CA RiskMinder UNIX Installation Guide › Understanding the Basics › Introduction to RiskMinder › How RiskMinder Works › Pre-Login Risk Assessment and Fraud Detection
Pre-Login Risk Assessment and Fraud Detection
When a user accesses your online application, you can assess them for potential risk even before they log in.
If you call the risk analysis capability even before a user logs in to your online application, then the risk evaluation workflow is as follows:
- User accesses your online application.
- Your application invokes RiskMinder to analyze the risk that is associated with the transaction.
- RiskMinder evaluates the risk by using the incoming IP address of the user and the configured rules. It uses the data that is discussed in the section, "Location Information" for the purpose.
- Based on the result of the rules that were executed and whether the assessed information matched, RiskMinder generates a Risk Score and Advice.
- Your application validates the user, as follows:
- If the risk is low, the user is allowed to access your online application.
- If the risk is high, the user is denied access to your online application.
- If the transaction is tagged as suspicious, then your application challenges the user for additional (secondary) authentication to prove their identity.
Copyright © 2013 CA.
All rights reserved.
|
|