Method and system for identifying users and detecting fraud by use of the internet

Description

BACKGROUND OF THE INVENTION

The invention relates to Internet purchasing or e-tail transactions and specifically to detecting fraud in such transactions when ordering products, services, or downloading information over the Internet.

There is a continuing need to develop techniques, devices, and programs to detect and prevent Internet fraud. The invention provides a method and a system for detecting and preventing Internet fraud by utilizing and analyzing a number of parameters to uniquely identify a customer and a potential fraudulent Internet-based transaction.

DESCRIPTION OF THE PRIOR ART

Many methods and systems have been developed over the years to prevent or detect Internet fraud. Today, to gain consumer confidence and prevent revenue loss, a website operator or merchant desires an accurate and trustworthy way of detecting possible Internet fraud. Merely asking for the user name, address, phone number, and e-mail address will not suffice to detect and determine a probable fraudulent transaction because such information can be altered, manipulated, fraudulently obtained, or simply false.

Typically, an Internet user who accesses a website for obtaining a service, product, or information, not only enters personal information as mentioned above, but is also requested to provide a credit card account number, expiration date, and billing address. An online criminal seeking to obtain goods, services, or access to information (text and/or visuals over the Internet) commonly uses someone else's credit card information to obtain the services or products during the transaction. To prevent such occurrences, websites, via credit card companies and banks, often check to see if the address on the order corresponds or matches the address for the credit card owner. Although billing and shipping addresses can differ, such as when someone purchases a gift for another, it is a factor to consider in the verification process. Additionally, merchants utilize phone number matching between that of the Internet order and the credit card company database. Another commonly used technique for order verification is e-mail address verification where the website operator sends a message to the user e-mail address asking the customer to confirm the order prior to executing the same. Yet, online thieves frequently use e mail addresses from large portal sites that offer free e-mail accounts. These e-mail addresses are easily disposable and make it harder for the website operator to identify the fraudulent customer before executing the transaction.

More sophisticated websites now capture a variety of parameters from the user known as Common Gateway Interface parameters (CGI parameters). These parameters commonly include non-personal information such as a user Internet Protocol Address (IP Address). Every computer connected to the Internet is assigned a unique number known as its Internet Protocol (IP) Address. Much like a phone number in a home or office, an IP address can be used to identify the specific user or at least the particular computer used for an Internet transaction. In addition, since these numbers are usually assigned in country-based blocks, an IP address can often be used to identify the country from which a computer is connected to the Internet. Yet, IP addresses can change regularly if a user connects to the Internet via a dial-up connection or reboots their computer. Online thieves also have ways of scrambling their IP addresses or adopting another IP address to make it nearly impossible for the website operator to identify the true user. Thus, websites typically use an IP address plus a further non-personal identifier such as a Browser ID (or user agent), a cookie, and/or a registration ID to try to identify a unique user and to prevent fraud in a second transaction.

A Browser ID provides the website operator with a wealth of information about the user such as the software being used to browse or surf the Internet. Additionally, the Browser ID includes information about the user computer operating system, its current version, its Internet browser and the language. Thus, the Browser ID has valuable information for identifying a unique user. The Browser ID may also have more detailed information such as the type of content the user can receive; for example, this lets the website operator know if the user can run applications in FLASH-animation, open a PDF-file, or access a Microsoft Excel document. Yet, Browser IDs from different computers can be similar, as there are so many Internet users and thus many have similar computers with the same capabilities, programs, web browsers, operating systems, and other information. A cookie refers to a piece of information sent from the web server to the user web browser which is saved on the resident browser software. Cookies might contain specific information such as login or registration information, online ‘shopping cart’ information, user preferences, etc. But cookies can easily be deleted by the computer user, by the browser, or turned off completely so that the server cannot save information on the browser software. Thus, cookies alone cannot serve as a unique identifier to thwart an Internet thief.

Accordingly, what is needed is a method and system that overcomes the problems associated with a typical verification and fraud prevention system for Internet transactions particularly in the purchasing of services, products, or information by uniquely identifying each consumer. Then, when that consumer seeks a second fraudulent purchase, the website operator will detect the same and block the order or, at least, obtain more information to ensure the order is legitimate. The system should be easily implemented within the existing environment and should be adaptable and compatible with existing technology.

SUMMARY OF THE INVENTION

In accordance with the invention, a method and system is provided for detecting potentially fraudulent transactions over the Internet. The method and system comprises obtaining information relating to the transaction from the consumer and combining this information with a unit corresponding to the change of time, a delta of time parameter, to create a unique computer identifier. If a future transaction involves an identical computer identifier, as described below, which was previously engaged in a fraudulent transaction, the website operator can choose to cancel the transaction, pursue legal action, seek further verification, or the like. By using information relating to the first transaction, such as the IP address and/or Browser ID, and combining it with the delta of time parameter, as detailed herein, the website host can more accurately preventively track fraudulent users online by comparing computer identifiers to each other. In so doing, an integrated fraud prevention system is provided which allows the website host, merchant, or the like, to accurately and efficiently determine the validity or fraudulent quality of a transaction sought to be transacted over the Internet.

Accordingly, the invention provides a method and system for improving fraud detection in connection with Internet transactions. Various embodiments of the invention utilize existing technological capabilities to prevent online thieves from making second fraudulent transactions.

Another aspect of the invention provides methods and systems for detecting and preventing Internet fraud committed as a result of “scams” or deceptive practices developed to acquire personal, confidential and/or financial information. The concepts of the invention described above may be characterized as “fingerprinting” techniques and methods to identify and/or prevent fraud involving information obtained through Internet scams. These unlawful practices will likely continue as new techniques are developed in addition to schemes already known to those in field today such as phishing, pharming, spoofing, session cloning and other deceptive practices. It shall be understood that the clock based or delta of time parameters provided herein can be used within the scope of the invention either alone or together with other known or future developed fraud parameters in the fight against online fraud and Internet scams. The various methods and systems provided in accordance with the invention offer improved and enhanced fraud detection and/or prevention solutions for e-commerce and Internet based transactions. These solutions provide a degree of invisibility to users and fraudsters alike and do not require any or all of the following: user interaction (less likelihood for mistakes or carelessness), opt-in (no adoption issues and full coverage of anti-fraud measures can be provided), change in customer behavior (no confusion as to what actions need be taken or avoided), downloads or cookies (no compatibility issues with user computers or browsers). Moreover, these Internet based solutions generate low false-positives and false negatives so as to minimize loss of business for mistakenly turning down legitimate transactions and successfully rejecting transactions that are fraudulent. The invention can incorporate a type of link analysis on user information from compromised accounts to identify a fraudster and/or the computer used to conduct fraudulent transactions online.

The features and advantages to various aspects of the invention are readily apparent from the following detailed description of the best mode for carrying out the invention when taken in connection with the accompanying chart and other portions of the specification and figures herein.

INCORPORATION BY REFERENCE

All publications and patent applications mentioned in this specification are herein incorporated by reference to the same extent as if each individual publication or patent application was specifically and individually indicated to be incorporated by reference.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a chart that illustrates the versatility and accuracy of the invention in weeding out possible fraudulent online transactions.

FIG. 2 describes a connection between a customer computer and a merchant website server whereby each device maintains respective times according to a resident clock.

FIG. 3 A-C is an index of different Time Zones around the world.

FIG. 4 is a flowchart describing an embodiment of the invention that provides a customer computer identifier.

FIG. 5 describes components of a customer computer identifier provided in accordance with the invention.

FIG. 6 illustrates a comparison of computer identifiers that provides a matching parameter for consideration by an online merchant.

FIG. 7 shows various components and parameters that may comprise a user computer identifier in accordance with an embodiment of the invention.

FIG. 8 depicts the comparison between multiple computer identifiers to provide a matching parameter that can be compared against a preselected matching value.

DETAILED DESCRIPTION OF THE INVENTION

The present invention relates to a method and system for detecting potentially fraudulent transactions over the Internet. Various modifications to the preferred embodiment will be readily apparent to those skilled in the art and the general principles herein may be applied to other embodiments. The present invention is not intended to be limited to the embodiment shown but is to be accorded the widest scope consistent with the principles and features described herein. It is to be understood that the website, its host, or operator does not have to be a merchant of goods.

The present invention provides a fraud prevention system for online transactions by uniquely identifying a customer based on a number of parameters at least one of which is a delta of time parameter and another of which is another Internet related parameter, preferably the Browser ID of a computer.

Referring to the chart shown in FIG. 1, what is shown is a series of typical transactions on the Internet between a merchant and several customers. Each customer establishes a connection between his computer and the merchant's website. Upon making this connection, the merchant's website receives some non-personal identification information from the customer. This non-personal information typically includes Common Gateway Interface (CGI) parameters such as the customer's Internet Protocol (IP) Address and the computer's Browser ID. While “hackers” can change, disguise, and/or emulate the IP address to mask a fraudulent transaction, most do not now have the capability nor the idea to do the same for the Browser ID. While some “hackers” can change the Browser ID, it is not a trivial tool and if one needs to change it all the time it is not allowing those thieves to easily steal, hence, they are likely to go to a site that does not check Browser IDs. In a typical embodiment, when the customer decides to purchase services, goods, or information from the website, the customer must input additional and more personal information. This personal identification information may commonly include the customer's name, address, billing and shipping information, phone number, and/or e-mail address. A key feature of the present invention is that the website server also captures the local time of the customer's computer, typically through a program such as Javascript, as well as the local time of the server's computer. The server then calculates the time difference (or delta of time) between the customer's computer clock and the server's computer clock. This can be recorded in any desired format such as hours, minutes, seconds, or the like, but corresponds to a delta of time parameter. The delta of time parameter, the non-personal information, including but not limited to the preferred usage of the Browser ID, and/or the personal information are stored by the merchant and used to uniquely identify the customer.

As shown in FIG. 2, a connection may be established between a customer computer 12 and a merchant website server 14. Upon making the online connection, various information is transmitted by the customer computer 12 that may operate as a unique user and/or computer identifier. This information may include personal information specific to the customer, non-personal information corresponding to the customer computer, and the local time according to the customer computer. The merchant website can receive non-personal customer information including CGI parameters such as the customers IP address and computer Browser ID. The customer can further input personal information when making a purchase from the website including a customer name, address, billing and shipping information, phone number, and/or e-mail address(es). In accordance with this embodiment of the invention, the relative customer computer local time according to its resident clock may be captured, typically through a program such as Javascript or any other time indicator employed by telecommunications and networking systems such as timestamps within transmitted data packets (e.g., TCP timestamps in packets within a data stream wherein each packet includes a header portion containing a 32-bit timestamp generated by a originating computer according to local resident time). The local time of a customer computer or client may be captured during any selected moment of action such as when the customer visits or is logging into a merchant site, at the time of a purchase or at times during an exchange of information that can be reflected in timestamp to data packets transmitted across a selected network or the Internet. At the same time, the merchant web server also maintains and measures a relative website server local time according to a resident clock. The time difference or delta of time as between the customer computer clock and the servers computer clock can be therefore calculated. This approach in determining when to measure a time of action or event may be characterized as opportunistic in that measurements are taken at selected moments in time. The delta of time can be measured, calculated and recorded by the merchant web server or any other computer operating with or connected to the merchant online system. The delta of time may be measured in any desired format or increments of time such as hours, minutes, seconds, milliseconds (microseconds) or the like. Over different periods of time, the delta of time parameters are generally persistent with relatively high degree of accuracy. Accordingly, the measured time difference between these computer clocks provides a fraud parameter in accordance with this aspect of the invention that may link or associate a particular customer computer with transactions that may involve fraud.

The delta of time (Time Diff) parameter provided in accordance with this aspect of the invention may function alone or combined with other parameters to provide what may be characterized as a “PC fingerprint.” Such devices include personal computers or any other type of computing devices or computers including those from Apple Computer, Inc. (hereinafter collectively PC). Each PC connected to the Internet may be configured slightly different and may possess identifiable characteristics distinguishing it from other devices which can be exploited by the invention. A more accurate PC fingerprint may be generally developed by considering a greater number of available computer related parameters. The Time Diff parameter may serve as part of a PC fingerprint for identifying a device which serves as a distinctive mark or characteristic about a particular user device. In addition to a Time Diff parameter, the flow of information exchanged during an Internet session may be captured and provide significant information about the user device on the other end. This type of information exchange considered by the invention is preferably invisible and transparent to users, and does not rely on user action or modification of online behavior. The Time Diff parameter may thus link incidents involving fraud, hacking, phishing etc. by automatically correlating information such as login data, computer data and customer data. For example, by analyzing data sent from the user device, information about the device and browser used by an individual may be obtained such as a Browser ID, the Browser/device IP address and the particular Browser language. By formulating a more accurate PC fingerprint, there is less likelihood of mistakenly associating a user with a fraudulent transaction (false positive) during e-commerce transactions, or failing to detect a fraudster. Other applications of the invention include national security and law enforcement whereby a computer can be uniquely identified in a manner similar to way thieves can be identified by a physical fingerprint. Accordingly, a PC fingerprint provided by the invention enables the ability to link and connect different online accounts and activity to a same device.

