US20150032589A1 - Artificial intelligence fraud management solution - Google Patents

Artificial intelligence fraud management solution Download PDF

Info

Publication number
US20150032589A1
US20150032589A1 US14/514,381 US201414514381A US2015032589A1 US 20150032589 A1 US20150032589 A1 US 20150032589A1 US 201414514381 A US201414514381 A US 201414514381A US 2015032589 A1 US2015032589 A1 US 2015032589A1
Authority
US
United States
Prior art keywords
fraud
smart
artificial intelligence
initial
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US14/514,381
Inventor
Akli Adjaoute
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Brighterion Inc
Original Assignee
Brighterion Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US14/454,749 external-priority patent/US9779407B2/en
Priority to US14/514,381 priority Critical patent/US20150032589A1/en
Application filed by Brighterion Inc filed Critical Brighterion Inc
Priority to US14/520,361 priority patent/US20150066771A1/en
Priority to US14/521,386 priority patent/US20150046224A1/en
Priority to US14/521,667 priority patent/US20150046332A1/en
Assigned to BRIGHTERION, INC. reassignment BRIGHTERION, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ADJAOUTE, AKLI
Publication of US20150032589A1 publication Critical patent/US20150032589A1/en
Priority to US14/815,848 priority patent/US20150339672A1/en
Priority to US14/929,341 priority patent/US20160055427A1/en
Priority to US14/935,742 priority patent/US20160078367A1/en
Priority to US14/938,844 priority patent/US20160063502A1/en
Priority to US14/941,586 priority patent/US20160071017A1/en
Priority to US14/956,392 priority patent/US20160086185A1/en
Priority to US14/986,534 priority patent/US10546099B2/en
Assigned to BRIGHTERION INC reassignment BRIGHTERION INC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ADJAOUTE, AKLI
Priority to US16/168,566 priority patent/US11348110B2/en
Priority to US16/184,894 priority patent/US11023894B2/en
Priority to US16/205,909 priority patent/US10929777B2/en
Priority to US16/264,144 priority patent/US20190164181A1/en
Priority to US16/398,917 priority patent/US10846623B2/en
Priority to US16/424,187 priority patent/US20190279218A1/en
Priority to US16/601,226 priority patent/US10977655B2/en
Priority to US16/674,980 priority patent/US10984423B2/en
Priority to US16/677,458 priority patent/US11080793B2/en
Priority to US16/679,819 priority patent/US11080709B2/en
Priority to US17/085,109 priority patent/US11734607B2/en
Priority to US17/153,013 priority patent/US11853854B2/en
Priority to US17/198,473 priority patent/US11748758B2/en
Priority to US17/200,997 priority patent/US20210248612A1/en
Priority to US17/245,116 priority patent/US11481777B2/en
Priority to US17/364,450 priority patent/US11900473B2/en
Priority to US17/364,319 priority patent/US11763310B2/en
Priority to US17/745,941 priority patent/US11972430B2/en
Priority to US17/891,187 priority patent/US11875355B2/en
Priority to US18/453,914 priority patent/US20240046156A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4016Transaction verification involving fraud or risk level assessment in transaction processing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • G06Q10/063Operations research, analysis or management
    • G06Q10/0635Risk analysis of enterprise or organisation activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/03Credit; Loans; Processing thereof

