Patent Grant
8930261
Embodiments of the disclosure relate to a method and system to generate a risk score for a caller.
Modern enterprises such as merchants, banks, insurance companies, telecommunications companies, and payments companies are susceptible to many forms of fraud, but one form that is particularly pernicious is credit card fraud. With credit card fraud, a fraudster fraudulently uses a credit card or credit card credentials (name, expiration, etc.) of another to enter into a transaction for goods or services with a merchant.
Another form of fraud that is very difficult for merchants, particularly large merchants, to detect, if at all, occurs in the job application process where an applicant has been designated as undesirable in the past—perhaps as a result of having been fired from the employ of the merchant at one location or for failing a criminal background check—fraudulently assumes a different identity and then applies for a job with the same merchant at a different location. In such cases, failure to detect the fraud could result in the rehiring of the fraudster to the detriment of the merchant. If the fraudster has assumed a new identity, background checks based on identity factors such as names or social security numbers become essentially useless. For example consider that case of a large chain store, such as, for example, Walmart. In this case, an employee can be terminated for say theft at one location, but then rehired under a different identity at another location. The employee represents a grave security risk to the company particularly since the employee, being familiar with the company's systems and internal procedures will be able to engage in further conduct injurious to the company.
In one aspect, the present disclosure provides a method for generating a fraud risk score representing a fraud risk associated with an individual, the method comprising: a) determining a telephony channel risk score from at least one of audio channel data and non-audio channel data of the individual; and b) generating the fraud risk score based on at least one of the telephony channel risk score, the audio channel data, and the non-audio channel data.
In another aspect, the present disclosure provides a risk score calculator for generating a fraud risk score representing a fraud risk associated with an individual, the system comprising: a) a telephony risk score calculator capable of determining a telephony channel risk score from at least one of audio channel data and non-audio channel data of the individual; and b) an aggregate risk score generator capable of generating the fraud risk score based on at least one of the telephony channel risk score, the audio channel data, and the non-audio channel data.
In yet another aspect of the present disclosure, the present disclosure provides computer-implemented methods, computer systems and a computer readable medium containing a computer program product for generating a fraud risk score representing a fraud risk associated with an individual, the computer program product comprising: a) program code for determining a telephony channel risk score from at least one of audio channel data and non-audio channel data of the individual; and b) program code for generating the fraud risk score based on at least one of the telephony channel risk score, the audio channel data, and the non-audio channel data.
The accompanying drawings, where like reference numerals refer to identical or functionally similar elements throughout the separate views, together with the detailed description below, are incorporated in and form part of the specification, and serve to further illustrate embodiments of concepts that include the claimed disclosure, and explain various principles and advantages of those embodiments.
The method and system have been represented where appropriate by conventional symbols in the drawings, showing only those specific details that are pertinent to understanding the embodiments of the present disclosure so as not to obscure the disclosure with details that will be readily apparent to those of ordinary skill in the art having the benefit of the description herein.
In the following description, for purposes of explanation, numerous specific details are set forth in order to provide a thorough understanding of the disclosure. It will be apparent, however, to one skilled in the art, that the disclosure may be practiced without these specific details. In other instances, structures and devices are shown at block diagram form only in order to avoid obscuring the disclosure.
Reference in this specification to “one embodiment” or “an embodiment” means that a particular feature, structure, or characteristic described in connection with the embodiment is included in at least one embodiment of the disclosure. The appearances of the phrase “in one embodiment” in various places in the specification are not necessarily all referring to the same embodiment, nor are separate or alternative embodiments mutually exclusive of other embodiments. Moreover, various features are described which may be exhibited by some embodiments and not by others. Similarly, various requirements are described which may be requirements for some embodiments but not other embodiments.