The Time Diff parameter provided in accordance with the invention may be captured or measured during various selected moments of action during an Internet session such as the login step or procedure. Today it is estimated that medium to large e-commerce merchants and financial institutions receive over 5,000 orders per day for digital and shipped goods, and over 100,000 logins per day. Many Internet Service Providers (ISPs) also manage accounts and user logins on an enormous scale also. This aspect of the invention can be applied to broader applications online to authenticate a user or uniquely identify a computer on the Internet in addition to e-commerce transactions and fighting fraud or identify theft. For example, the invention may be applied where a merchant or financial institution (FI) server resides in California, USA and a valid customer (Customer) who also normally resides in California, USA. It shall be understood that the following examples below describe login procedures which could be modified according to the invention for any other selected moment of action during an Internet session such as logout procedures, when a user clicks a “submit” button within a user interface, or transmission of any other information between users online.

During a “valid” login procedure, the Customer may initiate a login procedure from a web browser on a computer that registers a time according to its clock as follows: Time=11:00 am/Time Zone: GMT−8 and an IP address from the California region. Meanwhile, from the perspective of the FI, the recorded time at the FI server according to its respective clock may be: Time=11:01 am/Time Zone: GMT−8 and an IP address from the California region. It shall be understood that the invention may incorporate IP address locator tools which determine an identifier for an online device and its location based on geographic regions within a country or around the world. Upon analysis of this information from the Customer that may be reflected on a conceptual or actual Score Card, which can be calculated and stored in memory within the server of the FI or any its other network computers, the FI can determine whether there is a match indicating a valid user login. Accordingly, the exchange of information in the above described example may be reflected as a match on or as a Score Card that measures the validity of the customer: Time Diff=Match/Time Zone=Match/IP=Match.

During a “suspect” login procedure, a Customer may initiate a login procedure from a web browser on a computer that registers a time according to its clock as follows: Time=10:02 pm/Time Zone: GMT+3 and an IP address from a region in Russia. Meanwhile, from the perspective of an FI, the recorded time at the FI server according to its respective clock may be: Time=11:01 am/Time Zone: GMT−8 and an IP address again from its California region. Upon analysis of this information from the Customer in accordance with the invention, the Time Diff and Time Zone measurements as between the Customer and the FI are different from prior valid logins and therefore not a match. Furthermore, the IP address received by the FI indicating a device outside of the California region would not be a match and further suggest an invalid login attempt by a fraudster or other unauthorized individual. The Score Card for this login example measuring the validity of the customer can thus show: Time Diff=No Match/Time Zone=No Match/IP=No Match. The FI would be thus alerted that the alleged Customer attempting to login was likely invalid.

During a “valid” login procedure from a Customer traveling with a computer and browser in London, the Customer may initiate a login procedure at a registered time according to its clock as follows: Time=11:00 pm/Time Zone: GMT−8 and an IP address from a region around London. Meanwhile, from the perspective of an FI, the recorded time at the FI server according to its respective clock may be: Time=11:01 am/Time Zone: GMT−8 and an IP address again from its California region. Upon analysis of this information from the Customer, the Time Diff and Time Zone measurements as between the Customer and the FI are the same as prior valid logins and therefore a match. While the IP address received by the FI indicating a device outside of the California region would not be a match and suggest an invalid login attempt, the comparison of the Time Diff and the Time Zone measurements would be a match. Because the Time Diff parameter provided in accordance with the invention can be used in combination with other fraud parameters for authentication and identification, a Score Card for this login example measuring the validity of the customer could still show a match nevertheless: Time Diff=Match/Time Zone=Match/IP=No Match.

The Time Diff parameter provides fraud detection tools for online merchants, financial institutions and other parties conducting commerce on the Web. These tools can be applied to combat well recognized problems such as reducing the number of false positives which reduce possible revenue from mistakenly identified valid users. In addition, Time Diff based tools provide an effective solution to identifying and preventing fraud during the course of international and overseas transactions where there are significantly increased risks of fraudulent activity. Accordingly, the Time Diff parameters herein allow the creation of a more accurate and relevant geo-location or PC fingerprint for many different types of online transactions around the world.

It shall be understood that the Time Diff parameters provided in accordance in this aspect of the invention may be defined as the difference in the registered computer times as measured in any unit of time (e.g., hours, minutes, seconds, milliseconds, microseconds) between any selected computers either alone, or in combination with the Time Zone herein or any other temporal characteristics. Furthermore, as with other embodiments described herein, the concepts of the invention can be preferably applied to e-commerce transactions to deter or identify fraud but is not limited thereto and are equally applicable to any other online application to uniquely identify and link a computer device on the Internet according to a Time Diff parameter. While consideration of Time Diff parameters alone may not be completely effective as with any solution against fraud, phishing etc., the PC fingerprinting methods and techniques provided herein enables effective link analysis between computer devices and compromised accounts or any other transaction having or associated with a fraudulent past or history. By following and learning from historical incidents of security breaches and fraud, the invention can quickly pinpoint repeat offenders and build a stronger defense against different criminal behavior or schemes now known and those that will be developed in the future.

Another embodiment of the invention provides a delta of time (Delta Time) parameter that can be calculated based on the local time as indicated through the browser of a client computer (Browser Time) and the local time as determined at a server (Server Time)—also applicable in FIG. 2. The Delta Time may operate as a fingerprint for a particular client computer or computer and assists in uniquely identifying it from other computers on the Internet or selected network. Each local time for any client or server connected to the Internet or other network system can be measured according to the clock for that particular device. The measured Delta Time parameter for any selected moment of action in accordance with the invention may be perceived as having two temporal components: an actual time and a time zone. For example, the measured local time at a client site may include a Browser Time of Feb. 1, 2005 14:00:00 PM, and a Browser Time Zone of GMT−8. The measured local time at a server site may include a Server Time of Feb. 1, 2005 17:01:13 PM, and a Server Time Zone of GMT−5. The Delta Time as between the Browser Time and the Server Time, and the Browser Time Zone in comparison to the Server Time Zone, can be therefore calculated in accordance with the invention.

A preferable embodiment of the invention provides a Delta Time or time differential which takes into consideration daylight saving time (DST) in selected time zones and countries around the world such as those identified in FIG. 3. In addition to collecting respective local times and time zones from clients or customer computers and website servers at a current selected date or moment of action, a website server or any other network computer can also capture information relating to particular time and time zones for selected (future or even past) dates. A selected Delta Time during DST (DST Delta Time) can be determined for a particular customer or client computer when the registered time for such other date is different than the current selected date. For example, the Delta Time value for such other date(s) can be +/− one hour ahead or behind. For time zones that do not observe DST, the Delta Time value will remain unchanged during such dates when DST would be normally observed. By calculating and identifying values for Delta Time and relevant Time Zones for multiple dates ahead of time in accordance with the invention, accurate delta of time values can be provided to assist in uniquely identifying or fingerprinting a client or customer computer throughout the year regardless of whether DST is observed in the relevant country or region of the world. Because only certain countries and regions of the world observe DST while others do not, it may be possible to pinpoint in which location the device resides based at least in part on the geo-location fingerprints provided by the invention.

DST (also called Summer Time) is the portion of the year in which the local time of a region is usually advanced by one hour from its official standard time. This system was originally intended to “save” daylight, as opposed to “wasting” time (for example, by sleeping past sunrise). The official time is adjusted forward during the spring and summer months, so that the active hours of daily life involving events such as work and school will better match the hours of daylight in theory. Today approximately 70 countries utilize DST in at least a portion therein—the only major industrialized country not to have introduced daylight saving is currently Japan. DST begins for most of the United States of America at 2 a.m. on the first Sunday of April and clocks are turned (spring) forward one hour. Time reverts to standard time at 2 a.m. on the last Sunday of October and clocks are turned (fall) back one hour. Each time zone switches to and from DST at a different time. Furthermore, legislation may be passed by Congress and other state governmental bodies from time to time on whether to observe, shorten or lengthen DST. DST for the United States of America and its territories is not observed in Hawaii, American Samoa, Guam, Puerto Rico, the Virgin Islands, most of the Eastern Time Zone portion of the State of Indiana, and the state of Arizona (except the Navajo Indian Reservation which does observe DST). Meanwhile, for all countries in the European Union except Iceland, Summer Time begins and ends at 1 am Coordinated Universal Time, UTC (Greenwich Mean Time, GMT) which generally starts on the last Sunday in March, and ends the last Sunday in October. All time zones change at the same moment in the EU. It shall be understood that observance of DST is controversial and ever changing so the delta of time parameter provided in accordance with this embodiment of the invention can be flexibly adapted to devices all over the world when it changes and whether or not DST is observed in certain countries or states within particular time zones.

In this embodiment of the invention, various time zones as shown in FIG. 3 can be predetermined such that it is known ahead of time whether or not DST is applicable for that region. For example, a Delta Time parameter may be calculated for a client computer at some future date(s) during DST. When the clock of a client computer registers a time of 8:00 pm PST (Greenwich Mean Time GMT−8) on a selected date during the fall season, its respective delta of time is changed one hour ahead to 9:00 pm PST (GMT−8) on a selected date in the spring season to account for DST when applicable. By collecting and determining times at one or more selected dates in the future, it is possible to determine whether a device will or will not go into DST from the beginning rather than waiting until later to see whether the registered time is the same or different. This will also assist in identifying the country or region for a selected user device. Accordingly, seemingly unrelated transactions can be linked at least in part from a distinctive timestamp delta of time (Delta Time) that can be measured from the internal clock or data (TCP, NTP, RTP etc. timestamps within data packets) sent from the device. It should be understood that the Delta Time parameter can be calculated according to any selected units of time as with other embodiments of the invention herein such as minutes, seconds, or milliseconds.

FIG. 4 is flow chart depicting another aspect of the invention that provides methods for determining a customer computer identifier (CI) used in detecting fraud in connection with online commercial transactions. At step 10, a merchant web server receives customer personal information, such as name, address, phone number, etc. At step 20, the web server receives non-personal information from the customer such as IP address and Browser ID. At steps 30 and 40, the web server captures the local time and the time zone at the customer computer. The delta of time parameter is then calculated at the time of the transaction at step 50. It should be noted that the delta of time parameter may be calculated at the time of the customer login, other times during a transaction or at any selected moment of action. At step 60, the delta of time parameter and time zones are calculated at one or more future selected dates. Using the customer information and the delta of time parameters, the customer computer identifier is determined at step 70. Any one or more of these steps may be used in combination with each other and in a different order of operation depending on selected applications. It should be further understood that processes in accordance with this embodiment of the invention may provide a delta of time parameter and a computer identifier described elsewhere herein and also used together with other aspects of the invention, e.g. FIG. 2.

In another preferable embodiment of the invention, as illustrated in FIG. 5, a particular subset of selected parameters or fields can combined or aggregated to construct a customer computer identifier 31. For example, the customer computer identifier 31 can be determined based on selected customer personal information 32, customer non-personal information 34, including a Browser ID 36 and a delta of time parameter 38. These selected parameters are not meant to be limiting and other information or fraud parameters described herein or otherwise known to those of ordinary skill may be used to create a customer computer identifier 31. Specifically, another preferable embodiment of the invention includes a customer computer identifier consisting of a delta of time parameter plus a Browser ID alone which can be used to identify or “fingerprint” a user computer. But the selected customer information 32 alone is not entirely reliable by itself as it can not be easily validated as suggested above. Nevertheless when combined with non-personal information 34, and in particular a measured delta of time parameter, other embodiments of the invention may provide reliable and effective methods of identifying computers on the Internet such as those associated with known fraudulent transactions. The delta of time parameters provided in accordance with this and other aspects of the invention herein offer fingerprinting capabilities that uniquely identify particular computing devices used in e-commerce transactions. Because computer users rarely personally change the internal clocks within their computers, the delta of time parameter will likely be the same (or within a range or within predictable limits) for a computer every time that computer is used to conduct an online transaction with the same merchant even if the user disguises or changes the IP address. The Browser ID is also not likely to be changed, even by a consumer seeking to perpetuate a fraudulent transaction. Thus, the delta of time parameter (the difference between the time of day of the computer user's clock and the time of day on the website's server clock as in FIG. 2) is an important component of the computer identifier because it, along with the preferred Browser ID or other personal or non-personal information, is a good indication of the identity of a subsequent user on the same computer. The delta of time parameter also allows the merchant to potentially locate the computer in terms of a time zone, region, or country.