Definitions

  • the present invention relates to automation tools for the application development of fraud management systems, and more particularly to multi-discipline artificial intelligence machines for real-time use on big data.
  • Algorithmic programs are deductive ensembles of successive operations applied in a fixed order. An algorithm brings the computer to repeat, diligently and accurately, long suites of logical operations. However, such programs will neither know how to take any initiative, nor will any ever stray away from a fixed line of march.
  • Algorithmic programmers must always be able to dictate the precise succession of steps that the target machine is to follow. But, can you cannot ask any expert to predict all of the risk events that may befall a company or business in the next day, month, or year. And so it is for every field that requires the use of experts.
  • an artificial intelligence fraud management solution embodiment of the present invention comprises an expert programmer development system to build trainable general payment fraud models that integrate several artificial intelligence classifiers like neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints. These are further integrated by the expert programmers and development system with smart agents and associated real-time profiling, recursive profiles, and long-term profiles.
  • the trainable general payment fraud models are trained with supervised and unsupervised data to produce an applied payment fraud model. This then is applied by a commercial client to process real-time transactions and authorization requests for fraud scores.
  • FIG. 1 is functional block diagram of an artificial intelligence fraud management solution embodiment of the present invention
  • FIG. 2A is functional block diagram of an application development system (ADS) embodiment of the present invention for fraud-based target applications;
  • ADS application development system
  • FIG. 2B is functional block diagram of an improved and updated application development system (ADS) embodiment of the present invention for fraud-based target applications;
  • ADS application development system
  • FIG. 3 is functional block diagram of a model training embodiment of the present invention.
  • FIG. 4 is functional block diagram of a real-time payment fraud management system like that illustrated in FIG. 1 as applied payment fraud model;
  • FIG. 5 is functional block diagram of a smart agent process embodiment of the present invention.
  • FIG. 6 is functional block diagram of a most recent 15-minute transaction velocity counter
  • FIG. 7 is functional block diagram of a cross-channel payment fraud management embodiment of the present invention.
  • FIG. 1 represents an artificial intelligence fraud management solution embodiment of the present invention, and is referred to herein by the general reference numeral 100 .
  • Such solution 100 comprises an expert programmer development system 102 for building trainable general payment fraud models 104 that integrate several, but otherwise blank artificial intelligence classifiers, e.g., neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints. These are further integrated by the expert programmers inputs 106 and development system 102 to include smart agents and associated real-time profiling, recursive profiles, and long-term profiles.
  • artificial intelligence classifiers e.g., neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints.
  • the trainable general payment fraud models 104 are trained with supervised and unsupervised data 108 and 110 to produce a trained payment fraud model 112 .
  • This trained payment fraud model 112 can then be sold as a computer program library or a software-as-a-service applied payment fraud model. This then is applied by a commercial client in an applied payment fraud model 114 to process real-time transactions and authorization requests 116 for fraud scores.
  • the applied payment fraud model 114 is further able to accept a client tuning input 120 .
  • FIG. 2A represents an application development system (ADS) embodiment of the present invention for fraud-based target applications, and is referred to herein by the general reference numeral 200 .
  • ADS 200 comprises a number of computer program development libraries and tools that highly skilled artificial intelligence scientists and artisans can manipulate into a novel combination of complementary technologies.
  • ADS 200 we combined a goal-oriented multi-agent technology 201 for building run-time smart agents, a constraint-based programming tool 202 , a fuzzy logic tool 203 , a library of genetic algorithms 205 , a simulation and planning tool 206 , a library of business rules and constraints 207 , case-based reasoning and learning tools 208 , a real-time interpreted language compiler 209 , a C++ code generator 210 , a library of data compression algorithms 211 , and a database connectivity tool 212 .
  • the highly skilled artificial intelligence scientists and artisans provide graphical and textual inputs 214 and 216 to a user interface (UI) 218 to manipulate the novel combinations of complementary technologies into a declarative application 220 .
  • UI user interface
  • Declarative application 214 is molded, modeled, simulated, tested, corrected, massaged, and unified into a fully functional hybrid combination that is eventually output as a trainable general payment fraud model 222 .
  • trainable general payment fraud model 104 Such is the equivalent of trainable general payment fraud model 104 in FIG. 1 .
  • ADS 200 as a compiler would produce trainable general payment fraud models 220 , and these were more commercially attractive and viable.
  • Database connectivity tool 212 tried to press conventional databases into service during run-time to receive and supply data points in real-time transaction service. It turned out no conventional databases were up to it.
  • ADS 230 is the most recent equivalent of development system 102 in FIG. 1 .
  • ADS 230 assembles together a different mix of computer program development libraries and tools for the highly skilled artificial intelligence scientists and artisans to manipulate into a new hybrid of still complementary technologies.
  • ADS 230 we combined an improved smart-agent technology 231 for building run-time smart agents that are essentially only silhouettes of their constituent attributes. These attributes are themselves smart-agents with second level attributes and values that are able to “call” on real-time profilers, recursive profilers, and long term profilers. Such profilers can provide comparative assessments of each data point with the new information flowing in during run-time.
  • the three profilers can thereafter throw exceptions in each data point category, and the number and quality of exceptions thrown across the breadth of the attributes then incoming will produce a fraud risk score that generally raises exponentially with that number of exceptions thrown.
  • Oracle explains in C++ programming that exceptions provide a way to react to exceptional circumstances (like fraud suspected) in programs by transferring control to special functions called “handlers”.
  • At the top level of a hierarchy of smart agents linked by their attributes are the smart agents for the independent actors who can engage in fraud. In a payment fraud model, that top level will be the cardholders as tracked by the cardholder account numbers reported in transaction data.
  • top level smart agents can call on a moving 15-minute window file that has all the transactions reported to the system in the last 15-minutes. Too much activity in 15-minutes by any one actor is cause for further inspection and analysis.
  • ADS 230 further comprises a constraint-based programming tool 232 , a fuzzy logic tool 233 , a library of advanced neural network algorithms 234 , a library of genetic algorithms 235 , a simulation and planning tool 236 , a library of business rules and constraints 237 , case-based reasoning and learning tools 238 , a data mining tool 239 , a text mining tool 240 , a statistical tool 241 and a real-time file system 242 .
  • the real-time file system 242 is a simple organization of attribute values for smart agent profilers that allow quick, direct file access.
  • the highly skilled artificial intelligence scientists and artisans provide graphical and textual inputs 244 and 246 to a user interface (UI) 248 to manipulate the novel combinations of complementary technologies into a declarative application 250 .
  • UI user interface
  • Declarative application 250 is also molded, modeled, simulated, tested, corrected, massaged, and unified into a fully functional hybrid combination that is eventually output as a trainable general payment fraud model 252 . Such is also the more improved equivalent of trainable general payment fraud model 104 in FIG. 1 .
  • the constraint-based programming tools 202 and 232 limit the number of possible solutions. Complex conditions with complex constraints can create an exponential number of possibilities. Fixed constraints, fuzzy constraints, and polynomials are combined in cases where no exact solution exists. New constraints can be added or deleted at any time. The dynamic nature of the tool makes possible real-time simulations of complex plans, schedules, and diagnostics.
  • the constraint-based programming tools are written as a very complete language in its own right. It can integrate a variety of variables and constraints, as in the following Table.
  • Variables Real, with integer values, enumerated, sets, matrices and vectors, intervals, fuzzy subsets, and more.
  • Temporal (Allen) Constraints Control allows you to write any temporal constraints including Equal, N-equal, Before, After, Meets, Overlaps, Starts, Finishes, and personal temporal operators such as Disjoint, Started-by, Overlapped-by, Met-by, Finished-by, and more.
  • the constraint-based programming tools 202 and 232 include a library of ways to arrange subsystems, constraints and variables. Control strategies and operators can be defined within or outside using traditional languages such as C, C++, FORTRAN, etc. Programmers do not have to learn a new language, and provides an easy-to-master programming interface by providing an in-depth library and traditional tools.
  • Fuzzy logic tools 203 and 233 recognize many of the largest problems in organizations cannot be solved by simple yes/no or black/white answers. Sometimes the answers need to be rendered in shades of gray. This is where fuzzy logic proves useful. Fuzzy logic handles imprecision or uncertainty by attaching various measures of credibility to propositions. Such technology enables clear definitions of problems where only imperfect or partial knowledge exists, such as when a goal is approximate, or between all and nothing. In fraud applications, this can equate to the answer being “maybe” fraud is present, and the circumstances warrant further investigation.
  • Tools 204 and 234 provides twelve different neural network algorithms, including Back propagation, Kohonen, Art, Fuzzy ART, RBF and others, in an easy-to-implement C++ library.
  • Neural networks are algorithmic systems that interpret historical data to identify trends and patterns against which to compare subject cases.
  • the libraries of advanced neural network algorithms can be used to translate databases to neurons without user intervention, and can significantly accelerate the speed of convergence over conventional back propagation, and other neural network algorithms.
  • the present invention's neural net is incremental and adaptive, allowing the size of the output classes to change dynamically.
  • An expert mode in the advanced application development tool suite provides a library of twelve different neural network models for use in customization.
  • Neural networks can detect trends and patterns other computer techniques are unable to. Neurons work collaboratively to solve the defined problem. Neural networks are adept in areas that resemble human reasoning, making them well suited to solve problems that involve pattern recognition and forecasting. Thus, neural networks can solve problems that are too complex to solve with conventional technologies.
  • Libraries 205 and 235 include genetic algorithms to initialize a population of elements where each element represents one possible set of initial attributes. Once the models are designed based on these elements, a blind test performance is used as the evaluation function. The genetic algorithm will be then used to select the attributes that will be used in the design of the final models. The component particularly helps when multiple outcomes may achieve the same predefined goal. For instance, if a problem can be solved profitably in any number of ways, genetic algorithms can determine the most profitable way.
  • Simulation and planning tool 206 can be used during model designs to check the performances of the models.
  • Business rules and constraints 207 provides a central storage of best practices and know how that can be applied to current situations. Rules and constraints can continue to be captured over the course of years, applying them to the resolution of current problems.
  • Case-based reasoning 208 uses past experiences in solving similar problems to solve new problems. Each case is a history outlined by its descriptors and the steps that lead to a particular outcome. Previous cases and outcomes are stored and organized in a database. When a similar situation presents itself again later, a number of solutions that can be tried, or should be avoided, will present immediately. Solutions to complex problems can avoid delays in calculations and processing, and be offered very quickly.
  • Language interpretation tool 209 provides a constant feedback and evaluation loop.
  • Intermediary Code generator 210 translates Declarative Applications 214 designed by any expert into a faster program 230 for a target host 232 .
  • real time transaction data 234 can be received and processed according to declarative application 214 by target host 232 with the objective of producing run-time fraud detections 236 .
  • run-time fraud detections 236 For example, in a payments application card payments transaction requests from merchants can be analyzed for fraud activity. In healthcare applications the reports and compensation demands of providers can be scanned for fraud. And in insider trader applications individual traders can be scrutinized for special knowledge that could have illegally helped them profit from stock market moves.
  • File compression algorithms library 211 helps preserve network bandwidth by compressing data at the user's discretion.
  • FIG. 3 represents a model training embodiment of the present invention, and is referred to herein by the general reference numeral 300 .
  • Model trainer 300 can be fed a very complete, comprehensive transaction history 302 that can include both supervised and unsupervised data.
  • a filter 304 actually comprises many individual filters that can be selected by a switch 306 . Each filter can separate the supervised and unsupervised data from comprehensive transaction history 302 into a stream correlated by some factor in each transaction.
  • the resulting filtered training data will produce a trained model that will be highly specific and sensitive to fraud in the filtered category.
  • these specialized trained models used in parallel will excel in real-time cross-channel fraud prevention.
  • the filters 304 are selected by switch 306 to filter through card-not-present transactions, card-present transactions, international transactions, domestic transactions, debit card transactions, credit card transactions, contactless transactions, or other groupings or financial networks.
  • a data cleanup process 308 is used to harmonize, unify, error-correct, and otherwise standardize the data coming from transaction data history 302 .
  • the commercial advantage of that is clients can provide their transaction data histories 302 in whatever formats and file structures are natural to the provider.
  • a data enrichment process 310 computes interpolations and extrapolations of the data and produces as many as two-hundred and fifty data points from the forty or so relevant data points originally provided by transaction data history 302 .
  • a trainable fraud model 312 like that illustrated in FIG. 1 as trainable general payment fraud model 104 , is trained. Such can be imported as a purchased commercial product or library.
  • a selected applied fraud model 314 results from the selected training that results from the switch 306 setting and the filters 304 .
  • a variety of selected applied fraud models 316 - 323 represent the applied fraud models 114 that result with different settings of filter switch 306 .
  • Each selected applied fraud model 314 will include a hybrid of artificial intelligence classification models represented by models 330 - 332 and a smart-agent population build 334 with a corresponding set of real-time, recursive, and long-term profilers 336 .
  • the enriched data from data enrichment process 310 is fully represented in the smart-agent population build 334 and profilers 336 .
  • FIG. 4 represents a real-time payment fraud management system 400 like that illustrated in FIG. 1 as applied payment fraud model 114 .
  • a raw transaction separator 402 filters through the forty or so data items that are relevant to the computing of a fraud score.
  • a process 404 adds timestamps to these relevant data points and passes them in parallel to a selected applied fraud model 406 . This is equivalent to a selected one of applied fraud models 316 - 323 in FIG. 3 and applied payment fraud model 114 in FIG. 1 .
  • a set of classification models 408 - 410 operate independently according to their respective natures.
  • a population of smart agents 412 and profilers 414 also operate on the time-stamped relevant transaction data inflows. Each new line of time-stamped relevant transaction data will trigger an update 416 of the respective profilers 414 .
  • Their attributes 418 are provided to the population of smart agents 412 .
  • classification models 408 - 410 and population of smart agents 412 and profilers 414 all each produce an independent and separate vote or fraud score 420 - 423 on the same line of time-stamped relevant transaction data.
  • a weighted summation processor 424 responds to client tunings 426 to output a final fraud score 428 .
  • FIG. 5 represents a smart agent process 500 in an embodiment of the present invention.
  • these would include the smart agent population build 334 and profiles 336 in FIG. 3 and smart agents 412 and profiles 414 in FIG. 4 .
  • a series of payment card transactions arriving in real-time in an authorization request message is represented here by a random instantaneous incoming real-time transaction record 502 .
  • Such record 502 begins with an account number 504 . It includes attributes A 1 -A 9 numbered 505 - 513 here. These attributes, in the context of a payment card fraud application would include data points for card type, transaction type, merchant name, merchant category code (MCC), transaction amount, time of transaction, time of processing, etc.
  • Smart agent 520 is simply a constitution of its attributes, again A 1 -A 9 and numbered 521 - 529 in FIG. 5 . These attributes A 1 -A 9 521 - 529 are merely pointers to attribute smart agents. Two of these, one for A 1 and one for A 2 , are represented in FIG. 5 . Here, an A 1 smart agent 530 and an A 2 smart agent 540 . These are respectively called into action by triggers 532 and 542 .
  • a 1 smart agent 530 and A 2 smart agent 540 will respectively fetch correspondent attributes 505 and 506 from incoming real-time transaction record 502 .
  • Smart agents for A 3 -A 9 make similar fetches to themselves in parallel. They are not shown here to reduce the clutter for FIG. 5 that would otherwise result.
  • Each attribute smart agent like 530 and 540 will include or access a corresponding profile data point 536 and 546 . This is actually a simplification of the three kinds of profiles 336 ( FIG. 3 ) that were originally built during training and updated in update 416 ( FIG. 4 ). These profiles are used to track what is “normal” behavior for the particular account number for the particular single attribute.
  • Each attribute smart agent like 530 and 540 will further include a comparator 537 and 547 that will be able to compare the corresponding attribute in the instantaneous incoming real-time transaction record 502 for account number x with the same attributes held by the profiles for the same account. Comparators 537 and 547 should accept some slack, but not too much. Each can throw an exception 538 and 548 , as can the comparators in all the other attribute smart agents. It may be useful for the exceptions to be a fuzzy value, e.g., an analog signal 0.0 to 1.0. Or it could be a simple binary one or zero. What sort of excursions should trigger an exception is preferably adjustable, for example with client tunings 426 in FIG. 4 .
  • FIG. 6 represents a most recent 15-minute transaction velocity counter 600 , in an embodiment of the present invention. It receives the same kind of real-time transaction data inputs as were described in connection with FIG. 4 as raw transaction data 402 and FIG. 5 as records 502 .
  • a raw transaction record 602 includes a hundred or so data points. About forty of those data points are relevant to fraud detection an identified in FIG. 6 as reported transaction data 604 .
  • the reported transaction data 604 arrive in a time series and randomly involve a variety of active account numbers. But, let's say the most current reported transaction data 604 with a time age of 0:00 concerns a particular account number x. That fills a register 606 .
  • FIG. 6 arbitrarily identifies the respective ages of members of transaction time-series stack 608 with example ages 0:73, 1:16, 3:11, 6:17, 10:52, 11:05, 13:41, and 14:58. Those aged more than 15-minutes are simply identified with ages “>15:00”. This embodiment of the present invention is concerned with only the last 15-minutes worth of transactions. As time passes transaction time-series stack 608 pushes down.
  • a search process 610 accepts a search key from register 606 and reports any matches in the most 15-minute window with an account activity velocity counter 612 . Too much very recent activity can hint there is a fraudster at work, or it may be normal behavior.
  • a trigger 614 is issued that can be fed to an additional attribute smart agent that is included with attributes smart agents 530 and 540 and the others in parallel. Exception from this new account activity velocity counter smart agent is input to smart agent risk algorithm 550 in FIG. 5 .
  • FIG. 7 represents a cross-channel payment fraud management embodiment of the present invention, and is referred to herein by general reference numeral 700 .
  • Real-time multi-channel monitoring uses track cross channel and cross product patterns to cross pollinate information for more accurate decisions.
  • Such track not only the channel where the fraud ends but also the initiating channel to deliver a holistic fraud monitoring.
  • a standalone internet banking fraud solution will allow a transaction if it is within its limits, however if core banking is in picture, then it will stop this transaction, as we additionally know the source of funding of this account (which mostly in missing in internet banking).
  • a variety of selected applied fraud models 316 - 323 represent the applied fraud models 114 that result with different settings of filter switch 306 .
  • a real-time multi-channel monitoring payment network server can be constructed by running several of these selected applied fraud models 316 - 323 in parallel.
  • FIG. 7 represents a real-time multi-channel monitoring payment network server 700 , in an embodiment of the present invention.
  • Raw incoming transaction data is selectively filtered for relevancy by a process 702 .
  • the resulting relevant data is time-stamped in a process 704 .
  • a bus 706 feeds the same such data in parallel line-by-line, e.g., to a selected applied fraud model for card present 708 , a selected applied fraud model for domestic 709 , a selected applied fraud model for credit 710 , a selected applied fraud model for contactless 711 , and a selected applied fraud model for jewelry 712 .
  • this example array in FIG. 7 will very tightly analyze domestic contactless credit card transactions that are card-present in a jewelry purchase.
  • Each selected applied fraud model 708 - 712 provides exceptions 718 - 722 to the instant transactions on bus 706 that a weighted summation process 724 can balance according to a client tuning 726 .
  • a result 728 can be expected to be highly accurate with low false positives.
  • embodiments of the present invention are adaptive.
  • Adaptive learning combines three learning techniques.
  • First is the automatic creation of profiles, or smart-agents, from historical data, e.g., long-term profiling.
  • the second is real-time learning, e.g., enrichment of the smart-agents based on real-time activities.
  • the third is adaptive learning carried by incremental learning algorithms.
  • a smart-agent is created for each individual card in that data in a first learning step, e.g., long-term profiling.
  • Each profile is created from the card's activities and transactions that took place over the two year period.
  • Each profile for each smart-agent comprises knowledge extracted field-by-field, such as merchant category code (MCC), time, amount for an mcc over a period of time, recursive profiling, zip codes, type of merchant, monthly aggregation, activity during the week, weekend, holidays, Card not present (CNP) versus card present (CP), domestic versus cross-border, etc. this profile will highlights all the normal activities of the smart-agent (specific card).
  • MCC merchant category code
  • CNP Card not present
  • CP card present
  • domestic versus cross-border etc.
  • Smart-agent technology has been observed to outperform conventional artificial and machine learning technologies.
  • data mining technology creates a decision tree from historical data.
  • the result is a decision tree.
  • Decision tree logic can be used to detect fraud in credit card transactions.
  • the first is datamining can only learn from historical data and it generates decision tree logic that applies to all the cardholders as a group. The same logic is applied to all cardholders even though each merchant may have a unique activity pattern and each cardholder may have a unique spending pattern.
  • a second limitation is decision trees become immediately outdated. Fraud schemes continue to evolve, but the decision tree was fixed with examples that do not contain new fraud schemes. So stagnant non-adapting decision trees will fail to detect new types of fraud, and do not have the ability to respond to the highly volatile nature of fraud.
  • business rules Another technology widely used is “business rules” which require expert to writes rules, e.g., if-then-else logic.
  • business rules require writing rules that are supposed to work for whole categories of customers. This requires the population to be sliced into many categories (students, seniors, zip codes, etc.) and ask experts to think about rules that will be applied to all the cardholders of the category. How could the US population be sliced? Even worse, why would all the cardholders in a category all have the same behavior? It is obvious that business rules has limits, and poor detection rates with high false positives. What should also be obvious is the rules are outdated as soon as they are written because they don't adapt at all to new fraud schemes or data shifts.
  • Neural network technology also limits, it uses historical data to create a matrix weights for future data classification.
  • the Neural network will use as input (first layer) the historical transactions and the classification for fraud or not as an output).
  • Neural Networks only learn from past transactions and cannot detect any new fraud schemes (that arise daily) if the neural network was not re-trained with this type of fraud. Same as datamining and business rules the classification logic learned from the historical data will be applied to all the cardholders even though each merchant has a unique activity pattern and each cardholder has a unique spending pattern.
  • smart-agent technology learns the specific behaviors of each cardholder and create a smart-agent that follow the behavior of each cardholder. Because it learns from each activity of a cardholder, the smart-agent updates the profiles and makes effective changes at runtime. It is the only technology with an ability to identify and stop, in real-time, previously unknown fraud schemes. It has the highest detection rate and lowest false positives because it separately follows and learns the behaviors of each cardholder.
  • Smart-agents have a further advantage in data size reduction. Once, say twenty-seven terabytes of historical data is transformed into smart-agents, only 200-gigabytes is needed to represent twenty-seven million distinct smart-agents corresponding to all the distinct cardholders.
  • Incremental learning technologies are embedded in the machine algorithms and smart-agent technology to continually re-train from any false positives and negatives that occur along the way. Each corrects itself to avoid repeating the same classification errors.
  • Data mining logic incrementally changes the decision trees by creating a new link or updating the existing links and weights.
  • Neural networks update the weight matrix, and case based reasoning logic updates generic cases or creates new ones.
  • Smart-agents update their profiles by adjusting the normal/abnormal thresholds, or by creating exceptions.