Broadly, embodiments of the present disclosure calculate an Aggregate Fraud Risk Score (AFRS) representing a fraud risk associated with an individual who called a modern enterprise such as merchants, banks, insurance companies, telecommunications companies, and payments companies. The AFRS is calculated based on an audio channel risk score and a non-audio channel risk score. The audio channel risk score is calculated based on an analysis of a first set of parameters i.e. audio channel data associated with an audio of the individual. The non-audio channel risk score is calculated based on an analysis of a second set of parameters i.e. non-audio channel data associated with non-audio information related to the individual. The AFRS may be used in an automated system or in a system with an agent review. The AFRS along with other pieces of information may help in making a final decision on the individual that whether the individual should be accepted, rejected, or investigated further. Further, the final decision along with the other information may be displayed on a display screen.
Referring to
The audio recording device 10 may be configured to transmit the recoded call to a database 12. The database 12 includes phone details of all possible calls received at the modern enterprise 4. In one embodiment, the phone details may include at least one of an audio conversation between the modern enterprise 4 and the callers, an amount of the transaction, type of goods or services ordered for (in case of a credit card transaction), a time of call, quantity of goods, reason for the call like placing an order or checking status, credit card credentials, a recipient of the goods, a place of shipment, billing address, caller identity such as a name and/or a social security number of the caller or agent ID (in case of an agent) or an employee ID number, a phone number from which the call is made, a phone number to which the call is made, and other transaction information. In one embodiment, the database 12 may include an audio database 14 and an order database 16. The audio database 14 is capable of storing call audios and the order database 16 is capable of storing order details.
The modern enterprise 4 may also include a fraudster database 18. The fraudster database 18 includes voice prints of known fraudsters. Essentially, a voice print includes a set of voice characteristics that uniquely identify a person's voice. In one embodiment, each voice print in the fraudster database 18 is assigned a unique identifier (ID), which in accordance with one embodiment may include one or more incident details such as a social security number used, a name used, credit card credentials used, date and time of fraud, an amount of the fraud, a type of fraud, enterprise impacted, and other details associated with the fraud incident.
In one embodiment, the phone details of all callers may be transmitted to a Risk Score Calculator (RSC) 20 via a file transfer server 22 using internet/LAN 24. The RSC 20 helps in generating an Aggregate Fraud Risk Score (AFRS) representing a fraud risk associated with the caller 2 who called the modern enterprise 4. In one embodiment, the RSC 20 may be a distributed system that includes components that are not all located at a single location, but instead are distributed over multiple locations. The RSC 20 may include software to facilitate communications with the modern enterprise 4 or the call-center ‘X’ to access the database 12. In one embodiment, the software may include a browser which is an application that facilitates communications via the Internet with the modern enterprise 4 or the call center ‘X’ using networking protocols such as for example the Hypertext Transfer Protocol (HTTP)/the Internet Protocol (IP), the Simple Object Access Protocol (SOAP), etc. In another embodiment, the EFD may be integrated in the modern enterprise 4, thereby alleviating the need of transferring the phone details of callers.
Referring now to
In one embodiment, the TRSC 26 may generate a telephony channel risk score from at least one of audio channel data and non-audio channel data of the caller 2. Subsequently, the aggregate risk score generator 28 may generate a fraud risk score based on at least one of the telephony channel risk score, the audio channel data and the non-audio channel data. For each piece of data (whether audio channel data or non-audio channel data), either a score (e.g. likelihood that their voice matches a known fraudster), the data itself (e.g. geographic location of the handset), or both are retrieved. The collection of scores/data gets fed into the aggregate risk score generator 28 for the generation of the fraud risk score.
In one embodiment, the audio channel data may include at least one of an emotion such as stress in the voice sample of the caller 2 when the caller 2 responded to specific questions designed to trigger stress in fraudsters but not in legitimate callers, a voice audio sample of the caller 2 to determine whether the voice sample of the caller 2 matches with a known fraudster by using speaker identification techniques. The speaker identification techniques are generally helpful because fraudsters tend to commit the same crime multiple times once a specific scheme is known to be success, resulting in multiple telephone calls by the same individual when committing fraud on the phone. Further, the first set of parameters may include keywords in the voice sample of the caller 2 and how the voice sample relates to keywords commonly used by known fraudsters, a telephony system used by the caller 2 i.e. whether Public Switched Telephone Network, a mobile phone, and Voice Over Internet Protocol network is being used, a geographic location of the caller 2.