Accordingly, once a merchant determines that a first fraudulent transaction may have been made, the merchant can flag the customer computer identifier, i.e. Browser ID and delta of time. In a preferred embodiment, the computer identifier will include at least its delta of time and Browser ID, but may also include other personal and/or non-personal information. Then, the matching parameter can be used to identify a subsequent transaction which reveals a user with an identical set of computer identifiers. The matching is typically implemented by software, for example, on a hard disk, floppy disk, or other computer-readable medium.

A flowchart is provided in FIG. 6 that illustrates methods to detect fraud according yet another embodiment of the invention. Once a merchant web server determines the computer identifier (CI) for a first transaction, CI₁41 and a subsequent transaction, CI₂42, a comparison can be made as between the two identifiers 41 and 42 and performed at step 44 as illustrated. After the comparison has been made, a computer implemented software program may continue to execute the next step of assigning a matching parameter value to the pair of transactions based on the similarities between the first and subsequent transactions, at step 46. At step 48, the website server running the program to compare computer identifiers may inform the merchant of the matching parameter value, which in turn may provide information suggesting to cancel or confirm the transaction, inform the customer status order, demand more information, or the like. The merchant may then choose its desired course of action. It shall be understood that the memory of a merchant web server may contain software programs with instructions to perform any combination of these steps to provide these and any other methods described herein in accordance with the invention.

FIG. 7 provides a hierarchical representation of user computer identifiers (CIs) for the identification and prevention of online fraud that may be generated as described with the various embodiments of the invention. A computer identifier (CI), which may uniquely identify a computer associated or linked to known fraudulent transactions (or for alternative purpose described herein), may comprise both personal and non-personal parameters. Personal parameters may include consumer identification (ID) information and other selected personal parameters. Examples of selected consumer ID information include but are not limited to the following: user or personal name, address, billing information, shipping information, telephone number(s), e-mail address(es). Meanwhile, non-personal parameters may include a variety of known fraud parameters including computer identification (ID) information. This includes delta of time parameters as described herein which may be measured in any increment of time such as hours, minutes, seconds and milliseconds. Other computer ID information includes Internet Parameters such as Common Gateway Interface (CGI) parameters including a customer computer Internet Protocol (IP) Address and Browser ID.

A particularly important feature of the present invention is the merchant's ability to include, remove, and weigh each parameter within the computer identifier. For example, the merchant may choose to only use the delta of time parameter and Browser ID to form the unique computer identifier. Accordingly, the merchant may set the matching parameter to fit a level of comparison between the first and subsequent transaction. For example, since deltas of time may slightly change because of the differences in accuracy between the server and the user computer clock mechanism, computer clocks and deltas may slightly vary over time. The merchant may set the matching parameter to include a range of delta of time, such as a few minutes, instead of an exact match. This way, even if the user computer “loses time,” the matching parameter will still identify the subsequent transaction as a potential fraudulent one based on other information within the computer identifier.

A series of computer identifiers (CIs) are shown in FIG. 8 which can be matched, e.g., CI₁-CI₄. . . . When a CI is generated by a method or software program by a computer to be identified or associated with a known fraudulent transaction, it can be compared to another selected CI. During a comparison step between the two, a matching parameter (MP) may be calculated. The calculated value of the MP may consist of a raw number or score that is dimensionless, e.g., 11.5, or some increment of measurement including time, e.g., hours, minutes, seconds, milliseconds. The matching parameter may be thus compared in a next step to a preselected reference or baseline Matching Value (MV), e.g., 10.0. A merchant or anyone trying to identify the computer can variably set the MV relative to anticipated or measured MP values. Because of slight differences in computer clocks, network latency, variable Web traffic and bandwidth constraints, the delta of time parameters provided herein may vary from time to time even for the same selected computer. A preselected range (delta t) may be therefore defined in accordance with this aspect of the invention that allows for a certain tolerance setting or range (Range) of MP values relative to the MV. For example, an lower limit within the Range may allow for a [+/−1] variance of the MP value relative to the MV, or a higher limit within the Range may allow for a [+/−5] variance. When the MP value falls within the defined Range relative to the MV, this can indicate a positive match or identification (ID) of a device for various purposes as described herein such as linking a computer to known online fraudulent transactions. When the MP value falls outside of the defined Range relative to the MV, this can indicate a negative match or identification (ID) of a device. It shall be understood that these MP values may be alternatively defined as a Score Card value and incorporated with other corresponding aspects of the invention described elsewhere herein to detect and prevent online fraud. The matching parameters, values and ranges described in accordance with this variation of the invention can be modified and defined in a variety of ways and are not limited to those specifically provided for illustrative purposes. The preceding steps may be carried out as methods provided herein, or alternatively as a series of software program instructions and code.

Furthermore, in accordance with another concept of the invention, the delta of time parameter may be measured as between different times resulting from inherent limitations or flaws of the computer clock(s) in a single device as opposed to multiple devices. In this embodiment of the invention, a device fingerprint or PC fingerprint is created to uniquely identify and link a computer to known fraudulent transactions or behavior by measuring and tracking an inherent inaccuracy or flaw of a resident clock. In comparison to other embodiments of the invention, which may be described as an “external” delta of time as between two different devices (host server/user client), another variation provided herein provides a device identifier using what may be considered an “internal” delta of time as between a single device itself (standalone). Over a period of time, computers clocks as with other ordinary clocks are not perfect and tend to run fast or slow eventually. The rate at which time is gained or lost for a computer clock may be defined as “clock skew” and can be measured in microseconds per second (clock skew may be also defined as the instantaneous difference between readings of any two clocks or the time what a computer thinks it is as compared to another clock). If the clock has a non-zero skew, not only is the end-to-end delay measurement off by an amount equal to what can be defined as clock offset, it also gradually increases or decreases over time depending on whether it is running relatively faster or slower. Even when there is a constant clock skew, the clock offset values increases or decreases over time depending on the sign (+/−) of the skew. So any given computer or device described herein can have a single or multiple clocks (e.g., systems clock, TCP timestamps options clock) that are unable to remain consistent and accurately track time. But the clock skew of a particular device may be different from other (even seemingly identical) computers, and thus serve as a PC fingerprint linking it to certain transactions and fraud. It is generally well known that different computer systems have different and relatively constant clock skews. This imperfection or flaw in the device can thus exploited in a way to identify a particular device or computer in relation to certain transactions and behavior since it is relatively persistent and unique in accordance with the invention. The internal delta of time provided in accordance with this embodiment can be therefore applied in the same manner as any other external delta of time described elsewhere herein to provide a PC fingerprint linked to transactions carried out on devices involving e-tail or e-commerce fraud, breaches in security and various types of criminal online behavior.

In this embodiment of the invention, the delta of parameter can be measured in units of microseconds per second (ms/s, first derivative or rate at which time is gained or lost) while in other embodiments of the invention the parameter can be measured in microseconds. This delta of time parameter can therefore be defined as a time difference measured between a first clock measurement and a second clock measurement over a selected period of time or time interval. For example, the TCP timestamp of a first packet of data from a computer may indicate a time t1 (9:01 am) while a second packet may be sent at time t2 (9:02 am). The first and second packets may arrive at a server at times t3 (9:04 am) and t4 (9:07 am), respectively. The clock skew of the computer can be thus calculated as the rate at which time is lost in this instance: t3−t1=3 mins; t4−t2=5 mins (may assume time differences are not attributed to network delays, latency etc. beyond clock skew). The internal delta of time parameter or clock skew in the context of this embodiment of the invention herein may be calculated as follows: 5 mins−3 mins=2 mins divided by 3 mins (which is the selected period of time between first and second packets). In other words, during the 3 mins of time between sending the first and second data packets, the computer clock lost or ran slow 2 mins (0.666 min/min). While clock skew in general is instead measured on the order of microseconds rather than minutes, this example illustrates how these and other embodiments of the invention are not limited to certain ranges. Other units of measurements are applicable to the delta of time parameters as mentioned elsewhere herein. It shall be understood that both internal and external deltas of time can be applied individually or in combination by themselves, or in addition to other parameters as described herein to provide a distinctive PC fingerprint.

The delta of time parameter can be used in or incorporated into a consortium. See, e.g., U.S. Patent Publication No. 2010/0004965, Inventor: On Eisen, filed Jul. 1, 2009, which is hereby incorporated by reference in its entirety.

Another aspect of the invention provided herein extends to detecting and preventing fraudulent transaction based on information obtained through “scams” or deceptive practices developed to gain personal, confidential and/or financial information. For example, a common technique today known as “phishing” involves gaining personal information from an individual to commit identify theft by typically using fraudulent e-mail messages that appear to come from legitimate businesses. “Phishing” can be defined as the act of sending an e-mail to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail often directs the user to visit a Web site where they are asked to provide or update personal information, such as passwords and credit card, social security, and bank account numbers, that the legitimate organization already has. But the Web site to which the user is directed is phony and established to steal the user information during a fake session. For example, a widely recognized Web site, e.g., eBay, can be targeted in a phishing scam whereby users received e-mails supposedly claiming that the user account is about to be suspended unless they clicked-on a provided link and updated the credit card information that the genuine Web site already had. Because it is relatively simple to make a Web site look like a legitimate organizations site by mimicking the HTML code, people can be tricked into thinking they were actually being contacted by the Web site and will subsequently go to the fraudulent site to update or provide their account information. Moreover, by spamming large groups of people (or spIMming them which spam sent over Instant Messaging (IM) applications that can include links to fake sites), the “phisher” could rely on a response from at least some percentage of people who actually had listed credit card numbers with the Web site legitimately. The concept of phishing in general can also referred to as brand spoofing or carding, a variation on the idea whereby bait is set with the hope that some will bite despite most individuals knowing better. By way of these seemingly legitimate e-mails, criminals “go fishing” for information which is in turn later used to gain access to a real account. Such information includes commonly stolen items in identify theft including a personal identification number (PIN), user account name, a credit card number, and an account number. Regardless of how this information is obtained, the fraud detection and prevention systems provided herein incorporate unique fraud parameters such as delta of time and clock differential parameters to “phish”-out fraudsters from legitimate users.

The criminal act that is often committed after information is “phished” can be ultimately referred to as “account takeover.” These scams are commonly committed by e-mail to users at least partially because millions can be rapidly and efficiently sent to random or selected individuals, but other techniques can involve transmission of a virus through attachments to e-mails. In particular, some viruses can be created to replace the universal resource locator (URL) of a merchant, financial institution or other party commonly stored in a web browser “Favorites” folder. Instead of being routed to an intended legitimate Web site, the user is sent to a fake or spoofed site where user information is shared unknowingly with a fraudster. Similar in nature to e-mail phishing, another Internet scam referred to as “pharming” seeks to obtain personal or private (usually financial related) information through domain spoofing. Rather than being spammed with malicious and mischievous e-mail requests for you to visit spoof Web sites which appear legitimate, pharming can “poison” a DNS server by infusing into it false information resulting in a user request being redirected elsewhere. A browser however will indicate the correct Web site location, which can make pharming a bit more serious and more difficult to detect. A distinction however is that generally phishing attempts to scam people one at a time with an e-mail while pharming allows the scammers to target large groups of people at one time through domain spoofing. Meanwhile, “spoofing” basically includes a variety of ways in which hardware and software can be fooled into operating as if there was a legitimate transaction or exchange taking place. “IP spoofing” more particularly involves trickery that makes a message appear as if it came from an authorized IP address, e.g., e-mail spoofing. As a result, access can be gained to computers through IP spoofing when an intruder sends messages to a computer with an IP address indicating that the message is coming from a trusted host. To engage in IP spoofing, a hacker must first use a variety of techniques to find an IP address of a trusted host and then modify the packet headers so that it appears that the packets are coming from that host.

Malicious software (aka malware) can be also involuntarily downloaded to a computer and designed specifically to damage or disrupt a system by means of a virus or a Trojan horse. A “Trojan horse” is a program that masquerades as a benign application and unlike many viruses, they do not replicate themselves but can be just as destructive. One of the most insidious types of Trojan horse is a program that claims to rid your computer of viruses but instead introduces viruses onto a computer. The concepts relating to fraud detection and prevention can be applied also to other traditional methods of stealing personal information also include e-mail or other means that involve a fake premise or story such as seeking help fleeing from a third world country (e.g., Nigerian scam) or conducting some type of customer service call or transaction (e.g., “Hello, I am from your bank . . . ”).