Abstract

An artificial intelligence fraud management solution comprises an expert programmer development system to build trainable general payment fraud models that integrate several artificial intelligence classifiers like neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints. These are further integrated by the expert programmers and development system with smart agents and associated real-time profiling, recursive profiles, and long-term profiles. The trainable general payment fraud models are trained with supervised and unsupervised data to produce an applied payment fraud model. This then is applied by a commercial client to process real-time transactions and authorization requests for fraud scores.

Description

    BACKGROUND OF THE INVENTION
  • 1. Field of the Invention
  • The present invention relates to automation tools for the application development of fraud management systems, and more particularly to multi-discipline artificial intelligence machines for real-time use on big data.
  • 2. Background
  • Anyone impressed by the increasing and stunning speeds of computers, or stunned by their unfailing memory capacity, will not be able to find any manifestations of intelligence as long as everything remains purely algorithmic.
  • Algorithmic programs are deductive ensembles of successive operations applied in a fixed order. An algorithm brings the computer to repeat, tirelessly and accurately, long suites of logical operations. However, such programs will neither know how to take any initiative, nor will any ever stray away from a fixed line of march.
  • Algorithmic programmers must always be able to dictate the precise succession of steps that the target machine is to follow. But, can you cannot ask any expert to predict all of the risk events that may befall a company or business in the next day, month, or year. And so it is for every field that requires the use of experts.
  • Since every algorithm requires an exhaustive enumeration the vast majority of industrial problems will be excluded from computer science. Industrial problems in which the resolution requires a minimum of reasoning cannot be transcribed into an algorithmic form. This is also true for programs based on artificial intelligence, like expert systems and conventional object oriented languages. In the case of expert systems, all the possibilities must be predicted in order to write all the possible rules. Such is obviously impossible. In conventional object oriented languages, all possible methods must be forecast, known and programmed for.
  • In the case of business, decisions integrate and often concern an important number of variables that dynamically come and go.
  • What is needed is a technology that goes beyond algorithmic techniques, ones that know how to resolve very complex problems without needing to be instructed on how to resolve them.
    • SUMMARY OF THE INVENTION
  • Briefly, an artificial intelligence fraud management solution embodiment of the present invention comprises an expert programmer development system to build trainable general payment fraud models that integrate several artificial intelligence classifiers like neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints. These are further integrated by the expert programmers and development system with smart agents and associated real-time profiling, recursive profiles, and long-term profiles. The trainable general payment fraud models are trained with supervised and unsupervised data to produce an applied payment fraud model. This then is applied by a commercial client to process real-time transactions and authorization requests for fraud scores.
  • The above and still further objects, features, and advantages of the present invention will become apparent upon consideration of the following detailed description of specific embodiments thereof, especially when taken in conjunction with the accompanying drawings.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is functional block diagram of an artificial intelligence fraud management solution embodiment of the present invention;
  • FIG. 2A is functional block diagram of an application development system (ADS) embodiment of the present invention for fraud-based target applications;
  • FIG. 2B is functional block diagram of an improved and updated application development system (ADS) embodiment of the present invention for fraud-based target applications;
  • FIG. 3 is functional block diagram of a model training embodiment of the present invention;
  • FIG. 4 is functional block diagram of a real-time payment fraud management system like that illustrated in FIG. 1 as applied payment fraud model;
  • FIG. 5 is functional block diagram of a smart agent process embodiment of the present invention;
  • FIG. 6 is functional block diagram of a most recent 15-minute transaction velocity counter; and
  • FIG. 7 is functional block diagram of a cross-channel payment fraud management embodiment of the present invention.
    •  DETAILED DESCRIPTION OF THE INVENTION
  • FIG. 1 represents an artificial intelligence fraud management solution embodiment of the present invention, and is referred to herein by the general reference numeral 100. Such solution 100 comprises an expert programmer development system 102 for building trainable general payment fraud models 104 that integrate several, but otherwise blank artificial intelligence classifiers, e.g., neural networks, case based reasoning, decision trees, genetic algorithms, fuzzy logic, and rules and constraints. These are further integrated by the expert programmers inputs 106 and development system 102 to include smart agents and associated real-time profiling, recursive profiles, and long-term profiles.
  • The trainable general payment fraud models 104 are trained with supervised and unsupervised data 108 and 110 to produce a trained payment fraud model 112. For example, accountholder and historical transaction data. This trained payment fraud model 112 can then be sold as a computer program library or a software-as-a-service applied payment fraud model. This then is applied by a commercial client in an applied payment fraud model 114 to process real-time transactions and authorization requests 116 for fraud scores. The applied payment fraud model 114 is further able to accept a client tuning input 120.
  • FIG. 2A represents an application development system (ADS) embodiment of the present invention for fraud-based target applications, and is referred to herein by the general reference numeral 200. Such is the equivalent of development system 102 in FIG. 1. ADS 200 comprises a number of computer program development libraries and tools that highly skilled artificial intelligence scientists and artisans can manipulate into a novel combination of complementary technologies. In an early embodiment of ADS 200 we combined a goal-oriented multi-agent technology 201 for building run-time smart agents, a constraint-based programming tool 202, a fuzzy logic tool 203, a library of genetic algorithms 205, a simulation and planning tool 206, a library of business rules and constraints 207, case-based reasoning and learning tools 208, a real-time interpreted language compiler 209, a C++ code generator 210, a library of data compression algorithms 211, and a database connectivity tool 212.
  • The highly skilled artificial intelligence scientists and artisans provide graphical and textual inputs 214 and 216 to a user interface (UI) 218 to manipulate the novel combinations of complementary technologies into a declarative application 220.
  • Declarative application 214 is molded, modeled, simulated, tested, corrected, massaged, and unified into a fully functional hybrid combination that is eventually output as a trainable general payment fraud model 222. Such is the equivalent of trainable general payment fraud model 104 in FIG. 1.
  • It was discovered by the present inventor that the highly skilled artificial intelligence scientists and artisans that could manipulate the complementary technologies mentioned into specific novel combinations required exceedingly talented individuals that were in short supply.
  • It was, however, possible to build and to prove out that ADS 200 as a compiler would produce trainable general payment fraud models 220, and these were more commercially attractive and viable.
  • After many years of experimental use and trials, ADS 200 was constantly improved and updated. Database connectivity tool 212, for example, tried to press conventional databases into service during run-time to receive and supply data points in real-time transaction service. It turned out no conventional databases were up to it.
  • At the present, an updated and improved ADS shown with general reference numeral 230 in FIG. 2B is providing better and more useful trainable general payment fraud models. ADS 230 is the most recent equivalent of development system 102 in FIG. 1. ADS 230 assembles together a different mix of computer program development libraries and tools for the highly skilled artificial intelligence scientists and artisans to manipulate into a new hybrid of still complementary technologies.
  • In this later embodiment, ADS 230, we combined an improved smart-agent technology 231 for building run-time smart agents that are essentially only silhouettes of their constituent attributes. These attributes are themselves smart-agents with second level attributes and values that are able to “call” on real-time profilers, recursive profilers, and long term profilers. Such profilers can provide comparative assessments of each data point with the new information flowing in during run-time.
  • The three profilers can thereafter throw exceptions in each data point category, and the number and quality of exceptions thrown across the breadth of the attributes then incoming will produce a fraud risk score that generally raises exponentially with that number of exceptions thrown. Oracle explains in C++ programming that exceptions provide a way to react to exceptional circumstances (like fraud suspected) in programs by transferring control to special functions called “handlers”.
  • At the top level of a hierarchy of smart agents linked by their attributes are the smart agents for the independent actors who can engage in fraud. In a payment fraud model, that top level will be the cardholders as tracked by the cardholder account numbers reported in transaction data.
  • These top level smart agents can call on a moving 15-minute window file that has all the transactions reported to the system in the last 15-minutes. Too much activity in 15-minutes by any one actor is cause for further inspection and analysis.
  • ADS 230 further comprises a constraint-based programming tool 232, a fuzzy logic tool 233, a library of advanced neural network algorithms 234, a library of genetic algorithms 235, a simulation and planning tool 236, a library of business rules and constraints 237, case-based reasoning and learning tools 238, a data mining tool 239, a text mining tool 240, a statistical tool 241 and a real-time file system 242.
  • The real-time file system 242 is a simple organization of attribute values for smart agent profilers that allow quick, direct file access.
  • The highly skilled artificial intelligence scientists and artisans provide graphical and textual inputs 244 and 246 to a user interface (UI) 248 to manipulate the novel combinations of complementary technologies into a declarative application 250.
  • Declarative application 250 is also molded, modeled, simulated, tested, corrected, massaged, and unified into a fully functional hybrid combination that is eventually output as a trainable general payment fraud model 252. Such is also the more improved equivalent of trainable general payment fraud model 104 in FIG. 1.
  • The constraint-based programming tools 202 and 232 limit the number of possible solutions. Complex conditions with complex constraints can create an exponential number of possibilities. Fixed constraints, fuzzy constraints, and polynomials are combined in cases where no exact solution exists. New constraints can be added or deleted at any time. The dynamic nature of the tool makes possible real-time simulations of complex plans, schedules, and diagnostics.
  • The constraint-based programming tools are written as a very complete language in its own right. It can integrate a variety of variables and constraints, as in the following Table.
  •
    Variables: Real, with integer values, enumerated, sets,
    matrices and vectors, intervals, fuzzy subsets, and more.
    Arithmetic Constraints: =, +, −, *, /, /=, >, <, >=, <=,
    interval addition, interval subtraction, interval multiplication
    and interval division, max, min, intersection, union,
    exponential, modulo, logarithm, and more.
    Temporal (Allen) Constraints: Control allows you to write
    any temporal constraints including Equal, N-equal, Before,
    After, Meets, Overlaps, Starts, Finishes, and personal temporal
    operators such as Disjoint, Started-by, Overlapped-by, Met-by,
    Finished-by, and more.
    Boolean Constraints: Or, And, Not, Xor, Implication,
    Equivalence
    Symbolic Constraints: Inclusion, Union, Intersection,
    Cardinality, Belonging, and more.
  • The constraint-based programming tools 202 and 232 include a library of ways to arrange subsystems, constraints and variables. Control strategies and operators can be defined within or outside using traditional languages such as C, C++, FORTRAN, etc. Programmers do not have to learn a new language, and provides an easy-to-master programming interface by providing an in-depth library and traditional tools.
  • Fuzzy logic tools 203 and 233 recognize many of the largest problems in organizations cannot be solved by simple yes/no or black/white answers. Sometimes the answers need to be rendered in shades of gray. This is where fuzzy logic proves useful. Fuzzy logic handles imprecision or uncertainty by attaching various measures of credibility to propositions. Such technology enables clear definitions of problems where only imperfect or partial knowledge exists, such as when a goal is approximate, or between all and nothing. In fraud applications, this can equate to the answer being “maybe” fraud is present, and the circumstances warrant further investigation.
  • Tools 204 and 234 provides twelve different neural network algorithms, including Back propagation, Kohonen, Art, Fuzzy ART, RBF and others, in an easy-to-implement C++ library. Neural networks are algorithmic systems that interpret historical data to identify trends and patterns against which to compare subject cases. The libraries of advanced neural network algorithms can be used to translate databases to neurons without user intervention, and can significantly accelerate the speed of convergence over conventional back propagation, and other neural network algorithms. The present invention's neural net is incremental and adaptive, allowing the size of the output classes to change dynamically. An expert mode in the advanced application development tool suite provides a library of twelve different neural network models for use in customization.
  • Neural networks can detect trends and patterns other computer techniques are unable to. Neurons work collaboratively to solve the defined problem. Neural networks are adept in areas that resemble human reasoning, making them well suited to solve problems that involve pattern recognition and forecasting. Thus, neural networks can solve problems that are too complex to solve with conventional technologies.
  • Libraries 205 and 235 include genetic algorithms to initialize a population of elements where each element represents one possible set of initial attributes. Once the models are designed based on these elements, a blind test performance is used as the evaluation function. The genetic algorithm will be then used to select the attributes that will be used in the design of the final models. The component particularly helps when multiple outcomes may achieve the same predefined goal. For instance, if a problem can be solved profitably in any number of ways, genetic algorithms can determine the most profitable way.
  • Simulation and planning tool 206 can be used during model designs to check the performances of the models.
  • Business rules and constraints 207 provides a central storage of best practices and know how that can be applied to current situations. Rules and constraints can continue to be captured over the course of years, applying them to the resolution of current problems.
  • Case-based reasoning 208 uses past experiences in solving similar problems to solve new problems. Each case is a history outlined by its descriptors and the steps that lead to a particular outcome. Previous cases and outcomes are stored and organized in a database. When a similar situation presents itself again later, a number of solutions that can be tried, or should be avoided, will present immediately. Solutions to complex problems can avoid delays in calculations and processing, and be offered very quickly.
  • Language interpretation tool 209 provides a constant feedback and evaluation loop. Intermediary Code generator 210 translates Declarative Applications 214 designed by any expert into a faster program 230 for a target host 232.
  • During run-time, real time transaction data 234 can be received and processed according to declarative application 214 by target host 232 with the objective of producing run-time fraud detections 236. For example, in a payments application card payments transaction requests from merchants can be analyzed for fraud activity. In healthcare applications the reports and compensation demands of providers can be scanned for fraud. And in insider trader applications individual traders can be scrutinized for special knowledge that could have illegally helped them profit from stock market moves.