In the present embodiment, the non-audio channel data may include at least one of a phone number called from, a phone number called to, a time duration for which the caller 2 has had the phone number called from, a call frequency to/from the phone number called from, the area code of the phone number called from, number of routing hops needed to complete the call (indication of how far away the call is coming from), geography associated with an area code of the phone number called from, geographical location of the caller 2, whether the caller 2 called from an expected phone number or a non-published number, whether the phone number is being call-forwarded and when that call-forward was initiated, an identity data, transaction data, and Short Message Service channel data.
The identity data may include at least one of a name, social security number, address, phone number, answers to questions about their background (like previous addresses lived at, persons that they shared a residence with, mother's maiden name, color of first car, etc. The transaction data may include at least one of a shipping/recipient address, recipient name, goods ordered, amount of transaction, type of payment (e.g. credit card, Pay Pal, wire, etc.), type and frequency of recent actions (e.g. status checks, change of address, ect.). Further, the SMS channel data may include at least one of a phone number of phone used to send SMS.
Subsequent to the generation of the aggregate fraud risk score, it may be used by an automated system or in a system with agent review. The RSC 20 may also integrate the AFRS against a list of known fraudsters. Further, the RSC 20 may additionally incorporate the fraud data associated with individual fraudster's past fraud activity. In other words, the RSC 20 compares the application or transaction data of the individual with that of individual fraudster's fraud data.
In one embodiment, when the AFRS is used in a system with manual agent review, the aggregate fraud risk score as well as many other pieces of information can be used to help them in making a final determination on an individual (e.g. accept, reject, or investigate further). Thereafter, data about the person being screened and data about each potential match in the DB are displayed on a display screen as shown in
Referring to
Referring now
The system 40 also typically receives a number of inputs and outputs for communicating information externally. For interface with a user or operator, the system 40 may include one or more user input devices 46 (e.g.; a keyboard, a mouse, etc.) and a display 48 (e.g., a Liquid Crystal Display (LCOD) panel).
For additional storage, the system 40 may also include one or more mass storage devices 50, e.g., a floppy or other removable disk drive, a hard disk drive, a Direct Access Storage Device (DASD), an optical drive (e.g. a Compact Disk (CD) drive, a Digital Versatile Disk (DVD) drive, etc.) and/or a tape drive, among others. Furthermore, the system 40 may include an interface with one or more networks 52 (e.g., a local area network (LAN), a wide area network (WAN), a wireless network, and/or the Internet among others) to permit the communication of information with other computers coupled to the networks. It should be appreciated that the system 40 typically includes suitable analog and/or digital interfaces between the processor 42 and each of the components 44, 46, 48 and 52 as is well known in the art.
The system 40 operates under the control of an operating system 54, and executes various computer software applications, components, programs, objects, modules, etc. to perform the respective functions of the RSC 20 and server system of the present disclosure. Moreover, various applications, components, programs, objects, etc. may also execute on one or more processors in another computer coupled to the system 40 via a network 52, e.g. in a distributed computing environment, whereby the processing required, to implement the functions of a computer program may be allocated to multiple computers over a network.
In general, the routines executed to implement the embodiments of the present disclosure, may be implemented as part of an operating system or a specific applications component, program, object, module or sequence of instructions referred to as “computer programs.” The computer programs typically comprise one or more instructions set at various times in various memory and storage devices in a computer, and that, when read and executed by one or more processors in a computer; cause the computer to perform operations necessary to execute elements involving the various aspects of the present disclosure. Moreover, while the disclosure has been described in the context of fully functioning computers and computer systems, those skilled in the art will appreciate that the various embodiments of the present disclosure are capable of being distributed as a program product in a variety of forms, and that the present disclosure applies equally regardless of the particular type of machine or computer-readable media used to actually effect the distribution. Examples of computer-readable media include but are not limited to recordable type media such as volatile and non-volatile memory devices, floppy and other removable disks, hard disk drives, optical disks (e.g., Compact Disk Read-Only Memory (CD ROMS), Digital Versatile Disks, (DVDs), etc.), among others, and transmission type media such as digital and analog communication links.