The fundamental problem of user authentication is exploited time and time again in order to commit fraudulent transaction online. Both financial institutions and merchants face a shared problem and ultimate challenge in properly authenticating who is really on the opposite end of a transaction. Information such as account user names and passwords are useless and rendered ineffective as reliable credentials in light of phishing and other Internet fraud scams. Authentication can be attempted by obtaining various types of information broadly ranging from any or all of the following: something you have; something you know; and/or something you are (biometrics). These include information obtained from tokens (hard, soft, dynamic), shared secret or things not commonly known such as a mother's maiden, a pet's name or a favorite color. An evolving system of security certificates (encryption with public key infrastructure (PKI), secure sockets layer (SSL)) may be relied upon also to verify and authenticate the validity of a party involved in an Internet transaction. Third party bureaus are also relied upon to provide information that can be used to authenticate an individual such as D&B reports, credit histories from Equifax and other agencies, and also Caller ID to identify the number associated with a person. At the same time, a user may attempt to authenticate a merchant, bank or other party at the other end of an online transaction also. Various tool bars may be employed to allow users to verify a web site, an IP address or some other indication that a user is indeed in contact with a merchant, bank or other desired party in a transaction.

The information and actions by a party attempting to prevent or detect fraud is often met with an equally effective and opposite countermeasure by learned fraudsters. When banks or merchants create user names and passwords, they can be rendered ineffective by numerous scams and ways of obtaining user information such as phishing and key-loggers. “Key-loggers” are a type of surveillance software such as spyware that has the capability to record keystrokes to a log file (usually encrypted) made from instant messages, e-mail and any information (including e-mail addresses and Web site URLs visited) typed using a keyboard which can be later sent to a specified receiver. Key-loggers, as a surveillance tool, are often used by employers to ensure employees use work computers for business purposes only. Unfortunately, key-loggers can also be embedded in spyware allowing your information to be transmitted to an unknown third party.) Similarly, cookies that are often created to contain selected information used for identification can be simply deleted, and IP addresses that are associated with fraud can simply hide behind proxies.

Furthermore, when tokens are frequently used as a security measure to gain access to user information, the entire session or exchange can be merely cloned. The term “session cloning” may be defined as the ability of a third party to duplicate the session ID of a user and use it to interact with the web-based application at the same time as the original user. Session cloning is generally more of a threat when session IDs are predictable or obtainable, or if the site allows IP hopping. IP hopping is permitting the user to change their IP address mid-session without having to re-authenticate to the web site. To minimize fraud and prevent IP hopping, one alternative is to track the domain of the source address (remembering domains can have more than two components) and require re-authentication if the domain changes. This does not prevent IP hopping within the same ISP but does limit the exposure. Another option to minimize risk is to consider using an inactivity timeout or terminating a session after a certain period of inactivity in order to protect people who leave their accounts signed-on and their systems unattended. Regardless of these preventative measures taken against session cloning, the risk of fraud remains which provides an opportunity for the invention herein to detect and prevent such activity when an attempt is made to use information from a computer.

It shall be understood that the description of fraudulent schemes provided herein is not exhaustive and that additional techniques will be developed in the future to improperly gain access to user information. Regardless of the means and methods used to obtain such information, the concepts of the invention can be applied to detect and prevent fraud by uniquely linking or fingerprinting such criminal activity with devices based upon selected delta of time parameters, clock differentials and time based parameters provided elsewhere herein. These solutions can be implemented with no behavioral modification and have a zero imposition on a user as new ways are constantly developed to break past security barriers. The onus is not placed on the consumer to prevent attacks, nor is the consumer asked to change certain behavior to combat phishing or any other criminal behavior or scheme developed in the future.

Although the present invention has been described in accordance with the embodiments shown, one of ordinary skill in the art will recognize that there could be variations to the embodiment and those variations would be within the spirit and scope of the present invention. Therefore, although the present invention was described in terms of a particular fraud prevention method and system, one of ordinary skill in the art readily recognizes, that any number or parameters can be utilized and their use would be within the spirit and scope of the present invention.

Claims

1. A non-transitory computer storage storing one or more computer-executable instructions that, when executed by one or more processors, cause the one or more processors to perform steps of: receiving and storing a plurality of matching parameters;detecting an electronic communication of a first online transaction between a first consumer device and a merchant server via a merchant website;based on the detecting of the electronic communication of the first online transaction: receiving an IP address of the first consumer device;capturing consumer time expression data associated with the first consumer device, wherein the consumer time expression data comprises a time of the first consumer device and a time zone of the first consumer device;accessing merchant time expression data associated with the merchant server, wherein the merchant time expression data comprises a time of the merchant server and a time zone of the merchant server;generating and storing a first electronic computer identifier corresponding to the first consumer device based at least in part on the merchant time expression data, the IP address, and the consumer time expression data; anddetecting an electronic communication of a second online transaction between a second consumer device and the merchant server via the merchant website; andbased on the detecting of the electronic communication of the second online transaction: identifying a second electronic computer identifier corresponding to the second consumer device; anddetermining that the first electronic computer identifier matches with the second electronic computer identifier based at least in part on one or more of the plurality of matching parameters; andcommunicating the determination of the match to the merchant server.
2. The non-transitory computer storage of claim 1, wherein each of the consumer device time expression data and the merchant server time expression data includes a time in hours, minutes, or seconds and a time zone.
3. The non-transitory computer storage of claim 1, wherein the consumer time expression data or the merchant time expression data is in a military time format.
4. The non-transitory computer storage of claim 1, wherein the one or more computer-executable instructions further cause the one or more processors to perform a step of: calculating a first level of fraud risk for the first online transaction based at least in part on an analysis of the IP address using a first weight value and an analysis of the consumer time expression data using a second weight value.
5. The non-transitory computer storage of claim 4, wherein the computer-executable instructions further cause the one or more processors perform a step of: determining that the first online transaction is fraudulent based on a comparison of the first level of risk to a predetermined threshold value.
6. A computerized method for automated real-time fraud detection for an online transaction between a consumer and a merchant, the computerized method comprising: receiving and storing, by a merchant server, a plurality of matching parameters;detecting, by the merchant server, an electronic communication of a first online transaction between a first consumer device and the merchant server via a merchant website;based on the detecting of the electronic communication of the first online transaction: receiving, by the merchant server, an IP address of the first consumer device;capturing, by the merchant server, consumer time expression data associated with the first consumer device, wherein the consumer time expression data comprises a time of the first consumer device and a time zone of the first consumer device;accessing, by the merchant server, merchant time expression data associated with the merchant server wherein the merchant time expression data comprises a time of the merchant server and a time zone of the merchant server;generating and storing, by the merchant server, a first electronic computer identifier corresponding to the first consumer device based at least in part on the merchant time expression data, the IP address, and the consumer time expression data; anddetecting, by the merchant server, an electronic communication of a second online transaction between a second consumer device and the merchant server via the merchant website; andbased on the detecting of the electronic communication of the second online transaction: identifying, by the merchant server, a second electronic computer identifier corresponding to the second consumer device; anddetermining, by the merchant server, that the first electronic computer identifier matches with the second electronic computer identifier based at least in part on one or more of the plurality of matching parameters; andcommunicating the determination of the match to a component within the merchant server.
7. The computerized method of claim 6, wherein each of the consumer time expression data and the merchant time expression data includes two or more temporal components.
8. The computerized method of claim 7, wherein the temporal components include a time in hours, minutes, or seconds and a time zone.
9. The computerized method of claim 6, wherein the consumer time expression data or the merchant time expression data is in a military time format.
10. The computerized method of claim 6, wherein the consumer time expression data of the first consumer device, and wherein the first merchant time expression data and the second merchant time expression data of the merchant website server.
11. The computerized method of claim 6, wherein generating the first electronic computer identifier further comprising determining a clock skew of the first consumer device.
12. The computerized method of claim 6, further comprising calculating, by the merchant server, a first level of fraud risk for the first online transaction based at least in part on at least: an analysis of the first consumer IP address using a first weight value; andan analysis of the first consumer device time expression using a second weight value.
13. The computerized method of claim 12, further comprising determining, by the merchant server, that the first online transaction is fraudulent based on a comparison of the first level of fraud risk to a predetermined threshold value.
14. The computerized method of claim 12, wherein the second weight value is based at least on a skew of a difference between the first consumer device time and the first merchant time.
15. A system for real-time fraud detection for an online transaction between a consumer and a merchant, the system comprising: a processor of a merchant server;a network interface configured to communicate with a plurality of consumer devices and a server; anda memory storing computer-executable instructions that, when executed by the processor, cause the processor of the merchant server to perform the steps of: receiving and storing a plurality of matching parameters;detecting an electronic communication of a first online transaction between a first consumer device and the merchant server via a merchant website;based on the detecting of the electronic communication of the first online transaction: receiving an IP address of the first consumer device;capturing consumer time expression data associated with the first consumer device, wherein the consumer time expression data comprises a time of the first consumer device and a time zone of the first consumer device;accessing merchant time expression data associated with the merchant server, wherein the merchant time expression data comprises a time of the merchant server and a time zone of the merchant server;generating and storing a first electronic computer identifier corresponding to the first consumer device based at least in part on the merchant time expression data, the IP address, and the consumer time expression data; anddetecting an electronic communication of a second online transaction between a second consumer device and the merchant server via the merchant website; andbased on the detecting of the electronic communication of the second online transaction: identifying a second electronic computer identifier corresponding to the second consumer device; anddetermining that the first electronic computer identifier matches with the second electronic computer identifier based at least in part on one or more of the plurality of matching parameters; andcommunicating the determination of the match to a component within the merchant server.
16. The system of claim 15, wherein each of the consumer time expression data and the merchant time expression data includes two or more temporal components.
17. The system of claim 16, wherein the temporal components include a time in hours, minutes, or seconds and a time zone.
18. The system of claim 15, wherein the consumer time expression data or the merchant time expression data is in a military time zone format.
19. The system of claim 15, wherein the consumer time expression data of the first consumer device, and wherein the merchant time expression data of the merchant server.
20. The system of claim 15, wherein the computer-executable instructions further cause the processor to perform a step of: calculating a first level of fraud risk for the first online transaction based on at least: an analysis of the IP address using a first weight value; andan analysis of the consumer time expression using a second weight value.

CROSS-REFERENCE

This application is a continuation-in-part application of U.S. patent application Ser. No. 11/241,739 filed on Sep. 29, 2005, which is a continuation-in-part application of U.S. patent application Ser. No. 10/791,439 filed on Mar. 2, 2004, and claims the benefit of priority to U.S. Provisional Patent Application Ser. No. 60/694,768 filed Jun. 27, 2005, all of which are incorporated herein by reference in their entirety.

US Referenced Citations (741)