  • File compression algorithms library 211 helps preserve network bandwidth by compressing data at the user's discretion.
  • FIG. 3 represents a model training embodiment of the present invention, and is referred to herein by the general reference numeral 300. Model trainer 300 can be fed a very complete, comprehensive transaction history 302 that can include both supervised and unsupervised data. A filter 304 actually comprises many individual filters that can be selected by a switch 306. Each filter can separate the supervised and unsupervised data from comprehensive transaction history 302 into a stream correlated by some factor in each transaction.
  • The resulting filtered training data will produce a trained model that will be highly specific and sensitive to fraud in the filtered category. When two or more of these specialized trained models used in parallel are combined in other embodiments of the present invention they will excel in real-time cross-channel fraud prevention.
  • In a payment card fraud embodiment of the present invention, the filters 304 are selected by switch 306 to filter through card-not-present transactions, card-present transactions, international transactions, domestic transactions, debit card transactions, credit card transactions, contactless transactions, or other groupings or financial networks.
  • A data cleanup process 308 is used to harmonize, unify, error-correct, and otherwise standardize the data coming from transaction data history 302. The commercial advantage of that is clients can provide their transaction data histories 302 in whatever formats and file structures are natural to the provider.
  • A data enrichment process 310 computes interpolations and extrapolations of the data and produces as many as two-hundred and fifty data points from the forty or so relevant data points originally provided by transaction data history 302.
  • A trainable fraud model 312, like that illustrated in FIG. 1 as trainable general payment fraud model 104, is trained. Such can be imported as a purchased commercial product or library.
  • A selected applied fraud model 314, like that illustrated in FIG. 1 as applied fraud model 114, results from the selected training that results from the switch 306 setting and the filters 304. A variety of selected applied fraud models 316-323 represent the applied fraud models 114 that result with different settings of filter switch 306. Each selected applied fraud model 314 will include a hybrid of artificial intelligence classification models represented by models 330-332 and a smart-agent population build 334 with a corresponding set of real-time, recursive, and long-term profilers 336. The enriched data from data enrichment process 310 is fully represented in the smart-agent population build 334 and profilers 336.
  • FIG. 4 represents a real-time payment fraud management system 400 like that illustrated in FIG. 1 as applied payment fraud model 114. A raw transaction separator 402 filters through the forty or so data items that are relevant to the computing of a fraud score. A process 404 adds timestamps to these relevant data points and passes them in parallel to a selected applied fraud model 406. This is equivalent to a selected one of applied fraud models 316-323 in FIG. 3 and applied payment fraud model 114 in FIG. 1.
  • During a session in which the time-stamped relevant transaction data flows in, a set of classification models 408-410 operate independently according to their respective natures. A population of smart agents 412 and profilers 414 also operate on the time-stamped relevant transaction data inflows. Each new line of time-stamped relevant transaction data will trigger an update 416 of the respective profilers 414. Their attributes 418 are provided to the population of smart agents 412.
  • The classification models 408-410 and population of smart agents 412 and profilers 414 all each produce an independent and separate vote or fraud score 420-423 on the same line of time-stamped relevant transaction data. A weighted summation processor 424 responds to client tunings 426 to output a final fraud score 428.
  • FIG. 5 represents a smart agent process 500 in an embodiment of the present invention. For example, these would include the smart agent population build 334 and profiles 336 in FIG. 3 and smart agents 412 and profiles 414 in FIG. 4. A series of payment card transactions arriving in real-time in an authorization request message is represented here by a random instantaneous incoming real-time transaction record 502.
  • Such record 502 begins with an account number 504. It includes attributes A1-A9 numbered 505-513 here. These attributes, in the context of a payment card fraud application would include data points for card type, transaction type, merchant name, merchant category code (MCC), transaction amount, time of transaction, time of processing, etc.
  • Account number 504 in record 502 will issue a trigger 516 to a corresponding smart agent 520 to present itself for action. Smart agent 520 is simply a constitution of its attributes, again A1-A9 and numbered 521-529 in FIG. 5. These attributes A1-A9 521-529 are merely pointers to attribute smart agents. Two of these, one for A1 and one for A2, are represented in FIG. 5. Here, an A1 smart agent 530 and an A2 smart agent 540. These are respectively called into action by triggers 532 and 542.
  • A1 smart agent 530 and A2 smart agent 540 will respectively fetch correspondent attributes 505 and 506 from incoming real-time transaction record 502. Smart agents for A3-A9 make similar fetches to themselves in parallel. They are not shown here to reduce the clutter for FIG. 5 that would otherwise result.
  • Each attribute smart agent like 530 and 540 will include or access a corresponding profile data point 536 and 546. This is actually a simplification of the three kinds of profiles 336 (FIG. 3) that were originally built during training and updated in update 416 (FIG. 4). These profiles are used to track what is “normal” behavior for the particular account number for the particular single attribute.
  • For example, if one of the attributes reports the MCC's of the merchants and another reports the transaction amounts, then if the long-term, recursive, and real time profiles for a particular account number x shows a pattern of purchases at the local Home Depot and Costco that average $100-$300, then an instantaneous incoming real-time transaction record 502 that reports another $200 purchase at the local Costco will raise no alarms. But a sudden, unique, inexplicable purchase for $1250 at a New York Jeweler will and should throw more than one exception.
  • Each attribute smart agent like 530 and 540 will further include a comparator 537 and 547 that will be able to compare the corresponding attribute in the instantaneous incoming real-time transaction record 502 for account number x with the same attributes held by the profiles for the same account. Comparators 537 and 547 should accept some slack, but not too much. Each can throw an exception 538 and 548, as can the comparators in all the other attribute smart agents. It may be useful for the exceptions to be a fuzzy value, e.g., an analog signal 0.0 to 1.0. Or it could be a simple binary one or zero. What sort of excursions should trigger an exception is preferably adjustable, for example with client tunings 426 in FIG. 4.
  • These exceptions are collected by a smart agent risk algorithm 550. One deviation or exception thrown on any one attribute being “abnormal” can be tolerated if not too egregious. But two or more should be weighted more than just the simple sum, e.g., (1+1)n=2n instead of simply 1+1=2. The product is output as a smart agent risk assessment 552. This output is the equivalent of independent and separate vote or fraud score 423 in FIG. 4.
  • FIG. 6 represents a most recent 15-minute transaction velocity counter 600, in an embodiment of the present invention. It receives the same kind of real-time transaction data inputs as were described in connection with FIG. 4 as raw transaction data 402 and FIG. 5 as records 502. A raw transaction record 602 includes a hundred or so data points. About forty of those data points are relevant to fraud detection an identified in FIG. 6 as reported transaction data 604.
  • The reported transaction data 604 arrive in a time series and randomly involve a variety of active account numbers. But, let's say the most current reported transaction data 604 with a time age of 0:00 concerns a particular account number x. That fills a register 606.
  • Earlier arriving reported transaction data 604 build a transaction time-series stack 608. FIG. 6 arbitrarily identifies the respective ages of members of transaction time-series stack 608 with example ages 0:73, 1:16, 3:11, 6:17, 10:52, 11:05, 13:41, and 14:58. Those aged more than 15-minutes are simply identified with ages “>15:00”. This embodiment of the present invention is concerned with only the last 15-minutes worth of transactions. As time passes transaction time-series stack 608 pushes down.
  • The key concern is whether account number x has been involved in any other transactions in the last 15-minutes. A search process 610 accepts a search key from register 606 and reports any matches in the most 15-minute window with an account activity velocity counter 612. Too much very recent activity can hint there is a fraudster at work, or it may be normal behavior. A trigger 614 is issued that can be fed to an additional attribute smart agent that is included with attributes smart agents 530 and 540 and the others in parallel. Exception from this new account activity velocity counter smart agent is input to smart agent risk algorithm 550 in FIG. 5.
  • FIG. 7 represents a cross-channel payment fraud management embodiment of the present invention, and is referred to herein by general reference numeral 700.
  • Real-time multi-channel monitoring uses track cross channel and cross product patterns to cross pollinate information for more accurate decisions. Such track not only the channel where the fraud ends but also the initiating channel to deliver a holistic fraud monitoring. A standalone internet banking fraud solution will allow a transaction if it is within its limits, however if core banking is in picture, then it will stop this transaction, as we additionally know the source of funding of this account (which mostly in missing in internet banking).
  • In FIG. 3, a variety of selected applied fraud models 316-323 represent the applied fraud models 114 that result with different settings of filter switch 306. A real-time multi-channel monitoring payment network server can be constructed by running several of these selected applied fraud models 316-323 in parallel.
  • FIG. 7 represents a real-time multi-channel monitoring payment network server 700, in an embodiment of the present invention. Raw incoming transaction data is selectively filtered for relevancy by a process 702. The resulting relevant data is time-stamped in a process 704. A bus 706 feeds the same such data in parallel line-by-line, e.g., to a selected applied fraud model for card present 708, a selected applied fraud model for domestic 709, a selected applied fraud model for credit 710, a selected applied fraud model for contactless 711, and a selected applied fraud model for jewelry 712. In other words, this example array in FIG. 7 will very tightly analyze domestic contactless credit card transactions that are card-present in a jewelry purchase.
  • Each selected applied fraud model 708-712 provides exceptions 718-722 to the instant transactions on bus 706 that a weighted summation process 724 can balance according to a client tuning 726. A result 728 can be expected to be highly accurate with low false positives.
  • In general, embodiments of the present invention are adaptive. Adaptive learning combines three learning techniques. First is the automatic creation of profiles, or smart-agents, from historical data, e.g., long-term profiling. The second is real-time learning, e.g., enrichment of the smart-agents based on real-time activities. The third is adaptive learning carried by incremental learning algorithms.
  • For example, two years of historical credit card transactions data needed over twenty seven terabytes of database storage. A smart-agent is created for each individual card in that data in a first learning step, e.g., long-term profiling. Each profile is created from the card's activities and transactions that took place over the two year period. Each profile for each smart-agent comprises knowledge extracted field-by-field, such as merchant category code (MCC), time, amount for an mcc over a period of time, recursive profiling, zip codes, type of merchant, monthly aggregation, activity during the week, weekend, holidays, Card not present (CNP) versus card present (CP), domestic versus cross-border, etc. this profile will highlights all the normal activities of the smart-agent (specific card).
  • Smart-agent technology has been observed to outperform conventional artificial and machine learning technologies. For example, data mining technology creates a decision tree from historical data. When historical data is applied to data mining algorithms, the result is a decision tree. Decision tree logic can be used to detect fraud in credit card transactions. But, there are limits to data mining technology. The first is datamining can only learn from historical data and it generates decision tree logic that applies to all the cardholders as a group. The same logic is applied to all cardholders even though each merchant may have a unique activity pattern and each cardholder may have a unique spending pattern.
  • A second limitation is decision trees become immediately outdated. Fraud schemes continue to evolve, but the decision tree was fixed with examples that do not contain new fraud schemes. So stagnant non-adapting decision trees will fail to detect new types of fraud, and do not have the ability to respond to the highly volatile nature of fraud.
  • Another technology widely used is “business rules” which require expert to writes rules, e.g., if-then-else logic. The most important limitations are that business rules require writing rules that are supposed to work for whole categories of customers. This requires the population to be sliced into many categories (students, seniors, zip codes, etc.) and ask experts to think about rules that will be applied to all the cardholders of the category. How could the US population be sliced? Even worse, why would all the cardholders in a category all have the same behavior? It is obvious that business rules has limits, and poor detection rates with high false positives. What should also be obvious is the rules are outdated as soon as they are written because they don't adapt at all to new fraud schemes or data shifts.
  • Neural network technology also limits, it uses historical data to create a matrix weights for future data classification. The Neural network will use as input (first layer) the historical transactions and the classification for fraud or not as an output). Neural Networks only learn from past transactions and cannot detect any new fraud schemes (that arise daily) if the neural network was not re-trained with this type of fraud. Same as datamining and business rules the classification logic learned from the historical data will be applied to all the cardholders even though each merchant has a unique activity pattern and each cardholder has a unique spending pattern.
  • Another limit is the classification logic learned from historical data decision trees is outdated the same day of its use because the fraud schemes changes but since the neural network did learn with examples that contains this new type of fraud schemes, it will fail to detect this new type of fraud it lacks the ability to adapt to new fraud schemes and do not have the ability to respond to the highly volatile nature of fraud.
  • Contrary to previous technologies, smart-agent technology learns the specific behaviors of each cardholder and create a smart-agent that follow the behavior of each cardholder. Because it learns from each activity of a cardholder, the smart-agent updates the profiles and makes effective changes at runtime. It is the only technology with an ability to identify and stop, in real-time, previously unknown fraud schemes. It has the highest detection rate and lowest false positives because it separately follows and learns the behaviors of each cardholder.
  • Smart-agents have a further advantage in data size reduction. Once, say twenty-seven terabytes of historical data is transformed into smart-agents, only 200-gigabytes is needed to represent twenty-seven million distinct smart-agents corresponding to all the distinct cardholders.
  • Incremental learning technologies are embedded in the machine algorithms and smart-agent technology to continually re-train from any false positives and negatives that occur along the way. Each corrects itself to avoid repeating the same classification errors. Data mining logic incrementally changes the decision trees by creating a new link or updating the existing links and weights. Neural networks update the weight matrix, and case based reasoning logic updates generic cases or creates new ones. Smart-agents update their profiles by adjusting the normal/abnormal thresholds, or by creating exceptions.
  • Although particular embodiments of the present invention have been described and illustrated, such is not intended to limit the invention. Modifications and changes will no doubt become apparent to those skilled in the art, and it is intended that the invention only be limited by the scope of the appended claims.