This application is a continuation-in-part of the U.S. patent application Ser. No. 11/404,342 filed Apr. 14, 2006, which in turn claims priority benefit to U.S. provisional patent application Ser. No. 60/673,472, titled “Detecting fraudulent use of financial account numbers using voiceprints” and filed Apr. 21, 2005. This application claims the benefit of priority to the U.S. application Ser. No. 61/335,677 filed Jan. 11, 2010.
| Number | Name | Date | Kind |
|---|---|---|---|
| 4653097 | Watanabe et al. | Mar 1987 | A |
| 5805674 | Anderson, Jr. | Sep 1998 | A |
| 5907602 | Peel et al. | May 1999 | A |
| 5963908 | Chadha | Oct 1999 | A |
| 5999525 | Krishnaswamy et al. | Dec 1999 | A |
| 6044382 | Martino | Mar 2000 | A |
| 6145083 | Shaffer et al. | Nov 2000 | A |
| 6266640 | Fromm | Jul 2001 | B1 |
| 6427137 | Petrushin | Jul 2002 | B2 |
| 6510415 | Talmor et al. | Jan 2003 | B1 |
| 6587552 | Zimmermann | Jul 2003 | B1 |
| 6597775 | Lawyer et al. | Jul 2003 | B2 |
| 7039951 | Chaudhari et al. | May 2006 | B1 |
| 7158622 | Lawyer et al. | Jan 2007 | B2 |
| 7212613 | Kim et al. | May 2007 | B2 |
| 7386105 | Wasserblat et al. | Jun 2008 | B2 |
| 7539290 | Ortel | May 2009 | B2 |
| 7657431 | Hayakawa | Feb 2010 | B2 |
| 7668769 | Baker et al. | Feb 2010 | B2 |
| 7778832 | Broman et al. | Aug 2010 | B2 |
| 7822605 | Zigel et al. | Oct 2010 | B2 |
| 7908645 | Varghese et al. | Mar 2011 | B2 |
| 7940897 | Khor et al. | May 2011 | B2 |
| 8036892 | Broman et al. | Oct 2011 | B2 |
| 8073691 | Rajakumar | Dec 2011 | B2 |
| 8112278 | Burke | Feb 2012 | B2 |
| 8311826 | Rajakumar | Nov 2012 | B2 |
| 8510215 | Gutierrez et al. | Aug 2013 | B2 |
| 8537978 | Jaiswal et al. | Sep 2013 | B2 |
| 20010026632 | Tamai | Oct 2001 | A1 |
| 20020099649 | Lee et al. | Jul 2002 | A1 |
| 20030147516 | Lawyer et al. | Aug 2003 | A1 |
| 20030208684 | Camacho et al. | Nov 2003 | A1 |
| 20040029087 | White | Feb 2004 | A1 |
| 20040111305 | Gavan et al. | Jun 2004 | A1 |
| 20040131160 | Mardirossian | Jul 2004 | A1 |
| 20040167964 | Rounthwaite et al. | Aug 2004 | A1 |
| 20040203575 | Chin et al. | Oct 2004 | A1 |
| 20040240631 | Broman et al. | Dec 2004 | A1 |
| 20050043014 | Hodge | Feb 2005 | A1 |
| 20050076084 | Loughmiller et al. | Apr 2005 | A1 |
| 20050125226 | Magee | Jun 2005 | A1 |
| 20050125339 | Tidwell et al. | Jun 2005 | A1 |
| 20050185779 | Toms | Aug 2005 | A1 |
| 20060106605 | Saunders et al. | May 2006 | A1 |
| 20060161435 | Atef et al. | Jul 2006 | A1 |
| 20060212407 | Lyon | Sep 2006 | A1 |
| 20060212925 | Shull et al. | Sep 2006 | A1 |
| 20060248019 | Rajakumar | Nov 2006 | A1 |
| 20060282660 | Varghese et al. | Dec 2006 | A1 |