Number	Name	Date	Kind
4805222	Young et al.	Feb 1989	A
4912761	Tan et al.	Mar 1990	A
4924387	Jeppesen	May 1990	A
5184849	Taylor	Feb 1993	A
5491735	Hsieh	Feb 1996	A
5519827	Mizushima	May 1996	A
5521907	Ennis, Jr.	May 1996	A
5557686	Brown et al.	Sep 1996	A
5583380	Larsen et al.	Dec 1996	A
5627886	Bowman	May 1997	A
5679940	Templeton et al.	Oct 1997	A
5721765	Smith	Feb 1998	A
5724424	Giffor	Mar 1998	A
5748740	Curry et al.	May 1998	A
5748780	Stolfo et al.	May 1998	A
5764275	Lappington et al.	Jun 1998	A
5802156	Felger	Sep 1998	A
5819226	Gopinathan et al.	Oct 1998	A
5864620	Pettitt	Jan 1999	A
5884289	Anderson et al.	Mar 1999	A
5886334	D'Entremont	Mar 1999	A
5892900	Ginter et al.	Apr 1999	A
5894510	Felger	Apr 1999	A
5899980	Wilf et al.	May 1999	A
5903646	Rackman	May 1999	A
5903721	Sixtus	May 1999	A
5933480	Felger	Aug 1999	A
5960069	Felger	Sep 1999	A
6009523	Owaki et al.	Dec 1999	A
6029154	Pettitt	Feb 2000	A
6029159	Zorba et al.	Feb 2000	A
6062474	Kroll	May 2000	A
6078907	Lamm	Jun 2000	A
6092053	Boesch et al.	Jul 2000	A
6094643	Anderson et al.	Jul 2000	A
6105012	Chang et al.	Aug 2000	A
6112240	Pogue et al.	Aug 2000	A
6148407	Aucsmith	Nov 2000	A
6151593	Cho et al.	Nov 2000	A
6163604	Baulier et al.	Dec 2000	A
6163771	Walker et al.	Dec 2000	A
6164528	Hills et al.	Dec 2000	A
6205436	Rosen	Mar 2001	B1
6209104	Jalili	Mar 2001	B1
6216153	Vortriede	Apr 2001	B1
6223289	Wall et al.	Apr 2001	B1
6282276	Felger	Aug 2001	B1
6295605	Dockter et al.	Sep 2001	B1
6327384	Hirao et al.	Dec 2001	B1
6330546	Gopinathan et al.	Dec 2001	B1
6405922	Kroll	Jun 2002	B1
6442529	Krishan et al.	Aug 2002	B1
6442692	Zilberman	Aug 2002	B1
6457021	Berkowitz et al.	Sep 2002	B1
6480710	Laybourn et al.	Nov 2002	B1
6509847	Anderson	Jan 2003	B1
6523019	Borthwick	Feb 2003	B1
6546493	Magdych et al.	Apr 2003	B1
6553108	Felger	Apr 2003	B1
6560455	Amin et al.	May 2003	B2
6567099	Dawson	May 2003	B1
6597775	Lawyer et al.	Jul 2003	B2
6646765	Barker et al.	Nov 2003	B1
6678666	Boulware	Jan 2004	B1
6687390	Avni et al.	Feb 2004	B2
6687696	Hofmann et al.	Feb 2004	B2
6689055	Mullen et al.	Feb 2004	B1
6718363	Ponte	Apr 2004	B1
6745333	Thomsen	Jun 2004	B1
6803920	Gossett et al.	Oct 2004	B2
6804624	Silverman	Oct 2004	B2
6850606	Lawyer et al.	Feb 2005	B2
6892307	Wood et al.	May 2005	B1
6895507	Teppler	May 2005	B1
6895514	Kermani	May 2005	B1
6898709	Teppler	May 2005	B1
6908030	Rajasekaran et al.	Jun 2005	B2
6937569	Sarkar et al.	Aug 2005	B1
6947978	Huffman	Sep 2005	B2
6954532	Handley et al.	Oct 2005	B1
6957185	Labaton	Oct 2005	B1
6957339	Shinzaki	Oct 2005	B2
7002712	Barker et al.	Feb 2006	B2
7003670	Heaven et al.	Feb 2006	B2
7007174	Wheeler et al.	Feb 2006	B2
7013001	Felger	Mar 2006	B1
7027800	Haumont et al.	Apr 2006	B2
7039505	Southard et al.	May 2006	B1
7039699	Narin et al.	May 2006	B1
7043640	Pritchard et al.	May 2006	B2
7089310	Ellerman et al.	Aug 2006	B1
7089585	Dharmarajan	Aug 2006	B1
7096192	Pettitt	Aug 2006	B1
7100049	Gasparini et al.	Aug 2006	B2
7103570	Morea et al.	Sep 2006	B1
7120590	Eisen et al.	Oct 2006	B1
7130858	Ciaramitaro et al.	Oct 2006	B2
7143095	Barrett et al.	Nov 2006	B2
7158622	Lawyer et al.	Jan 2007	B2
7165051	Ronning et al.	Jan 2007	B2
7174454	Roskind	Feb 2007	B2
7191467	Dujari et al.	Mar 2007	B1
7197646	Fritz et al.	Mar 2007	B2
7221949	Clough	May 2007	B2
7225974	Yamauchi	Jun 2007	B2
7237717	Rao et al.	Jul 2007	B1
7249093	King	Jul 2007	B1
7251624	Lee et al.	Jul 2007	B1
7260837	Abraham et al.	Aug 2007	B2
7263492	Suresh et al.	Aug 2007	B1
7263506	Lee et al.	Aug 2007	B2
7272610	Torres	Sep 2007	B2
7272728	Pierson et al.	Sep 2007	B2
7292723	Tedesco et al.	Nov 2007	B2
7293096	Foltak et al.	Nov 2007	B1
7296088	Padmanabhan et al.	Nov 2007	B1
7328216	Hofmann et al.	Feb 2008	B2
7330824	Kanojia et al.	Feb 2008	B1
7330871	Barber	Feb 2008	B2
7340045	Felger	Mar 2008	B2
7346551	Pe Jimenez et al.	Mar 2008	B2
7346775	Gasparinl et al.	Mar 2008	B2
7349955	Korb et al.	Mar 2008	B1
7359962	Willebeek-LeMair et al.	Apr 2008	B2
7363170	Seul et al.	Apr 2008	B2
7373669	Eisen	May 2008	B2
7376618	Anderson et al.	May 2008	B1
7379891	Donner et al.	May 2008	B1
7404087	Teunen	Jun 2008	B2
7401082	Keene et al.	Jul 2008	B2
7403922	Lewis et al.	Jul 2008	B1
7406441	Kimura et al.	Jul 2008	B2
7428587	Rowland et al.	Sep 2008	B2
7436780	Stephens	Oct 2008	B2
7438226	Helsper et al.	Oct 2008	B2
7447494	Law et al.	Nov 2008	B2
7451487	Oliver et al.	Nov 2008	B2
7457401	Lawyer et al.	Nov 2008	B2
7457823	Shraim et al.	Nov 2008	B2
7475242	Baird et al.	Jan 2009	B2
7478182	Schweig	Jan 2009	B2
7487350	Utin	Feb 2009	B2
7496752	Yamaguchi et al.	Feb 2009	B2
7497374	Helsper et al.	Mar 2009	B2
7502610	Maher	Mar 2009	B2
7502933	Jakobsson et al.	Mar 2009	B2
7526796	Lulich et al.	Apr 2009	B2
7543740	Greene et al.	Jun 2009	B2
7552090	Barber	Jun 2009	B1
7555458	Felger	Jun 2009	B1
7562221	Nyström et al.	Jul 2009	B2
7577620	Donner	Aug 2009	B1
7581112	Brown et al.	Aug 2009	B2
7606560	Labrou et al.	Oct 2009	B2
7657626	Zwicky	Feb 2010	B1
7660902	Graham et al.	Feb 2010	B2
7665140	Oliver et al.	Feb 2010	B2
7665658	Fields	Feb 2010	B2
7673793	Greene et al.	Mar 2010	B2
7685629	White et al.	Mar 2010	B1
7698743	Ohmori et al.	Apr 2010	B2
7708200	Helsper et al.	May 2010	B2
7711846	Padmanabhan et al.	May 2010	B2
7735141	Noel et al.	Jun 2010	B1
7739402	Roese et al.	Jun 2010	B2
7739512	Hawkes	Jun 2010	B2
7743409	Gonzalez et al.	Jun 2010	B2
7752084	Pettitt	Jul 2010	B2
7756783	Crooks	Jul 2010	B2
7761379	Zoldi et al.	Jul 2010	B2
7778846	Suresh et al.	Aug 2010	B2
7813937	Pathria et al.	Oct 2010	B1
7813944	Luk et al.	Oct 2010	B1
7849029	Crooks et al.	Dec 2010	B2
7849307	Roskind	Dec 2010	B2
7853526	Milana	Dec 2010	B2
7853533	Eisen	Dec 2010	B2
7856372	Ullah	Dec 2010	B2
7860783	Yang et al.	Dec 2010	B2
7861260	Shkedi	Dec 2010	B2
7865427	Wright et al.	Jan 2011	B2
7882217	Katzir	Feb 2011	B2
7908223	Klein et al.	Mar 2011	B2
7908645	Varghese et al.	Mar 2011	B2
7930285	Abraham et al.	Apr 2011	B2
7933984	Smith et al.	Apr 2011	B1
7937467	Barber	May 2011	B2
7940929	Sengupta	May 2011	B1
7945494	Williams	May 2011	B2
7945515	Zoldi et al.	May 2011	B2
7949564	Hughes et al.	May 2011	B1
7958029	Bobich et al.	Jun 2011	B1
7958246	Barber	Jun 2011	B2
7961857	Zoldi et al.	Jun 2011	B2
7970701	Lewis et al.	Jun 2011	B2
7983691	Wong et al.	Jul 2011	B1
7991716	Crooks et al.	Aug 2011	B2
7995996	Link, II et al.	Aug 2011	B2
8001376	Utin	Aug 2011	B2
8001597	Crooks	Aug 2011	B2
8015614	Matsuzaki et al.	Sep 2011	B2
8015921	Leppanen et al.	Sep 2011	B2
8019678	Wright et al.	Sep 2011	B2
8020763	Kowalchyk et al.	Sep 2011	B1
8024266	Barber	Sep 2011	B1
8025220	Zoldi et al.	Sep 2011	B2
8027439	Zoldi et al.	Sep 2011	B2
8032448	Anderson et al.	Oct 2011	B2
8037097	Guo et al.	Oct 2011	B2
8037511	Lundy et al.	Oct 2011	B1
8041597	Li et al.	Oct 2011	B2
8042164	Sheynblat et al.	Oct 2011	B2
8046271	Jimenez et al.	Oct 2011	B2
8060922	Crichton et al.	Nov 2011	B2
8065233	Lee et al.	Nov 2011	B2
8090648	Zoldi et al.	Jan 2012	B2
8108378	Ott, IV et al.	Jan 2012	B2
8121962	Vaiciulis et al.	Feb 2012	B2
8122082	Klein	Feb 2012	B2
8126816	Mu et al.	Feb 2012	B2
8131615	Diev et al.	Mar 2012	B2
8140689	Barber	Mar 2012	B2
8141148	Thomas et al.	Mar 2012	B2
8145560	Kulkarni et al.	Mar 2012	B2
8145762	Barber	Mar 2012	B2
8150968	Barber	Apr 2012	B2
8151327	Eisen	Apr 2012	B2
8166068	Stevens	Apr 2012	B2
8175897	Lee et al.	May 2012	B2
8176178	Thomas et al.	May 2012	B2
8180686	Ryu et al.	May 2012	B2
8181015	Roskind	May 2012	B2
8185953	Rothstein et al.	May 2012	B2
8190513	Felger	May 2012	B2
8190529	Abe et al.	May 2012	B2
8191148	Oliver et al.	May 2012	B2
8201099	Osbourn et al.	Jun 2012	B1
8204833	Mu et al.	Jun 2012	B2
8209744	Zhu et al.	Jun 2012	B2
8209760	Hardman	Jun 2012	B1
8213898	Choti et al.	Jul 2012	B2
8214232	Tyler et al.	Jul 2012	B2
8214285	Hu et al.	Jul 2012	B2
8219415	Tyler et al.	Jul 2012	B2
8224348	Bolon et al.	Jul 2012	B2
8229844	Felger	Jul 2012	B2
8250631	Iyengar et al.	Aug 2012	B2
8266295	Klein et al.	Sep 2012	B2
8271891	Osbourn et al.	Sep 2012	B1
8280833	Miltonberger	Oct 2012	B2
8290838	Thakur et al.	Oct 2012	B1
8295898	Ashfield et al.	Oct 2012	B2
8296228	Kloor	Oct 2012	B1
8296229	Yellin et al.	Oct 2012	B1
8296245	Barber et al.	Oct 2012	B2
8296250	Crooks et al.	Oct 2012	B2
8306933	Kawai et al.	Nov 2012	B2
8307430	Chen et al.	Nov 2012	B1
8311907	Klein et al.	Nov 2012	B2
8321269	Linden et al.	Nov 2012	B2
8326759	Hammad	Dec 2012	B2
8326760	Ma et al.	Dec 2012	B2
8326763	Zuili	Dec 2012	B2
8332338	Vaiciulis et al.	Dec 2012	B2
8332522	Barber	Dec 2012	B2
8370253	Grossman et al.	Feb 2013	B1
8370638	Duane et al.	Feb 2013	B2
8380831	Barber	Feb 2013	B2
8392987	Sasamura et al.	Mar 2013	B2
8407112	Walter	Mar 2013	B2
8407798	Lotem et al.	Mar 2013	B1
8417587	Jimenez et al.	Apr 2013	B2
8423458	Barber	Apr 2013	B2
8424061	Rosenor	Apr 2013	B2
8429070	Hu et al.	Apr 2013	B2
8438184	Wang	May 2013	B1
8443202	White et al.	May 2013	B2
8452715	Barber	May 2013	B2
8453226	Hammad	May 2013	B2
8462161	Barber	Jun 2013	B1
8464290	Beyda et al.	Jun 2013	B2
8468582	Kuang et al.	Jun 2013	B2
8484470	Sakakihara et al.	Jul 2013	B2
8495714	Jones et al.	Jul 2013	B2
8516439	Brass et al.	Aug 2013	B2
8539070	Barber	Sep 2013	B2
8543522	Ryman-Tubb et al.	Sep 2013	B2
8548137	Zoldi et al.	Oct 2013	B2
8559607	Zoldi et al.	Oct 2013	B2
8567669	Griegel et al.	Oct 2013	B2
8588816	Collins	Nov 2013	B2
8601109	Johannsen	Dec 2013	B2
8611856	Yan et al.	Dec 2013	B2
8612854	Eisen et al.	Dec 2013	B2
8660539	Khambete et al.	Feb 2014	B2
8676684	Newman et al.	Mar 2014	B2
8683561	Utin	Mar 2014	B2
8688543	Dominquez	Apr 2014	B2
8751815	Lunde et al.	Jun 2014	B2
8762283	Gerber et al.	Jun 2014	B2
8762574	Barber	Jun 2014	B2
8763113	Thomas et al.	Jun 2014	B2
8776225	Pierson et al.	Jul 2014	B2
8779981	Eisen et al.	Jul 2014	B2
8781975	Bennett et al.	Jul 2014	B2
8782783	Thomas et al.	Jul 2014	B2
8799458	Barber	Aug 2014	B2
8817984	Miller et al.	Aug 2014	B2
8826393	Eisen	Sep 2014	B2
8838478	Kretz et al.	Sep 2014	B2
8838967	Mills et al.	Sep 2014	B1
8862514	Eisen	Oct 2014	B2
8862526	Miltonberger	Oct 2014	B2
8881288	Levy et al.	Nov 2014	B1
8938671	Eisen et al.	Jan 2015	B2
8954560	Johannsen	Feb 2015	B2
8966276	Nanopoulos et al.	Feb 2015	B2
9060012	Eisen	Jun 2015	B2
9083735	Reumann et al.	Jul 2015	B2
9098617	Pauley, Jr. et al.	Aug 2015	B1
9112850	Eisen	Aug 2015	B1
9118646	Pierson et al.	Aug 2015	B2
9191370	Barber et al.	Nov 2015	B2
9196004	Eisen	Nov 2015	B2
9203837	Pierson et al.	Dec 2015	B2
9294448	Miller et al.	Mar 2016	B2
9298677	Tollinger et al.	Mar 2016	B2
9332020	Thomas et al.	May 2016	B2
9361597	Britton et al.	Jun 2016	B2
9378500	Jimenez et al.	Jun 2016	B2
9390384	Eisen	Jul 2016	B2
9396331	Eisen et al.	Jul 2016	B2
9412123	Eisen	Aug 2016	B2
9514248	Guan et al.	Dec 2016	B1
9521161	Reumann et al.	Dec 2016	B2
9521551	Eisen et al.	Dec 2016	B2
9559852	Miller et al.	Jan 2017	B2
9633201	Katz	Apr 2017	B1
9703983	Eisen et al.	Jul 2017	B2
9754256	Britton et al.	Sep 2017	B2
9754311	Eisen	Sep 2017	B2
9781151	McCorkendale et al.	Oct 2017	B1
9785973	Tollinger et al.	Oct 2017	B2
9948629	Eisen	Apr 2018	B2
9990631	Eisen	Jun 2018	B2
10021099	Eisen et al.	Jul 2018	B2
10089679	Eisen	Oct 2018	B2
10091312	Khanwalkar et al.	Oct 2018	B1
10339306	Katz	Jul 2019	B1
10341344	Eisen et al.	Jul 2019	B2
10395252	Eisen	Aug 2019	B2
10417637	Eisen	Sep 2019	B2
10453066	Eisen	Oct 2019	B2
10535093	Eisen	Jan 2020	B2
10616201	Eisen	Apr 2020	B2
20010011243	Dembo et al.	Aug 2001	A1
20010011304	Wesigner et al.	Aug 2001	A1
20010016840	Hijikata et al.	Aug 2001	A1
20010016876	Kurth et al.	Aug 2001	A1
20010018739	Anderson et al.	Aug 2001	A1
20010034712	Colvin	Oct 2001	A1
20010046096	Worden	Nov 2001	A1
20020035622	Barber	Mar 2002	A1
20020041328	LeCompte et al.	Apr 2002	A1
20020046157	Solomon	Apr 2002	A1
20020052852	Bozeman	May 2002	A1
20020056042	Van Der Kaay et al.	May 2002	A1
20020073046	David	Jun 2002	A1
20020073327	Vellandi	Jun 2002	A1
20020083079	Meier et al.	Jun 2002	A1
20020112171	Ginter et al.	Aug 2002	A1
20020128917	Grounds	Sep 2002	A1
20020138335	Palmer et al.	Sep 2002	A1
20020138577	Teng et al.	Sep 2002	A1
20020153424	Li	Oct 2002	A1
20020156724	Levchin et al.	Oct 2002	A1
20020156836	John, Jr. et al.	Oct 2002	A1
20020166063	Lachman et al.	Nov 2002	A1
20020167965	Beasley et al.	Nov 2002	A1
20030002732	Gossett et al.	Jan 2003	A1
20030002740	Melikian et al.	Jan 2003	A1
20030014327	Skantze	Jan 2003	A1
20030033161	Walker et al.	Feb 2003	A1
20030033356	Tran et al.	Feb 2003	A1
20030070080	Rosen	Apr 2003	A1
20030074301	Solomon	Apr 2003	A1
20030076242	Burns et al.	Apr 2003	A1
20030105707	Audebert et al.	Jun 2003	A1
20030105854	Thorsteinsson et al.	Jun 2003	A1
20030113033	Huang	Jun 2003	A1
20030115334	Bhat et al.	Jun 2003	A1
20030115481	Baird et al.	Jun 2003	A1
20030120543	Carey	Jun 2003	A1
20030120586	Litty	Jun 2003	A1