Claims (6)

1. An automation tool for the application development of multi-discipline artificial intelligence fraud management systems, comprising:
an expert programmer development system with tools and software libraries for building trainable general payment fraud models that are constructed of and integrate several artificial intelligence classifiers, including smart agents, neural networks, case-based reasoning, decision trees, and business rules;
wherein, said trainable general payment fraud models are capable of being trained with historical transaction data that causes:
an initial population of smart agents and associated profiles to be generated,
an initial set of neural networks to assume a beginning weight matrix,
an initial decision tree to be structured from data mining logic,
an initial case-based reasoning set to be structured, and
an initial set of business rules to be fixed;
wherein, said trainable general payment fraud models are detachable once built;
2. The automation tool of claim 1, wherein said trainable general payment fraud models further comprise:
an incremental learning technology embedded in a run-time machine algorithm and smart-agent technology able to continually re-train said artificial intelligence classifiers using false positives and negatives that occur during use.
3. The automation tool of claim 2, wherein said incremental learning technology further comprises:
data mining logic for incrementally changing the initial decision trees by creating new links or updating its existing links and weights.
4. The automation tool of claim 2, wherein said incremental learning technology further comprises:
means for the initial neural networks to have their weight matrix updated.
5. The automation tool of claim 2, wherein said incremental learning technology further comprises:
means for the initial case-based reasoning logic to update its generic cases or create new ones.
6. The automation tool of claim 2, wherein said incremental learning technology further comprises:
means for the initial population of smart-agents to self-update their profiles and to adjust their normal/abnormal thresholds or by creating exceptions.
US14/514,381 2014-08-08 2014-10-15 Artificial intelligence fraud management solution Abandoned US20150032589A1 (en)

Priority Applications (31)

