Analytics
10/17/2012
01:33 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Experian And Iovation Collaborate To Prevent Fraud With Identity Verification And Device Reputation

Integrated offering will use Experian's Precise IDSM platform

COSTA MESA, Calif., Oct. 11, 2012 /PRNewswire/ -- Experian® today announced that it is working in partnership with iovation, the Device Reputation Authority(TM), to provide a comprehensive suite of identity verification and device reputation services. These services protect businesses and agencies that deliver customer services via both online and mobile access channels from fraudulent transactions, fraud rings or recurring fraud activities.

The two companies will work together globally to fight fraud by using a combination of identity authentication, shared device reputation and real-time risk evaluation. The integrated joint offering will utilize Experian's industry-leading Precise IDSM platform. The platform features risk-based authentication encompassing highly predictive risk assessments through a combination of identity element verification, risk scoring, progressive out-of-wallet questioning and comprehensive decisioning based on a holistic view of an identity in use. This combination helps to refine decisions on which identities should be allowed to enter a system and which should be further verified via alternate processes.

"Experian is committed to security, and by working with iovation we are able to leverage our combined expertise and provide our clients with the technologies to help them prevent fraud and achieve optimal efficiency while minimizing customer friction," said Charles Chung, president of Decision Analytics North America at Experian. "We are excited to be working with an innovative company such as iovation that is on the vanguard of online trust, reputation and fraud prevention technologies."

Working in tandem with Experian's Precise ID platform, iovation's ReputationManager 360 service utilizes the past and current behavior of more than 1 billiondevices to identify and re-recognize devices logging into an organization's Website in real time. This unique approach also exposes relationships among accounts with multiple vendors and identifies all of the devices associated with an individual without needing personally identifiable data. Doing so helps businesses prevent fraudulent transactions before they happen and root out fraud rings or recurring fraud activities -- all while protecting the privacy of consumers.

Experian and iovation have worked together to show U.S. financial institutions how to implement the recent FFIEC Guidance entitled Supplement to Authentication in an Internet Banking Environment, which asks financial institutions to mitigate risk using a variety of processes and technologies employing a multilayered approach. The joint offering from Experian and iovation allowed businesses to meet these requirements and move beyond simple device identification to complex device identification and out-of-wallet identity verification procedures.

"We are thrilled to collaborate with Experian on helping our joint clientsavoid fraud losses by stopping cybercriminals before they damage their business or customers. Combining iovation's power of device reputation with Experian's extensive identity-based services is game-changing," said Jon Karl' co-founder and vice president of corporate development at iovation. "iovation is committed to identifying suspicious activity, exposing the size and scope of problems, and helping our customers know whom to trust online."

About iovation

iovation protects online businesses and their end users against fraud and abuse through an industry-leading combination of shared device reputation and real-time risk evaluation. 2,000 fraud managers around the globe leverage iovation's database of Internet devices and relationships between them to determine the level of risk associated with any type of online transaction.

Retail, financial services, social network, gaming and other companies make real-time queries to iovation's knowledge base of more than 1 billion devices from every country in the world. Every day, iovation stops over 150,000 fraud attempts. For more information, visit http://www.iovation.com.

About Experian

Experian is the leading global information services company, providing data and analytical tools to clients around the world. The Group helps businesses to manage credit risk, prevent fraud, target marketing offers and automate decision making. Experian also helps individuals to check their credit report and credit score, and protect against identity theft.

Experian plc is listed on the London Stock Exchange (EXPN) and is a constituent of the FTSE 100 index. Total revenue for the year ended March 31, 2012, was $4.5 billion. Experian employs approximately 17,000 people in 44 countries and has its corporate headquarters in Dublin, Ireland, with operational headquarters in Nottingham, UK; California, US; and São Paulo, Brazil.

For more information, visit http://www.experianplc.com.

Experian and the Experian marks used herein are service marks or registered trademarks of Experian Information Solutions, Inc. Other product and company names mentioned herein are the property of their respective owners.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: nice one
Current Issue
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0845
Published: 2015-04-17
Format string vulnerability in Movable Type Pro, Open Source, and Advanced before 5.2.13 and Pro and Advanced 6.0.x before 6.0.8 allows remote attackers to execute arbitrary code via vectors related to localization of templates.

CVE-2015-0967
Published: 2015-04-17
Multiple cross-site scripting (XSS) vulnerabilities in SearchBlox before 8.2 allow remote attackers to inject arbitrary web script or HTML via (1) the search field in plugin/index.html or (2) the title field in the Create Featured Result form in admin/main.jsp.

CVE-2015-0968
Published: 2015-04-17
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 8.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension and the image/jpeg content type, a different vulnerability than CVE-2013-3590.

CVE-2015-0969
Published: 2015-04-17
SearchBlox before 8.2 allows remote attackers to obtain sensitive information via a pretty=true action to the _cluster/health URI.

CVE-2015-0970
Published: 2015-04-17
Cross-site request forgery (CSRF) vulnerability in SearchBlox before 8.2 allows remote attackers to hijack the authentication of arbitrary users.

Dark Reading Radio
Archived Dark Reading Radio
Join security and risk expert John Pironti and Dark Reading Editor-in-Chief Tim Wilson for a live online discussion of the sea-changing shift in security strategy and the many ways it is affecting IT and business.