20030140258	Nelson et al.	Jul 2003	A1
20030154214	Tu et al.	Aug 2003	A1
20030158751	Suresh et al.	Aug 2003	A1
20030163359	Kanesaka	Aug 2003	A1
20030163398	Yoshioka et al.	Aug 2003	A1
20030163413	Wiczkowski	Aug 2003	A1
20030172036	Feigenbaum	Sep 2003	A1
20030182551	Frantz et al.	Sep 2003	A1
20030208684	Camacho et al.	Nov 2003	A1
20030212618	Keyes et al.	Nov 2003	A1
20030233553	Eisenberg et al.	Dec 2003	A1
20040001044	Luciani et al.	Jan 2004	A1
20040004733	Barker et al.	Jan 2004	A1
20040006553	de Vries et al.	Jan 2004	A1
20040010682	Foster et al.	Jan 2004	A1
20040027385	Rekimoto et al.	Feb 2004	A1
20040030912	Merkle, Jr. et al.	Feb 2004	A1
20040034794	Mayer et al.	Feb 2004	A1
20040073809	Wing Keong	Apr 2004	A1
20040088313	Torres	May 2004	A1
20040098618	Kim et al.	May 2004	A1
20040105431	Monjas-Llorente et al.	Jun 2004	A1
20040111621	Himberger et al.	Jun 2004	A1
20040117321	Sancho	Jun 2004	A1
20040139008	Mascavaage, III	Jul 2004	A1
20040153644	McCorkendale et al.	Aug 2004	A1
20040159699	Nelson et al.	Aug 2004	A1
20040166857	Shim et al.	Aug 2004	A1
20040171381	Inselberg	Sep 2004	A1
20040181598	Paya et al.	Sep 2004	A1
20040203750	Cowdrey et al.	Oct 2004	A1
20040230820	Hui Hsu et al.	Nov 2004	A1
20040236696	Aoki et al.	Nov 2004	A1
20040236702	Fink et al.	Nov 2004	A1
20040254890	Sancho et al.	Dec 2004	A1
20040260876	Singh et al.	Dec 2004	A1
20040260922	Goodman et al.	Dec 2004	A1
20050008148	Jacobson	Jan 2005	A1
20050015601	Tabi	Jan 2005	A1
20050022020	Fremberg et al.	Jan 2005	A1
20050033653	Eisenberg et al.	Feb 2005	A1
20050033703	Holdsworth	Feb 2005	A1
20050039034	Doyle et al.	Feb 2005	A1
20050039219	Cooper et al.	Feb 2005	A1
20050076230	Redenbaugh et al.	Apr 2005	A1
20050085931	Willeby	Apr 2005	A1
20050097320	Golan et al.	May 2005	A1
20050108177	Sancho	May 2005	A1
20050111054	Umeda	May 2005	A1
20050113092	Coppinger et al.	May 2005	A1
20050131826	Cook	Jun 2005	A1
20050154676	Ronning et al.	Jul 2005	A1
20050185225	Brawn et al.	Aug 2005	A1
20050188423	Motsinger et al.	Aug 2005	A1
20050204159	Davis et al.	Sep 2005	A1
20050210533	Copeland et al.	Sep 2005	A1
20050216278	Eisen	Sep 2005	A1
20050246551	Dondl et al.	Nov 2005	A1
20050278542	Pierson et al.	Dec 2005	A1
20060008779	Shand et al.	Jan 2006	A1
20060010072	Eisen	Jan 2006	A1
20060026669	Zakas	Feb 2006	A1
20060031938	Choi	Feb 2006	A1
20060048211	Pierson et al.	Mar 2006	A1
20060064346	Steenstra et al.	Mar 2006	A1
20060069619	Walker et al.	Mar 2006	A1
20060075492	Golan et al.	Apr 2006	A1
20060080263	Willis et al.	Apr 2006	A1
20060126829	Lai	Jun 2006	A1
20060130132	Dharmarajan	Jun 2006	A1
20060136294	Linden et al.	Jun 2006	A1
20060155985	Canard et al.	Jul 2006	A1
20060161501	Waserstein et al.	Jul 2006	A1
20060190331	Tollinger et al.	Aug 2006	A1
20060190489	Vohariwatt et al.	Aug 2006	A1
20060200855	Willis	Sep 2006	A1
20060200856	Salowey et al.	Sep 2006	A1
20060224898	Ahmed	Oct 2006	A1
20060237531	Heffez et al.	Oct 2006	A1
20060253327	Morris et al.	Nov 2006	A1
20060253328	Kohli et al.	Nov 2006	A1
20060264202	Hagmeier et al.	Nov 2006	A1
20060281541	Nguyen et al.	Dec 2006	A1
20060282660	Varghese et al.	Dec 2006	A1
20060284838	Tsatalos et al.	Dec 2006	A1
20060287902	Helsper	Dec 2006	A1
20070011078	Jain et al.	Jan 2007	A1
20070030528	Quaeler et al.	Feb 2007	A1
20070038568	Greene et al.	Feb 2007	A1
20070043837	Kruse et al.	Feb 2007	A1
20070061211	Ramer et al.	Mar 2007	A1
20070061273	Greene et al.	Mar 2007	A1
20070073630	Greene et al.	Mar 2007	A1
20070094594	Matichuk et al.	Apr 2007	A1
20070097076	Gross	May 2007	A1
20070097976	Wood et al.	May 2007	A1
20070101405	Engle et al.	May 2007	A1
20070107059	Chasin et al.	May 2007	A1
20070118892	Sastry et al.	May 2007	A1
20070124246	Lawyer et al.	May 2007	A1
20070162763	Bender et al.	Jul 2007	A1
20070198410	Labgold et al.	Aug 2007	A1
20070199054	Florencio et al.	Aug 2007	A1
20070204044	Rice et al.	Aug 2007	A1
20070214151	Scott et al.	Sep 2007	A1
20070220594	Tulsyan	Sep 2007	A1
20070233599	Ganesan et al.	Oct 2007	A1
20070234070	Horning et al.	Oct 2007	A1
20070234409	Eisen	Oct 2007	A1
20070239604	O'Connell et al.	Oct 2007	A1
20070239606	Eisen	Oct 2007	A1
20070255821	Ge et al.	Nov 2007	A1
20070266257	Camaisa et al.	Nov 2007	A1
20070271466	Mak	Nov 2007	A1
20070294401	Shkedi	Dec 2007	A1
20080002725	Alicherry et al.	Jan 2008	A1
20080005394	Crooks	Jan 2008	A1
20080010367	Cheng et al.	Jan 2008	A1
20080010678	Burdette et al.	Jan 2008	A1
20080015988	Brown et al.	Jan 2008	A1
20080021801	Song et al.	Jan 2008	A1
20080040653	Levine	Feb 2008	A1
20080040802	Pierson et al.	Feb 2008	A1
20080046562	Butler	Feb 2008	A1
20080052629	Phillips et al.	Feb 2008	A1
20080098222	Zilberman	Apr 2008	A1
20080101277	Taylor	May 2008	A1
20080104070	Lonchar	May 2008	A1
20080104672	Lunde	May 2008	A1
20080104684	Lunde	May 2008	A1
20080120195	Shakkarwar	May 2008	A1
20080120214	Steele et al.	May 2008	A1
20080133420	Barber	Jun 2008	A1
20080162200	O'Sullivan et al.	Jul 2008	A1
20080162202	Khanna et al.	Jul 2008	A1
20080162475	Meggs	Jul 2008	A1
20080163128	Callanan et al.	Jul 2008	A1
20080174603	Brass et al.	Jul 2008	A1
20080184355	Walrath et al.	Jul 2008	A1
20080184372	Hoshina	Jul 2008	A1
20080189790	Park	Aug 2008	A1
20080191007	Keay	Aug 2008	A1
20080201214	Aaron	Aug 2008	A1
20080204788	Kelly et al.	Aug 2008	A1
20080222706	Renaud et al.	Sep 2008	A1
20080235623	Li	Sep 2008	A1
20080239365	Salgado et al.	Oct 2008	A1
20080249820	Pathria et al.	Oct 2008	A1
20080281606	Kitts	Nov 2008	A1
20080281941	Park et al.	Nov 2008	A1
20080288299	Schultz	Nov 2008	A1
20080301281	Wang et al.	Dec 2008	A1
20080306830	Lasa et al.	Dec 2008	A1
20080313079	Van Bosch et al.	Dec 2008	A1
20080319774	O'Sullivan et al.	Dec 2008	A1
20080319841	Oliver et al.	Dec 2008	A1
20090018940	Wang et al.	Jan 2009	A1
20090024971	Willner et al.	Jan 2009	A1
20090037213	Eisen	Feb 2009	A1
20090044279	Crawford et al.	Feb 2009	A1
20090044282	Govindaraju	Feb 2009	A1
20090055398	Zhu et al.	Feb 2009	A1
20090070664	Gavin et al.	Mar 2009	A1
20090083184	Eisen	Mar 2009	A1
20090089869	Varghese	Apr 2009	A1
20090106413	Salo	Apr 2009	A1
20090138590	Lee et al.	May 2009	A1
20090157417	Bradley et al.	Jun 2009	A1
20090164269	Gupta et al.	Jun 2009	A1
20090177692	Chagoly et al.	Jul 2009	A1
20090183010	Schnell et al.	Jul 2009	A1
20090205031	Sato et al.	Aug 2009	A1
20090222308	Zoldi et al.	Sep 2009	A1
20090228585	Kosbab et al.	Sep 2009	A1
20090234738	Britton et al.	Sep 2009	A1
20090241174	Rajan et al.	Sep 2009	A1
20090260064	Mcdowell et al.	Oct 2009	A1
20090265773	Schultz	Oct 2009	A1
20090271306	Pierson	Oct 2009	A1
20090307141	Kongalath et al.	Oct 2009	A1
20090280777	Doherty	Nov 2009	A1
20090292568	Khosravani et al.	Nov 2009	A1
20090293128	Lippmann et al.	Nov 2009	A1
20090296907	Vendrow et al.	Dec 2009	A1
20090298480	Khambete et al.	Dec 2009	A1
20090307119	Ahles et al.	Dec 2009	A1
20090313134	Faith et al.	Dec 2009	A1
20100004965	Eisen	Jan 2010	A1
20100005013	Uriarte	Jan 2010	A1
20100030641	Ibenforth	Feb 2010	A1
20100030777	Panwar et al.	Feb 2010	A1
20100057623	Kapur et al.	Mar 2010	A1
20100070606	Shenfield et al.	Mar 2010	A1
20100082972	Benco et al.	Apr 2010	A1
20100094767	Miltonberger	Apr 2010	A1
20100094768	Miltonberger	Apr 2010	A1
20100106611	Paulsen et al.	Apr 2010	A1
20100107225	Spencer et al.	Apr 2010	A1
20100121716	Golan	May 2010	A1
20100138299	Preston et al.	Jun 2010	A1
20100145960	Casteel et al.	Jun 2010	A1
20100153540	Li et al.	Jun 2010	A1
20100157848	Das et al.	Jun 2010	A1
20100161424	Sylvain	Jun 2010	A1
20100161566	Adair et al.	Jun 2010	A1
20100169157	Muhonen et al.	Jul 2010	A1
20100169192	Zoldi et al.	Jul 2010	A1
20100192082	Sodah	Jul 2010	A1
20100199332	Bachmann et al.	Aug 2010	A1
20100199338	Craddock et al.	Aug 2010	A1
20100211464	Zhu et al.	Aug 2010	A1
20100223105	Gassewitz et al.	Sep 2010	A1
20100223145	Dragt	Sep 2010	A1
20100228625	Priyadarshan et al.	Sep 2010	A1
20100228638	Mikan et al.	Sep 2010	A1
20100257065	Gupta et al.	Oct 2010	A1
20100274678	Rolf et al.	Oct 2010	A1
20100293094	Kolkowitz et al.	Nov 2010	A1
20100306827	Esteve Balducci et al.	Dec 2010	A1
20100321296	Gross	Dec 2010	A1
20100333170	Cox et al.	Dec 2010	A1
20110022483	Hammad	Jan 2011	A1
20110022517	Hammad	Jan 2011	A1
20110035302	Martell et al.	Feb 2011	A1
20110047072	Ciurea	Feb 2011	A1
20110112901	Fried et al.	May 2011	A1
20110113388	Eisen et al.	May 2011	A1
20110161228	Suzuki et al.	Jun 2011	A1
20110173281	Smith	Jul 2011	A1
20110184778	Graepel et al.	Jul 2011	A1
20110194679	Patisaul et al.	Aug 2011	A1
20110218860	Barber	Sep 2011	A1
20110225091	Plastina et al.	Sep 2011	A1
20110238575	Nightengale et al.	Sep 2011	A1
20110251951	Kolkowitz et al.	Oct 2011	A1
20110258118	Ciurea	Oct 2011	A1
20110264612	Ryman-Tubb et al.	Oct 2011	A1
20110282778	Wright et al.	Nov 2011	A1
20110288932	Marks et al.	Nov 2011	A1
20110302087	Crooks	Dec 2011	A1
20110302096	Lowry	Dec 2011	A1
20110307341	Zohar et al.	Dec 2011	A1
20110314557	Marshall	Dec 2011	A1
20120022883	Morrison	Jan 2012	A1
20120030083	Newman et al.	Feb 2012	A1
20120030757	Baikalov et al.	Feb 2012	A1
20120030771	Pierson et al.	Feb 2012	A1
20120036042	Graylin et al.	Feb 2012	A1
20120041841	Hu et al.	Feb 2012	A1
20120054136	Maulik	Mar 2012	A1
20120054847	Schultz et al.	Mar 2012	A1
20120084203	Mehew et al.	Apr 2012	A1
20120084860	Cao et al.	Apr 2012	A1
20120094639	Carlson et al.	Apr 2012	A1
20120096557	Britton et al.	Apr 2012	A1
20120101939	Kasower	Apr 2012	A1
20120150742	Poon et al.	Jun 2012	A1
20120150750	Law et al.	Jun 2012	A1
20120157062	Kim et al.	Jun 2012	A1
20120158586	Ganti et al.	Jun 2012	A1
20120166533	Rubinstein et al.	Jun 2012	A1
20120173465	Hore et al.	Jul 2012	A1
20120174223	Eisen	Jul 2012	A1
20120179558	Fischer	Jul 2012	A1
20120197981	Chan	Aug 2012	A1
20120204262	Thomas et al.	Aug 2012	A1
20120215896	Johannsen	Aug 2012	A1
20120216282	Pappu et al.	Aug 2012	A1
20120221470	Lyon	Aug 2012	A1
20120222111	Oliver et al.	Aug 2012	A1
20120233665	Ranganathan et al.	Sep 2012	A1
20120239553	Gonen et al.	Sep 2012	A1
20120239574	Smith et al.	Sep 2012	A1
20120239774	Tola et al.	Sep 2012	A1
20120278127	Kirakosyan et al.	Nov 2012	A1
20120295580	Corner	Nov 2012	A1
20120297380	Colbert et al.	Nov 2012	A1
20120311162	Paulsen et al.	Dec 2012	A1
20120323788	Keresman et al.	Dec 2012	A1
20120323836	Wright et al.	Dec 2012	A1
20120330787	Hanson et al.	Dec 2012	A1
20130006743	Moore et al.	Jan 2013	A1
20130018789	Kaufmann	Jan 2013	A1
20130018791	Mendicino et al.	Jan 2013	A1
20130024300	Choudhuri et al.	Jan 2013	A1
20130036304	Lin et al.	Feb 2013	A1
20130040603	Stahlberg et al.	Feb 2013	A1
20130042298	Plaza Fonseca et al.	Feb 2013	A1
20130055388	Thomas et al.	Feb 2013	A1
20130073463	Dimmick et al.	Mar 2013	A1
20130073473	Heath	Mar 2013	A1
20130085841	Singleton et al.	Apr 2013	A1
20130097673	Meehan et al.	Apr 2013	A1
20130097701	Moyle et al.	Apr 2013	A1
20130103482	Song et al.	Apr 2013	A1
20130103629	Vaiciulis et al.	Apr 2013	A1
20130110637	Bott	May 2013	A1
20130111592	Zhu et al.	May 2013	A1
20130117832	Gandhi	May 2013	A1
20130144539	Allen et al.	Jun 2013	A1
20130148525	Cuadra Sanchez et al.	Jun 2013	A1
20130159195	Kirillin et al.	Jun 2013	A1
20130185764	Krstić et al.	Jul 2013	A1
20130197998	Buhrmann et al.	Aug 2013	A1
20130198066	Wall et al.	Aug 2013	A1
20130226717	Ahluwalia et al.	Aug 2013	A1
20130273879	Eisen et al.	Oct 2013	A1
20130339186	French	Dec 2013	A1
20140032902	Agrawal et al.	Jan 2014	A1
20140114821	Yoshioka et al.	Apr 2014	A1
20140120864	Manolarakis et al.	May 2014	A1
20140122343	Einav et al.	May 2014	A1
20140258125	Gerber et al.	Sep 2014	A1
20140289867	Bukai	Sep 2014	A1
20140361926	Eisen et al.	Dec 2014	A1
20150026027	Priess et al.	Jan 2015	A1
20150046989	Oberheide et al.	Feb 2015	A1
20150106270	Burrell et al.	Apr 2015	A1
20150127825	Johannsen	May 2015	A1
20150186901	Miltonberger	Jul 2015	A1
20150188897	Grigorovici et al.	Jul 2015	A1
20150193769	Barber	Jul 2015	A1
20150193821	Izumori et al.	Jul 2015	A1
20150205978	Eisen et al.	Jul 2015	A1
20150221019	Eisen	Aug 2015	A1
20150242861	Baldassano	Aug 2015	A9
20150254658	Bondesen et al.	Sep 2015	A1
20150294316	Eisen	Oct 2015	A1
20150350856	Circosta et al.	Dec 2015	A1
20160019546	Eisen	Jan 2016	A1
20160034954	Tollinger et al.	Feb 2016	A1
20160125461	Sivaramakrishnan et al.	May 2016	A1
20160246581	Jimenez et al.	Aug 2016	A1
20160321701	Tollinger et al.	Nov 2016	A1
20170039571	Eisen	Feb 2017	A1
20170142106	Eisen et al.	May 2017	A1
20180089459	Eisen et al.	Mar 2018	A1
20180108029	Sinha et al.	Apr 2018	A1
20180121915	Britton et al.	May 2018	A1
20180262478	Eisen	Sep 2018	A1
20180322500	Eisen	Nov 2018	A1
20190028472	Eisen	Jan 2019	A1
20190066192	Eisen	Feb 2019	A1
20190356659	Eisen et al.	Nov 2019	A1
20200005315	Eisen	Jan 2020	A1
20200013064	Eisen	Jan 2020	A1
20200034845	Eisen	Jan 2020	A1