Application Number Priority Date Filing Date Title
US14/514,381 US20150032589A1 (en) 2014-08-08 2014-10-15 Artificial intelligence fraud management solution
US14/520,361 US20150066771A1 (en) 2014-08-08 2014-10-22 Fast access vectors in real-time behavioral profiling
US14/521,386 US20150046224A1 (en) 2014-08-08 2014-10-22 Reducing false positives with transaction behavior forecasting
US14/521,667 US20150046332A1 (en) 2014-08-08 2014-10-23 Behavior tracking smart agents for artificial intelligence fraud protection and management
US14/815,848 US20150339672A1 (en) 2014-08-08 2015-07-31 Automation tool development method for building computer fraud management applications
US14/929,341 US20160055427A1 (en) 2014-10-15 2015-11-01 Method for providing data science, artificial intelligence and machine learning as-a-service
US14/935,742 US20160078367A1 (en) 2014-10-15 2015-11-09 Data clean-up method for improving predictive model training
US14/938,844 US20160063502A1 (en) 2014-10-15 2015-11-12 Method for improving operating profits with better automated decision making with artificial intelligence
US14/941,586 US20160071017A1 (en) 2014-10-15 2015-11-14 Method of operating artificial intelligence machines to improve predictive model training and performance
US14/956,392 US20160086185A1 (en) 2014-10-15 2015-12-02 Method of alerting all financial channels about risk in real-time
US14/986,534 US10546099B2 (en) 2014-10-15 2015-12-31 Method of personalizing, individualizing, and automating the management of healthcare fraud-waste-abuse to unique individual healthcare providers
US16/168,566 US11348110B2 (en) 2014-08-08 2018-10-23 Artificial intelligence fraud management solution
US16/184,894 US11023894B2 (en) 2014-08-08 2018-11-08 Fast access vectors in real-time behavioral profiling in fraudulent financial transactions
US16/205,909 US10929777B2 (en) 2014-08-08 2018-11-30 Method of automating data science services
US16/264,144 US20190164181A1 (en) 2014-08-08 2019-01-31 Reducing false positives with transaction behavior forecasting
US16/398,917 US10846623B2 (en) 2014-10-15 2019-04-30 Data clean-up method for improving predictive model training
US16/424,187 US20190279218A1 (en) 2014-08-08 2019-05-28 Behavior tracking smart agents for artificial intelligence fraud protection and management
US16/601,226 US10977655B2 (en) 2014-10-15 2019-10-14 Method for improving operating profits with better automated decision making with artificial intelligence
US16/674,980 US10984423B2 (en) 2014-10-15 2019-11-05 Method of operating artificial intelligence machines to improve predictive model training and performance
US16/677,458 US11080793B2 (en) 2014-10-15 2019-11-07 Method of personalizing, individualizing, and automating the management of healthcare fraud-waste-abuse to unique individual healthcare providers
US16/679,819 US11080709B2 (en) 2014-10-15 2019-11-11 Method of reducing financial losses in multiple payment channels upon a recognition of fraud first appearing in any one payment channel
US17/085,109 US11734607B2 (en) 2014-10-15 2020-10-30 Data clean-up method for improving predictive model training
US17/153,013 US11853854B2 (en) 2014-08-08 2021-01-20 Method of automating data science services
US17/198,473 US11748758B2 (en) 2014-10-15 2021-03-11 Method for improving operating profits with better automated decision making with artificial intelligence
US17/200,997 US20210248612A1 (en) 2014-10-15 2021-03-15 Method of operating artificial intelligence machines to improve predictive model training and performance
US17/245,116 US11481777B2 (en) 2014-08-08 2021-04-30 Fast access vectors in real-time behavioral profiling in fraudulent financial transactions
US17/364,319 US11763310B2 (en) 2014-10-15 2021-06-30 Method of reducing financial losses in multiple payment channels upon a recognition of fraud first appearing in any one payment channel
US17/364,450 US11900473B2 (en) 2014-10-15 2021-06-30 Method of personalizing, individualizing, and automating the management of healthcare fraud-waste-abuse to unique individual healthcare providers
US17/745,941 US11972430B2 (en) 2022-05-17 Artificial intelligence fraud management solution
US17/891,187 US11875355B2 (en) 2014-08-08 2022-08-19 Fast access vectors in real-time behavioral profiling in fraudulent financial transactions
US18/453,914 US20240046156A1 (en) 2014-10-15 2023-08-22 Data clean-up method for improving predictive model training

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US14/454,749 US9779407B2 (en) 2014-08-08 2014-08-08 Healthcare fraud preemption
US14/514,381 US20150032589A1 (en) 2014-08-08 2014-10-15 Artificial intelligence fraud management solution

Related Parent Applications (4)

Application Number Title Priority Date Filing Date
US14/454,749 Continuation-In-Part US9779407B2 (en) 2014-02-14 2014-08-08 Healthcare fraud preemption
US14/454,749 Continuation US9779407B2 (en) 2014-02-14 2014-08-08 Healthcare fraud preemption
US14/517,863 Continuation-In-Part US20150039513A1 (en) 2014-02-14 2014-10-19 User device profiling in transaction authentications
US14/521,667 Continuation-In-Part US20150046332A1 (en) 2014-08-08 2014-10-23 Behavior tracking smart agents for artificial intelligence fraud protection and management

Related Child Applications (6)

Application Number Title Priority Date Filing Date
US14/454,749 Continuation-In-Part US9779407B2 (en) 2014-02-14 2014-08-08 Healthcare fraud preemption
US14/521,386 Continuation-In-Part US20150046224A1 (en) 2014-08-08 2014-10-22 Reducing false positives with transaction behavior forecasting
US14/520,361 Continuation-In-Part US20150066771A1 (en) 2014-08-08 2014-10-22 Fast access vectors in real-time behavioral profiling
US14/521,667 Continuation-In-Part US20150046332A1 (en) 2014-08-08 2014-10-23 Behavior tracking smart agents for artificial intelligence fraud protection and management
US14/815,848 Continuation-In-Part US20150339672A1 (en) 2014-08-08 2015-07-31 Automation tool development method for building computer fraud management applications
US16/168,566 Continuation US11348110B2 (en) 2014-08-08 2018-10-23 Artificial intelligence fraud management solution

Publications (1)

Publication Number Publication Date
US20150032589A1 true US20150032589A1 (en) 2015-01-29

Family

ID=52391292

Family Applications (2)

Application Number Title Priority Date Filing Date
US14/514,381 Abandoned US20150032589A1 (en) 2014-08-08 2014-10-15 Artificial intelligence fraud management solution
US16/168,566 Active 2034-10-01 US11348110B2 (en) 2014-08-08 2018-10-23 Artificial intelligence fraud management solution

Family Applications After (1)

Application Number Title Priority Date Filing Date
US16/168,566 Active 2034-10-01 US11348110B2 (en) 2014-08-08 2018-10-23 Artificial intelligence fraud management solution

Country Status (1)

Country Link
US (2) US20150032589A1 (en)

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106846361A (en) * 2016-12-16 2017-06-13 深圳大学 Method for tracking target and device based on intuitionistic fuzzy random forest
CN106846355A (en) * 2016-12-16 2017-06-13 深圳大学 Method for tracking target and device based on lifting intuitionistic fuzzy tree
CN108205727A (en) * 2016-12-20 2018-06-26 中国科学院沈阳自动化研究所 A kind of digitlization plant process decision-making technique based on decision tree and expert system
WO2018222959A1 (en) * 2017-06-02 2018-12-06 Visa International Service Association System, method, and apparatus for self-adaptive scoring to detect misuse or abuse of commercial cards
CN109409531A (en) * 2018-11-01 2019-03-01 广州品唯软件有限公司 A kind of machine learning method, device and equipment based on serializing file
WO2019211664A1 (en) * 2018-05-02 2019-11-07 Ids Loans Corp. Payment platform for securing payments
WO2019232551A1 (en) * 2018-05-29 2019-12-05 Visa International Service Association Intelligent diversification tool
CN110648217A (en) * 2019-09-08 2020-01-03 贵州普惠链电子商务有限公司 Wind control system based on big data and artificial intelligence
CN111429260A (en) * 2020-03-19 2020-07-17 重庆富民银行股份有限公司 User experience improving method and system for wind control system
CN111443926A (en) * 2020-04-22 2020-07-24 百度在线网络技术(北京)有限公司 Data cleaning method, device, equipment and storage medium
CN111553696A (en) * 2020-04-23 2020-08-18 支付宝(杭州)信息技术有限公司 Risk prompting method and device and electronic equipment
US10956847B2 (en) 2015-05-13 2021-03-23 Advanced New Technologies Co., Ltd. Risk identification based on historical behavioral data
CN112650762A (en) * 2021-03-15 2021-04-13 腾讯科技(深圳)有限公司 Data quality monitoring method and device, electronic equipment and storage medium
CN112819099A (en) * 2021-02-26 2021-05-18 网易(杭州)网络有限公司 Network model training method, data processing method, device, medium and equipment
CN113360733A (en) * 2021-06-17 2021-09-07 林宏佳 Talent data tag classification method and system based on artificial intelligence and cloud platform
CN113743425A (en) * 2020-05-27 2021-12-03 北京沃东天骏信息技术有限公司 Method and device for generating classification model
CN114490619A (en) * 2022-02-15 2022-05-13 北京大数据先进技术研究院 Data filling method, device, equipment and storage medium based on genetic algorithm
US11496480B2 (en) 2018-05-01 2022-11-08 Brighterion, Inc. Securing internet-of-things with smart-agent technology
CN117725620A (en) * 2024-02-07 2024-03-19 蓝象智联(杭州)科技有限公司 Classification result disclosure verification privacy protection method and system based on decision tree

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10672005B1 (en) * 2019-02-19 2020-06-02 Capital One Services, Llc Updating a machine learning fraud model based on third party transaction information
US11502905B1 (en) 2019-12-19 2022-11-15 Wells Fargo Bank, N.A. Computing infrastructure standards assay
US11237847B1 (en) 2019-12-19 2022-02-01 Wells Fargo Bank, N.A. Automated standards-based computing system reconfiguration
CN111899027A (en) * 2020-08-04 2020-11-06 第四范式(北京)技术有限公司 Anti-fraud model training method and device
US11775974B2 (en) * 2020-08-14 2023-10-03 Mastercard International Incorporated Systems and methods for detection of fraud attacks using merchants to test payment accounts
CN112348403B (en) * 2020-11-26 2021-09-07 德联易控科技(北京)有限公司 Wind control model construction method and device and electronic equipment
CN112950291B (en) * 2021-03-31 2023-07-21 北京奇艺世纪科技有限公司 Model deviation optimization method, device, equipment and computer readable medium

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060041464A1 (en) * 2004-08-19 2006-02-23 Transunion Llc. System and method for developing an analytic fraud model

