| CPC G06Q 20/4016 (2013.01) [G06F 9/543 (2013.01); G06Q 20/027 (2013.01); H04L 63/08 (2013.01); H04L 63/101 (2013.01); H04L 63/1425 (2013.01)] | 14 Claims |
|
1. A computer-implemented method for authenticating an online user, the method implemented using a computing system including at least one processor and a memory device, the method comprising steps performed by the at least one processor of:
receiving, at a risk-based authentication enabled (RBA-enabled) directory server, from a requestor server in communication with a merchant website, an authentication request message, including authentication data collected from a user computing device during a transaction with the merchant website, wherein the RBA-enabled directory server is communicatively coupled between the requestor server and an access control server (ACS) over a computer network;
extracting, using the RBA-enabled directory server, the authentication data from the authentication request message;
applying a risk-based authentication (RBA) engine to the authentication data, wherein the RBA engine has access to more transaction data than the ACS;
generating, by the RBA engine, RBA result data including an enhanced reason code, the enhanced reason code including no more than three bytes of data, wherein the enhanced reason code includes multiple characters and is generated by:
establishing, using the RBA engine, a plurality of different reason code categories, each reason code category including a plurality of anchors, wherein the plurality of different reason code categories includes at least a cardholder category, a merchant category, and an environment category;
activating, using the RBA engine, based on a comparison of the extracted authentication data to at least one long term variable stored in the database, a plurality of activated anchors, wherein at least one of the plurality of activated anchors is in the cardholder category or the merchant category; and
generating, using the RBA engine, the enhanced reason code based on connections between the plurality of activated anchors by:
when at least one anchor in the cardholder category is activated, generating a positive enhanced reason code indicating a low risk of fraud;
when at least one anchor in the cardholder category is activated and at least one anchor in the merchant category is activated, generating a stronger positive enhanced reason code indicating a lower risk of fraud; and
when at least one anchor in the cardholder category is activated, at least one anchor in the merchant category is activated, and at least one anchor in the environment category is activated, generating an even stronger positive enhanced reason code indicating an even lower risk of fraud; and
determining, using the RBA-enabled directory server, based on the RBA result data, that the transaction associated with the authentication request message is a low risk transaction; and
based on the determination that the transaction is a low risk transaction, using the RBA-enabled directory server, bypassing the ACS by fully authenticating the transaction and transmitting an authentication response message to the requestor server without transmitting the authentication request message to the ACS, thereby reducing overall message volume on the computer network, increasing availability of network resources on the computer network, and improving transmission speed over the computer network.
|