Foreign Referenced Citations (93)

Number	Date	Country
0418144	Mar 1991	EP
0 645 692	Mar 1995	EP
0923039	Jun 1999	EP
1 067 792	Jan 2001	EP
1 209 935	May 2002	EP
1256911	Nov 2002	EP
1 201 070	Jun 2006	EP
1 703 382	Sep 2006	EP
1 197 032	Aug 2007	EP
2 154 891	Feb 2010	EP
2 485 241	May 2012	GB
2 491 101	Nov 2012	GB
2 492 604	Jan 2013	GB
2 494 098	Mar 2013	GB
05-257602	Oct 1993	JP
2000-020467	Jan 2000	JP
2000-099250	Apr 2000	JP
2000-137755	May 2000	JP
2000-242582	Sep 2000	JP
2000-276281	Oct 2000	JP
2002-007697	Jan 2002	JP
2002-297869	Oct 2002	JP
2003-050910	Feb 2003	JP
2005-063216	Mar 2005	JP
2005-115644	Apr 2005	JP
2005-135431	May 2005	JP
2006-004333	Jan 2006	JP
2007-272520	Oct 2007	JP
2007-282249	Oct 2007	JP
2008-022298	Jan 2008	JP
2008-065363	Mar 2008	JP
2008-171315	Jul 2008	JP
2008-535124	Aug 2008	JP
2008-243008	Oct 2008	JP
2008-257434	Oct 2008	JP
2008-269229	Nov 2008	JP
4202314	Dec 2008	JP
2009-048538	Mar 2009	JP
2009-122880	Jun 2009	JP
2009-175984	Aug 2009	JP
2010-020728	Jan 2010	JP
2010-061254	Mar 2010	JP
2010-122955	Jun 2010	JP
2010-122956	Jun 2010	JP
2010-225040	Oct 2010	JP
2010-250664	Nov 2010	JP
2011-065531	Mar 2011	JP
2011-134252	Jul 2011	JP
2011-159307	Aug 2011	JP
2012-234503	Nov 2012	JP
5191376	May 2013	JP
5216932	Jun 2013	JP
10-1999-0015738	Mar 1999	KR
10-0645983	Nov 2006	KR
10-2008-0044558	May 2008	KR
10-2009-0051977	Sep 2009	KR
10-2010-0085888	Jul 2010	KR
WO 96041488	Dec 1996	WO
WO 97003410	Jan 1997	WO
WO 99050775	Oct 1999	WO
WO 0111450	Feb 2001	WO
WO 01033520	May 2001	WO
WO 0195550	Dec 2001	WO
WO 01097134	Dec 2001	WO
WO 02001462	Jan 2002	WO
WO 02071176	Sep 2002	WO
WO 02091226	Nov 2002	WO
WO 03017155	Feb 2003	WO
WO 03025868	Mar 2003	WO
WO 03075197	Sep 2003	WO
WO 03075197	Dec 2003	WO
WO 02037219	May 2004	WO
WO 2004038997	May 2004	WO
WO 2005038818	Apr 2005	WO
WO 2005099166	Oct 2005	WO
WO 2006135367	Dec 2006	WO
WO 2007001394	Jan 2007	WO
WO 2007045818	Apr 2007	WO
WO 2007072238	Jun 2007	WO
WO 2007075573	Jul 2007	WO
WO 2008029828	Mar 2008	WO
WO 2008054849	May 2008	WO
WO 2009132148	Oct 2009	WO
WO 2012054646	Apr 2012	WO
WO 2012061801	May 2012	WO
WO 2012142121	Oct 2012	WO
WO 2012142584	Oct 2012	WO
WO 2013006538	Jan 2013	WO
WO 2013142722	Sep 2013	WO
WO 2014022813	Feb 2014	WO
WO 2014078569	May 2014	WO
WO 2018129373	Jul 2018	WO
WO 2018151822	Aug 2018	WO