Family Cites Families (138)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB8918553D0 (en) 1989-08-15 1989-09-27 Digital Equipment Int Message control system
DE4230419A1 (en) 1992-09-11 1994-03-17 Siemens Ag Neural network with rule-base network configuration
US7251624B1 (en) 1992-09-08 2007-07-31 Fair Isaac Corporation Score based decisioning
US5819226A (en) * 1992-09-08 1998-10-06 Hnc Software Inc. Fraud detection using predictive modeling
SE500769C2 (en) 1993-06-21 1994-08-29 Televerket Procedure for locating mobile stations in digital telecommunications networks
US5420910B1 (en) 1993-06-29 1998-02-17 Airtouch Communications Inc Method and apparatus for fraud control in cellular telephone systems utilizing rf signature comparison
US5442730A (en) 1993-10-08 1995-08-15 International Business Machines Corporation Adaptive job scheduling using neural network priority functions
US5692107A (en) 1994-03-15 1997-11-25 Lockheed Missiles & Space Company, Inc. Method for generating predictive models in a computer system
AU5424396A (en) 1995-03-15 1996-10-02 Coral Systems, Inc. Apparatus and method for preventing fraudulent activity in a communication network
US6601048B1 (en) 1997-09-12 2003-07-29 Mci Communications Corporation System and method for detecting and managing fraud
GB2303275B (en) 1995-07-13 1997-06-25 Northern Telecom Ltd Detecting mobile telephone misuse
US5822741A (en) 1996-02-05 1998-10-13 Lockheed Martin Corporation Neural network/conceptual clustering fraud detection architecture
US6026397A (en) 1996-05-22 2000-02-15 Electronic Data Systems Corporation Data analysis system and method
US5930392A (en) 1996-07-12 1999-07-27 Lucent Technologies Inc. Classification technique using random decision forests
US6453246B1 (en) 1996-11-04 2002-09-17 3-Dimensional Pharmaceuticals, Inc. System, method, and computer program product for representing proximity data in a multi-dimensional space
GB2321364A (en) 1997-01-21 1998-07-22 Northern Telecom Ltd Retraining neural network
US6336109B2 (en) 1997-04-15 2002-01-01 Cerebrus Solutions Limited Method and apparatus for inducing rules from data classifiers
AU8573198A (en) 1997-07-21 1999-02-10 Kristin Ann Farry Method of evolving classifier programs for signal processing and control
US7096192B1 (en) 1997-07-28 2006-08-22 Cybersource Corporation Method and system for detecting fraud in a credit card transaction over a computer network
US7403922B1 (en) 1997-07-28 2008-07-22 Cybersource Corporation Method and apparatus for evaluating fraud risk in an electronic commerce transaction
US6029154A (en) 1997-07-28 2000-02-22 Internet Commerce Services Corporation Method and system for detecting fraud in a credit card transaction over the internet
US6122624A (en) 1998-05-28 2000-09-19 Automated Transaction Corp. System and method for enhanced fraud detection in automated electronic purchases
US6347374B1 (en) 1998-06-05 2002-02-12 Intrusion.Com, Inc. Event detection
US6161130A (en) 1998-06-23 2000-12-12 Microsoft Corporation Technique which utilizes a probabilistic classifier to detect "junk" e-mail by automatically updating a training and re-training the classifier based on the updated training set
EP1125232A1 (en) 1998-11-03 2001-08-22 BRITISH TELECOMMUNICATIONS public limited company Apparatus for processing communications
US6321338B1 (en) 1998-11-09 2001-11-20 Sri International Network surveillance
US6254000B1 (en) 1998-11-13 2001-07-03 First Data Corporation System and method for providing a card transaction authorization fraud warning
CA2351478A1 (en) 1998-11-18 2000-05-25 Lightbridge Inc. Event manager for use in fraud detection
US6424997B1 (en) 1999-01-27 2002-07-23 International Business Machines Corporation Machine learning based electronic messaging system
US6430539B1 (en) 1999-05-06 2002-08-06 Hnc Software Predictive modeling of consumer financial behavior
US8666757B2 (en) 1999-07-28 2014-03-04 Fair Isaac Corporation Detection of upcoding and code gaming fraud and abuse in prospective payment healthcare systems
US7478089B2 (en) 2003-10-29 2009-01-13 Kontera Technologies, Inc. System and method for real-time web page context analysis for the real-time insertion of textual markup objects and dynamic content
US8972590B2 (en) 2000-09-14 2015-03-03 Kirsten Aldrich Highly accurate security and filtering software
US6850606B2 (en) 2001-09-25 2005-02-01 Fair Isaac Corporation Self-learning real-time prioritization of telecommunication fraud control actions
US7036146B1 (en) 2000-10-03 2006-04-25 Sandia Corporation System and method for secure group transactions
US6782375B2 (en) 2001-01-16 2004-08-24 Providian Bancorp Services Neural network based decision processor and method
US20020147754A1 (en) 2001-01-31 2002-10-10 Dempsey Derek M. Vector difference measures for data classifiers
US7089592B2 (en) 2001-03-15 2006-08-08 Brighterion, Inc. Systems and methods for dynamic detection and prevention of electronic fraud
US7877421B2 (en) 2001-05-25 2011-01-25 International Business Machines Corporation Method and system for mapping enterprise data assets to a semantic information model
US20020188533A1 (en) 2001-05-25 2002-12-12 Capital One Financial Corporation Methods and systems for managing financial accounts having adjustable account parameters
US7865427B2 (en) 2001-05-30 2011-01-04 Cybersource Corporation Method and apparatus for evaluating fraud risk in an electronic commerce transaction
US20070174164A1 (en) 2001-06-01 2007-07-26 American Express Travel Related Services Company, Inc. Network/Processor Fraud Scoring for Card Not Present Transactions
US20030009495A1 (en) 2001-06-29 2003-01-09 Akli Adjaoute Systems and methods for filtering electronic content
US7835919B1 (en) 2001-08-10 2010-11-16 Freddie Mac Systems and methods for home value scoring
US8365230B2 (en) 2001-09-19 2013-01-29 Tvworks, Llc Interactive user interface for television applications
US7159208B2 (en) 2001-10-25 2007-01-02 Keeley Thomas M Programming toolkit for use in the development of knowledge enhanced electronic logic programs
WO2003065252A1 (en) 2002-02-01 2003-08-07 John Fairweather System and method for managing memory
US7813937B1 (en) 2002-02-15 2010-10-12 Fair Isaac Corporation Consistency modeling of healthcare claims to detect fraud and abuse
US6889207B2 (en) 2002-06-18 2005-05-03 Bellsouth Intellectual Property Corporation Content control in a device environment
US7657482B1 (en) 2002-07-15 2010-02-02 Paymentech, L.P. System and apparatus for transaction fraud processing
US8972582B2 (en) 2002-10-03 2015-03-03 Nokia Corporation Method and apparatus enabling reauthentication in a cellular communication system
US7720761B2 (en) 2002-11-18 2010-05-18 Jpmorgan Chase Bank, N. A. Method and system for enhancing credit line management, price management and other discretionary levels setting for financial accounts
US7406502B1 (en) 2003-02-20 2008-07-29 Sonicwall, Inc. Method and system for classifying a message based on canonical equivalent of acceptable items included in the message
US8266215B2 (en) 2003-02-20 2012-09-11 Sonicwall, Inc. Using distinguishing properties to classify messages
US7483947B2 (en) 2003-05-02 2009-01-27 Microsoft Corporation Message rendering for identification of content features
JP2004334526A (en) 2003-05-07 2004-11-25 Intelligent Wave Inc Calculation program and method for illegal determination score value, and calculation system for illegal determination score value of credit card
US7272853B2 (en) 2003-06-04 2007-09-18 Microsoft Corporation Origination/destination features and lists for spam prevention
WO2005020031A2 (en) 2003-08-22 2005-03-03 Mastercard International Incorporated Methods and systems for predicting business behavior from profiling consumer card transactions
US7324856B1 (en) 2003-09-25 2008-01-29 Rockwell Automation Technologies, Inc. Autogeneration of code via human-machine interfaces (HMI) and self-building HMI
CN1855932A (en) 2004-12-22 2006-11-01 国际商业机器公司 System and method for managing the service levels provided by service providers
US20060149674A1 (en) 2004-12-30 2006-07-06 Mike Cook System and method for identity-based fraud detection for transactions using a plurality of historical identity records
WO2006096812A2 (en) 2005-03-07 2006-09-14 Skytide, Inc. Analyzing and reporting extensible data from multiple sources in multiple formats
US8768766B2 (en) 2005-03-07 2014-07-01 Turn Inc. Enhanced online advertising system
US20070174214A1 (en) 2005-04-13 2007-07-26 Robert Welsh Integrated fraud management systems and methods
US7631362B2 (en) 2005-09-20 2009-12-08 International Business Machines Corporation Method and system for adaptive identity analysis, behavioral comparison, compliance, and application protection using usage information
WO2007041709A1 (en) 2005-10-04 2007-04-12 Basepoint Analytics Llc System and method of detecting fraud
US20070112667A1 (en) 2005-10-31 2007-05-17 Dun And Bradstreet System and method for providing a fraud risk score
EP1816595A1 (en) 2006-02-06 2007-08-08 MediaKey Ltd. A method and a system for identifying potentially fraudulent customers in relation to network based commerce activities, in particular involving payment, and a computer program for performing said method
US20070239936A1 (en) 2006-04-05 2007-10-11 Ilya Gluhovsky Method and apparatus for statistically modeling a processor in a computer system
US8650080B2 (en) 2006-04-10 2014-02-11 International Business Machines Corporation User-browser interaction-based fraud detection system
US8027439B2 (en) 2006-09-18 2011-09-27 Fair Isaac Corporation Self-calibrating fraud detection
WO2008045354A2 (en) 2006-10-05 2008-04-17 Richard Zollino Method for analyzing credit card transaction data
US20080104101A1 (en) 2006-10-27 2008-05-01 Kirshenbaum Evan R Producing a feature in response to a received expression
US20080162259A1 (en) 2006-12-29 2008-07-03 Ebay Inc. Associated community platform
US7716610B2 (en) 2007-01-05 2010-05-11 International Business Machines Corporation Distributable and serializable finite state machine
US7433960B1 (en) 2008-01-04 2008-10-07 International Business Machines Corporation Systems, methods and computer products for profile based identity verification over the internet
US7882027B2 (en) 2008-03-28 2011-02-01 American Express Travel Related Services Company, Inc. Consumer behaviors at lender level
US8401990B2 (en) 2008-07-25 2013-03-19 Ca, Inc. System and method for aggregating raw data into a star schema
US10230803B2 (en) 2008-07-30 2019-03-12 Excalibur Ip, Llc System and method for improved mapping and routing
US8041597B2 (en) 2008-08-08 2011-10-18 Fair Isaac Corporation Self-calibrating outlier model and adaptive cascade model for fraud detection
US20100082751A1 (en) 2008-09-29 2010-04-01 Microsoft Corporation User perception of electronic messaging
US9400879B2 (en) 2008-11-05 2016-07-26 Xerox Corporation Method and system for providing authentication through aggregate analysis of behavioral and time patterns
US8572736B2 (en) 2008-11-12 2013-10-29 YeeJang James Lin System and method for detecting behavior anomaly in information access
US8126791B2 (en) 2008-11-14 2012-02-28 Mastercard International Incorporated Methods and systems for providing a decision making platform
US8838474B2 (en) 2009-01-26 2014-09-16 Bank Of America Corporation System update management
IES20100091A2 (en) 2009-02-20 2010-09-01 Moqom Ltd Merchant alert system and method for fraud prevention
US8090648B2 (en) 2009-03-04 2012-01-03 Fair Isaac Corporation Fraud detection based on efficient frequent-behavior sorted lists
US8145562B2 (en) 2009-03-09 2012-03-27 Moshe Wasserblat Apparatus and method for fraud prevention
US8600873B2 (en) 2009-05-28 2013-12-03 Visa International Service Association Managed real-time transaction fraud analysis and decisioning
US20110016041A1 (en) 2009-07-14 2011-01-20 Scragg Ernest M Triggering Fraud Rules for Financial Transactions
US9529864B2 (en) 2009-08-28 2016-12-27 Microsoft Technology Licensing, Llc Data mining electronic communications
US20110055264A1 (en) 2009-08-28 2011-03-03 Microsoft Corporation Data mining organization communications
US8805737B1 (en) 2009-11-02 2014-08-12 Sas Institute Inc. Computer-implemented multiple entity dynamic summarization systems and methods
US20120137367A1 (en) 2009-11-06 2012-05-31 Cataphora, Inc. Continuous anomaly detection based on behavior modeling and heterogeneous information analysis
WO2011094734A2 (en) 2010-02-01 2011-08-04 Jumptap, Inc. Integrated advertising system
US20110238566A1 (en) 2010-02-16 2011-09-29 Digital Risk, Llc System and methods for determining and reporting risk associated with financial instruments
US8626663B2 (en) 2010-03-23 2014-01-07 Visa International Service Association Merchant fraud risk score
US8473415B2 (en) 2010-05-04 2013-06-25 Kevin Paul Siegel System and method for identifying a point of compromise in a payment transaction processing system
US9215244B2 (en) 2010-11-18 2015-12-15 The Boeing Company Context aware network security monitoring for threat detection
US8744979B2 (en) 2010-12-06 2014-06-03 Microsoft Corporation Electronic communications triage using recipient's historical behavioral and feedback
US20120203698A1 (en) 2011-02-07 2012-08-09 Dustin Duncan Method and System for Fraud Detection and Notification
US11386096B2 (en) 2011-02-22 2022-07-12 Refinitiv Us Organization Llc Entity fingerprints
US8458069B2 (en) 2011-03-04 2013-06-04 Brighterion, Inc. Systems and methods for adaptive identification of sources of fraud
US8751399B2 (en) 2011-07-15 2014-06-10 Wal-Mart Stores, Inc. Multi-channel data driven, real-time anti-money laundering system for electronic payment cards
US8555077B2 (en) 2011-11-23 2013-10-08 Elwha Llc Determining device identity using a behavioral fingerprint
US10902426B2 (en) 2012-02-06 2021-01-26 Fair Isaac Corporation Multi-layered self-calibrating analytics
US9032258B2 (en) 2012-09-14 2015-05-12 Infineon Technologies Ag Safety system challenge-and-response using modified watchdog timer
US20140149128A1 (en) 2012-11-29 2014-05-29 Verizon Patent And Licensing Inc. Healthcare fraud detection with machine learning
US20140180974A1 (en) 2012-12-21 2014-06-26 Fair Isaac Corporation Transaction Risk Detection
US9218568B2 (en) 2013-03-15 2015-12-22 Business Objects Software Ltd. Disambiguating data using contextual and historical information
US9264442B2 (en) 2013-04-26 2016-02-16 Palo Alto Research Center Incorporated Detecting anomalies in work practice data by combining multiple domains of information
US9069737B1 (en) 2013-07-15 2015-06-30 Amazon Technologies, Inc. Machine learning based instance remediation
US9898741B2 (en) 2013-07-17 2018-02-20 Visa International Service Association Real time analytics system
US20150161609A1 (en) 2013-12-06 2015-06-11 Cube, Co. System and method for risk and fraud mitigation while processing payment card transactions
US9547834B2 (en) 2014-01-08 2017-01-17 Bank Of America Corporation Transaction performance monitoring
US9384629B2 (en) 2014-03-31 2016-07-05 Fresh Idea Global Limited Automated money laundering detection, notification, and reporting techniques implemented at casino gaming networks
US20180053114A1 (en) 2014-10-23 2018-02-22 Brighterion, Inc. Artificial intelligence for context classifier
CA2892891C (en) 2014-05-27 2022-09-06 The Toronto-Dominion Bank Systems and methods for providing merchant fraud alerts
US20150046224A1 (en) 2014-08-08 2015-02-12 Brighterion, Inc. Reducing false positives with transaction behavior forecasting
US10817530B2 (en) 2015-01-23 2020-10-27 C3.Ai, Inc. Systems, methods, and devices for an enterprise internet-of-things application development platform
WO2017004489A1 (en) 2015-07-02 2017-01-05 Vid Scale, Inc. Sensor processing engine for mobile devices
US10362113B2 (en) 2015-07-02 2019-07-23 Prasenjit Bhadra Cognitive intelligence platform for distributed M2M/ IoT systems
US10324773B2 (en) 2015-09-17 2019-06-18 Salesforce.Com, Inc. Processing events generated by internet of things (IoT)
US11423414B2 (en) 2016-03-18 2022-08-23 Fair Isaac Corporation Advanced learning system for detection and prevention of money laundering
US9721296B1 (en) 2016-03-24 2017-08-01 Www.Trustscience.Com Inc. Learning an entity's trust model and risk tolerance to calculate a risk score
US10237284B2 (en) 2016-03-31 2019-03-19 International Business Machines Corporation Internet of things security appliance
US10104567B2 (en) 2016-05-31 2018-10-16 At&T Intellectual Property I, L.P. System and method for event based internet of things (IOT) device status monitoring and reporting in a mobility network
CN107644279A (en) 2016-07-21 2018-01-30 阿里巴巴集团控股有限公司 The modeling method and device of evaluation model
EP3279823B1 (en) 2016-08-01 2020-09-23 Secure-IC SAS Security supervision
US20180040064A1 (en) 2016-08-04 2018-02-08 Xero Limited Network-based automated prediction modeling
US20180048710A1 (en) 2016-08-11 2018-02-15 Afero, Inc. Internet of things (iot) storage device, system and method
US10339606B2 (en) 2016-09-07 2019-07-02 American Express Travel Related Services Company, Inc. Systems and methods for an automatically-updating fraud detection variable
KR101765235B1 (en) 2016-11-28 2017-08-04 한국건설기술연구원 FACILITY MAINTENANCE SYSTEM USING INTERNET OF THINGS (IoT) BASED SENSOR AND UNMANNED AIR VEHICLE (UAV), AND METHOD FOR THE SAME
US11238528B2 (en) 2016-12-22 2022-02-01 American Express Travel Related Services Company, Inc. Systems and methods for custom ranking objectives for machine learning models applicable to fraud and credit risk assessments
US10087063B2 (en) 2017-01-20 2018-10-02 Afero, Inc. Internet of things (IOT) system and method for monitoring and collecting data in a beverage dispensing system
US20180253657A1 (en) 2017-03-02 2018-09-06 Liang Zhao Real-time credit risk management system
US10586280B2 (en) 2018-01-30 2020-03-10 PointPredictive Inc. Risk-based machine learning classsifier
US10838705B2 (en) 2018-02-12 2020-11-17 Afero, Inc. System and method for service-initiated internet of things (IoT) device updates