| 20060285665 | Wasserblat et al. | Dec 2006 | A1 |
| 20060289622 | Khor et al. | Dec 2006 | A1 |
| 20060293891 | Pathuel | Dec 2006 | A1 |
| 20070041517 | Clarke et al. | Feb 2007 | A1 |
| 20070074021 | Smithies et al. | Mar 2007 | A1 |
| 20070124246 | Lawyer et al. | May 2007 | A1 |
| 20070280436 | Rajakumar | Dec 2007 | A1 |
| 20070282605 | Rajakumar | Dec 2007 | A1 |
| 20080010066 | Broman et al. | Jan 2008 | A1 |
| 20080195387 | Zigel et al. | Aug 2008 | A1 |
| 20090046841 | Hodge | Feb 2009 | A1 |
| 20090119106 | Rajakumar et al. | May 2009 | A1 |
| 20090147939 | Morganstein et al. | Jun 2009 | A1 |
| 20090254971 | Herz et al. | Oct 2009 | A1 |
| 20100228656 | Wasserblat et al. | Sep 2010 | A1 |
| 20100305946 | Gutierrez | Dec 2010 | A1 |
| 20100305960 | Gutierrez | Dec 2010 | A1 |
| 20110026689 | Metz et al. | Feb 2011 | A1 |
| 20110191106 | Khor et al. | Aug 2011 | A1 |
| 20110255676 | Marchand et al. | Oct 2011 | A1 |
| 20110320484 | Smithies et al. | Dec 2011 | A1 |
| 20120053939 | Gutierrez et al. | Mar 2012 | A9 |
| 20120054202 | Rajakumar | Mar 2012 | A1 |
| 20120072453 | Guerra et al. | Mar 2012 | A1 |
| 20120253805 | Rajakumar et al. | Oct 2012 | A1 |
| 20120254243 | Zeppenfeld et al. | Oct 2012 | A1 |
| 20120263285 | Rajakumar et al. | Oct 2012 | A1 |
| 20120284026 | Cardillo et al. | Nov 2012 | A1 |
| 20130197912 | Hayakawa et al. | Aug 2013 | A1 |
| 20130253919 | Gutierrez et al. | Sep 2013 | A1 |
| Number | Date | Country |
|---|---|---|
| 0598469 | May 1994 | EP |
| 2004-193942 | Jul 2004 | JP |
| 2006038955 | Sep 2006 | JP |
| 0077772 | Dec 2000 | WO |
| 2006013555 | Feb 2006 | WO |
| 2007001452 | Jan 2007 | WO |
| Entry |
|---|
| Goshi, S Majima; Content Transmission method of content authentication system, involves applying hash function to extracted feature value of content to obtain hash value which is enciphered to obtain content authentication data; Jan. 8, 2009; Apr. 7, 2004. |
| Loughmiller, Collier J; Message classification method in computer communication network, involves applying machine learning technique to recognize pattern of incoming messages, to classify messages; Feb. 4, 2012; Mar. 2, 2005. |
| Goodman HD; Junk mail filtering system for laptop computer, employs new filter if new false positive rate and negative rate are better than false positive and negative rate of seed filter; May 5, 2013; Jun. 3, 2004. |
| Number | Date | Country | |
|---|---|---|---|
| 20100303211 A1 | Dec 2010 | US |
| Number | Date | Country | |
|---|---|---|---|
| 61335677 | Jan 2010 | US | |
| 60673472 | Apr 2005 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 11404342 | Apr 2006 | US |
| Child | 12856118 | US |