Non-Patent Literature Citations (88)

Entry
Ron White, How computers work (Year: 2003).
Rn White, How Computers Work (Year: 2013).
U.S. Appl. No. 12/732,034, filed Mar. 25, 2010, Eisen.
Derfler, et al. How Network Work. Millennium Ed., Que Corporation. Indianapolis. IN. 2000.
European search report and written opinion dated Nov. 15, 2010 for Application No. 08165224.0.
Gralla, Preston. How the Internet Works. Millennium Ed., Que Corporation. Indianapolis, IN 1999.
International search report dated Oct. 29, 2007 for PCT Application No. US2005/35532.
International search report dated Jul. 3, 2008 for PCT Application No. US2007/65776.
Kohno, et al. Remote Physical Device Fingerprinting. 2005 IEEE Syposium on Security and Privacy (IEEE S&P 2005); May 8-11, 2005; Oakland, California, U.S.A. 16 pages.
Manavoglu, et al. Probabilistic user behavior models. Data Mining. 2003; 203-210.
White, Ron. How Computers Work. Millennium Ed., Que Corporation. Indianapolis, IN. 1999.
European search report dated Dec. 23, 2011 for Application No. 5818903.6.
Notice of allowance dated Dec. 26, 2014 for U.S. Appl. No. 11/862,165.
U.S. Appl. No. 14/473,818, filed Aug. 29, 2014, Eisen.
Notice of allowance dated Jan. 3, 2012 for U.S. Appl. No. 11/694,882.
Notice of allowance dated Apr. 30, 2014 for U.S. Appl. No. 13/414,678.
Notice of allowance dated Jun. 10, 2014 for U.S. Appl. No. 12/248,867.
Notice of allowance dated Jun. 24, 2010 for U.S. Appl. No. 11/241,739.
Office action dated Sep. 19, 2014 for U.S. Appl. No. 12/732,034.
Office action dated Oct. 2, 2013 for U.S. Appl. No. 12/496,572.
Office action dated Mar. 13, 2014 for U.S. Appl. No. 12/732,034.
Office action dated Mar. 28, 2014 for U.S. Appl. No. 11/862,165.
Office action dated Jan. 6, 2010 for U.S. Appl. No. 11/241,739.
Office action dated Feb. 24, 2009 for U.S. Appl. No. 11/694,882.
Office action dated Mar. 3, 2008 for U.S. Appl. No. 11/241,739.
Office action dated Mar. 4, 2010 for U.S. Appl. No. 12/248,867.
Office action dated Mar. 9, 2009 for U.S. Appl. No. 11/241,739.
Office action dated Mar. 26, 2013 for U.S. Appl. No. 12/248,867.
Office action dated Mar. 27, 2013 for U.S. Appl. No. 12/496,572.
Office action dated Apr. 16, 2010 for U.S. Appl. No. 11/862,165.
Office action dated Apr. 20, 2012 for U.S. Appl. No. 12/732,034.
Office action dated May 9, 2008 for U.S. Appl. No. 10/791,439.
Office action dated Jun. 1, 2011 for U.S. Appl. No. 11/694,882.
Office action dated Jun. 11, 2008 for U.S. Appl. No. 11/694,882.
Office action dated Jul. 1, 2009 for U.S. Appl. No. 11/241,739.
Office action dated Jul. 7, 2009 for U.S. Appl. No. 11/862,165.
Office action dated Aug. 23, 2010 for U.S. Appl. No. 11/694,882.
Office action dated Sep. 16, 2008 for U.S. Appl. No. 11/241,739.
Office action dated Nov. 15, 2012 for U.S. Appl. No. 12/732,034.
Office action dated Nov. 22, 2010 for U.S. Appl. No. 12/248,867.
Office action dated Dec. 7, 2007 for U.S. Appl. No. 10/791,439.
Office action dated Dec. 23, 2009 for U.S. Appl. No. 11/694,882.
Banking Services Newsletter, “Keeping You Up-to-Date on Banking Developments Throughout the UC System”, University of California, Office of the President, Banking Services Group, Newsletter 1, Dec. 2005, p. 1.
Bharosa, “Bharosa Authenticator”, http://www.bharosa.com/authenticator.html, Jan. 18, 2007, pp. 3.
Bharosa, “Bharosa Announces Online Authentication Solution to Counter Check 21-Based Fraud”, http://www.bharosa.com/news/PR-110705.html, Jan. 18, 2007, pp. 2.
Darlin, Damon, “Opening the Door on the Credit Report and Throwing Away the Lock”, http://www.nytimes.com/2006/03/18/business/yourmoney/18money.html, The New York Times, Saturday Mar. 18, 2006, pp. 2.
Gueye et al., “Constraint-Based Geolocation of Internet Hosts”, ACM Internet Measurement Conference 2004, Oct. 25-27, 2004, Taormina, Sicily, Italy, vol. 14, No. 6, pp. 288-293.
“ISO 8583”, Wikipedia, http://en.wikipedia.org/wiki/ISO_8583, dated Apr. 13, 2015 in 14 pages.
TechWeb, “Wells Fargo Intros Anti-Theft Alerts”, http://www.techweb.com/wire/166404177, Aug. 1, 2005, pp. 1.
“UPIC Marketing Guide—The Clearing House”, http://www.upic.com/infofiles/UPIC_Marketing_Guide.pdf, as printed Dec. 19, 2006. pp. 1-16.
Official Communication in European Patent Application No. 05818903.6, dated Mar. 18, 2014.
International Preliminary Report on Patentability and Written Opinion for Application No. PCT/US2005/035532, dated Jan. 9, 2008.
Official Communication in European Patent Application No. 6845722.5, dated Mar. 13, 2009.
Official Communication in European Patent Application No. 8159110.9, dated Oct. 27, 2008.
Official Communication in European Patent Application No. 8159110.9, dated Mar. 22, 2010.
International Search Report and Written Opinion for Application No. PCT/US2006/048251, dated Feb. 26, 2008.
International Preliminary Report on Patentability and Written Opinion for Application No. PCT/US2006/048251, dated Jun. 18, 2008.
International Preliminary Report on Patentability and Written Opinion for Application No. PCT/US2007/065776, dated Sep. 30, 2008.
International Search Report and Written Opinion received in PCT Application No. PCT/US2005/020750, dated Jun. 13, 2008.
International Preliminary Report on Patentability and Written Opinion received in PCT Application No. PCT/US2005/020750, dated Jul. 1, 2008.
Supplementary European Search Report for Application No. EP09735653, dated Dec. 16, 2011.
Official Communication for Application No. EP09735653, dated Jan. 4, 2013.
International Search Report and Written Opinion for Application No. PCT/US2009/041462, dated Dec. 1, 2009.
International Preliminary Report on Patentability and Written Opinion for Application No. PCT/US2009/041462, dated Nov. 4, 2010.
International Search Report and Written Opinion for Application No. PCT/US2011/056948, dated Apr. 18, 2012.
International Preliminary Report on Patentability in Application No. PCT/US2011/056948, dated May 2, 2013.
International Search Report and Written Opinion for Application No. PCT/US2013/033357, dated Jul. 10, 2013.
International Preliminary Report on Patentability in Application No. PCT/US2013/033357, dated Sep. 23, 2014.
International Search Report and Written Opinion for Application No. PCT/US2013/053495, dated Nov. 22, 2013.
International Preliminary Report on Patentability in Application No. PCT/US2013/053495, dated Feb. 3, 2015.
International Search Report and Written Opinion for Application No. PCT/US2013/070146, dated Mar. 3, 2014.
International Preliminary Report on Patentability in Application No. PCT/US2013/070146, dated May 19, 2015.
Office action dated Sep. 10, 2013 for U.S. Appl. No. 13/414,678.
Co-pending U.S. Appl. No. 14/826,107, filed Aug. 13, 2015.
Notice of allowance dated Aug. 5, 2015 for U.S. Appl. No. 14/473,818.
U.S. Appl. No. 10/791,439, 2006/0010072, Method and System for Identifying Users and Detecting Fraud by Use of the Internet, filed Mar. 2, 2004.
U.S. Appl. No. 11/241,739, U.S. Pat. No. 7,853,533, Method and System for Identifying Users and Detecting Fraud by Use of the Internet, filed Sep. 29, 2005.
U.S. Appl. No. 12/248,867, U.S. Pat No. 8,862,514, Method and System for Identifying Users and Detecting Fraud by Use of the Internet, filed Oct. 9, 2008.
Official Communication in European Patent Application No. 05818903.6, dated Jul. 18, 2017.
Provisional Application as filed in U.S. Appl. No. 61/324,312, dated Apr. 15, 2010 in 15 pages.
Notice of allowance dated May 28, 2015 for U.S. Appl. No. 12/732,034.
Notice of allowance dated Jul. 1, 2015 for U.S. Appl. No. 12/732,034.
Office action dated Mar. 19, 2015 for U.S. Appl. No. 12/496,572.
Office action dated Apr. 22, 2015 for U.S. Appl. No. 14/473,818.
Summons to Attend Oral Proceedings received in European Application No. EP09735653, dated Oct. 7, 2016.
Official Communication in European Patent Application No. 19181057.1, dated Sep. 17, 2019.
The Knightmare, “Secrets of a Super Hacker”, Loompanics Unlimited, Port Townsend, Washington, 1994, pp. 233.
Official Communication in European Patent Application No. 19189189.4, dated Jan. 21, 2020.

Related Publications (1)

	Number	Date	Country
	20110082768 A1	Apr 2011	US

Provisional Applications (1)

	Number	Date	Country
	60694768	Jun 2005	US

Continuation in Parts (2)

	Number	Date	Country
Parent	11241739	Sep 2005	US
Child	12892868		US
Parent	10791439	Mar 2004	US
Child	11241739		US

Method and system for identifying users and detecting fraud by use of the internet

Information

Patent Number

Date Filed

Date Issued

Inventors

Original Assignees

Examiners

Agents

CPC

Field of Search

US

CPC

International Classifications

Abstract