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060041464A1 (en) * 2004-08-19 2006-02-23 Transunion Llc. System and method for developing an analytic fraud model

Cited By (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10956847B2 (en) 2015-05-13 2021-03-23 Advanced New Technologies Co., Ltd. Risk identification based on historical behavioral data
CN106846355A (en) * 2016-12-16 2017-06-13 深圳大学 Method for tracking target and device based on lifting intuitionistic fuzzy tree
CN106846361A (en) * 2016-12-16 2017-06-13 深圳大学 Method for tracking target and device based on intuitionistic fuzzy random forest
CN108205727A (en) * 2016-12-20 2018-06-26 中国科学院沈阳自动化研究所 A kind of digitlization plant process decision-making technique based on decision tree and expert system
CN110892442A (en) * 2017-06-02 2020-03-17 维萨国际服务协会 System, method and apparatus for adaptive scoring to detect misuse or abuse of business cards
WO2018222959A1 (en) * 2017-06-02 2018-12-06 Visa International Service Association System, method, and apparatus for self-adaptive scoring to detect misuse or abuse of commercial cards
US11496480B2 (en) 2018-05-01 2022-11-08 Brighterion, Inc. Securing internet-of-things with smart-agent technology
WO2019211664A1 (en) * 2018-05-02 2019-11-07 Ids Loans Corp. Payment platform for securing payments
WO2019232551A1 (en) * 2018-05-29 2019-12-05 Visa International Service Association Intelligent diversification tool
US11651315B2 (en) 2018-05-29 2023-05-16 Visa International Service Association Intelligent diversification tool
US11080639B2 (en) 2018-05-29 2021-08-03 Visa International Service Association Intelligent diversification tool
CN109409531A (en) * 2018-11-01 2019-03-01 广州品唯软件有限公司 A kind of machine learning method, device and equipment based on serializing file
CN110648217A (en) * 2019-09-08 2020-01-03 贵州普惠链电子商务有限公司 Wind control system based on big data and artificial intelligence
CN111429260A (en) * 2020-03-19 2020-07-17 重庆富民银行股份有限公司 User experience improving method and system for wind control system
CN111443926A (en) * 2020-04-22 2020-07-24 百度在线网络技术(北京)有限公司 Data cleaning method, device, equipment and storage medium
CN111553696A (en) * 2020-04-23 2020-08-18 支付宝(杭州)信息技术有限公司 Risk prompting method and device and electronic equipment
CN113743425A (en) * 2020-05-27 2021-12-03 北京沃东天骏信息技术有限公司 Method and device for generating classification model
CN112819099A (en) * 2021-02-26 2021-05-18 网易(杭州)网络有限公司 Network model training method, data processing method, device, medium and equipment
CN112650762B (en) * 2021-03-15 2021-07-02 腾讯科技(深圳)有限公司 Data quality monitoring method and device, electronic equipment and storage medium
CN112650762A (en) * 2021-03-15 2021-04-13 腾讯科技(深圳)有限公司 Data quality monitoring method and device, electronic equipment and storage medium
CN113360733A (en) * 2021-06-17 2021-09-07 林宏佳 Talent data tag classification method and system based on artificial intelligence and cloud platform
CN114490619A (en) * 2022-02-15 2022-05-13 北京大数据先进技术研究院 Data filling method, device, equipment and storage medium based on genetic algorithm
CN117725620A (en) * 2024-02-07 2024-03-19 蓝象智联(杭州)科技有限公司 Classification result disclosure verification privacy protection method and system based on decision tree

Also Published As

Publication number Publication date
US20220277310A1 (en) 2022-09-01
US11348110B2 (en) 2022-05-31
US20190066112A1 (en) 2019-02-28

Similar Documents

Publication Publication Date Title
US11348110B2 (en) Artificial intelligence fraud management solution
US11875355B2 (en) Fast access vectors in real-time behavioral profiling in fraudulent financial transactions
US20190130407A1 (en) Real-time cross-channel fraud protection
US20190164181A1 (en) Reducing false positives with transaction behavior forecasting
US11734692B2 (en) Data breach detection
US11507957B2 (en) Smart retail analytics and commercial messaging
US20190279218A1 (en) Behavior tracking smart agents for artificial intelligence fraud protection and management
US20150046332A1 (en) Behavior tracking smart agents for artificial intelligence fraud protection and management
Rawat et al. Software defect prediction models for quality improvement: a literature study
Vanini et al. Online payment fraud: from anomaly detection to risk management
Patil et al. Customer churn prediction for retail business
Vorobyev et al. Reducing false positives in bank anti-fraud systems based on rule induction in distributed tree-based models
Tripathi et al. Machine learning models for evaluating the benefits of business intelligence systems
Alexandre et al. Incorporating machine learning and a risk-based strategy in an anti-money laundering multiagent system
US11972430B2 (en) Artificial intelligence fraud management solution
GB2521749A (en) Real-time adaptive decision system and method using predictive modeling
Ul Ain et al. Analysis of variant data mining methods for depiction of fraud
Danenas Intelligent financial fraud detection and analysis: a survey of recent patents
Ziv et al. Improving nonconformity responsibility decisions: a semi-automated model based on CRISP-DM
Sevak et al. Applications of AI in Technology and Management
Kisutsa Loan Default Prediction Using Machine Learning: a Case of Mobile Based Lending
Dinuka Abusing Pattern Detection System for Stock Market
Al Kurdi et al. Stock Market Price Prediction Using Machine Learning Techniques Check for updates
Papageorgiou et al. New Planning Methodologies in Strategic Management; An Inter-Paradigm System Dynamics Approach
Baccan et al. On the cognitive surprise in risk management: An analysis of the value-at-risk (VaR) historical

Legal Events

Date Code Title Description
AS Assignment

Owner name: BRIGHTERION, INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ADJAOUTE, AKLI;REEL/FRAME:034138/0758

Effective date: 20141104

AS Assignment

Owner name: BRIGHTERION INC, CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ADJAOUTE, AKLI;REEL/FRAME:041545/0279

Effective date: 20170309

STCB Information on status: application discontinuation

Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION