspect which needs to be weighed in would be the kind of data points (e.g. biometrics - face features, fingerprints if any) are collected and its impact from privacy law and retention of such sensitive personal data

Vikram Gidwani

Sales Director- South Asia @ BioCatch | Behavioral Biometrics

3 年

Excellent write up Ram Rastogi....Behavioural Biometrics is most definitely a game changer in the field of Fraud Prevention in Digital Channels. By passively monitoring how a user interacts with his device or application and using AI/ML to process these signals can help identify a fraudulent user with a high degree of probability. In addition to the types of frauds mentioned in your article #behavioralbiometrics technology has evolved to even detect subtle changes in human behaviour to identify Social Engineering Voice scams, which traditional controls cannot. The solution can also be used to detect #moneymules which help in Financial Crime prevention. I expect more and more Banks and FIs to give this technology a serious look, considering the pace at which they are adopting Digital. Add this to the fact that Behaviour Biometrics doesn't add any customer friction (passive monitoring only), makes it a killer propostion.

Interesting. Thanks for sharing.

回复
Joachim Samuelsson

CEO p? Crunchfish AB

3 年

Thanks Ram for an intresting post. In order to increase the security for Crunchfish’s Digital Cash solutions https://www.crunchfish.com/digital-cash/ we have partnered with neoeyed.com to provide the additional security that comes with Behavioral Biometrics. On Wednesday, Crunchfish releases my interview with neoEYED’s CEO and founder Alessio Mauro on behavioral biometrics with digital cash https://youtu.be/F75GG2rEeQQ

要查看或添加评论,请登录

社区洞察