|
Scenario 1: Preventing Fraudulent Aquisition of Vital Documents
Industries: Government
Applications: Identity Theft Prevention
Products: ProCheck, ProID, ProID Voice
State and local government agencies that issue vital records
- such as birth, marriage, or death certificates - are using
our authentication solutions to verify and authenticate identity
prior to the order fulfillment of vital records over the internet
or via the telephone. This helps government agencies reduce
the amount of subsequent identity fraud committed through the
fraudulent acquisition of "breeder" documents. For example,
fraudulent individuals often use birth certificates to secure
a driver's license or passport, or to open a bank account.
The process works as follows:
- A customer places an order for a vital record by calling a toll-free number or by visiting the government agency Web site.
- The customer enters in his or her relevant identity information.
For example, if he is placing an order for a birth certificate
- he would enter in the name of the individual for whom
he is requesting a certificate, the relationship of that
individual to the person requesting the certificate, the
maiden name of the birth mother, the name of the father,
the state/city/county in which the birth certificate was
issued, the current address, etc.
- Once he submits his order, the authentication process
begins (i.e., verification of their name, address and SSN,
generation of a knowledge-based authentication quiz).
- Depending on the results of the authentication process, an online request is sent to the issuing government agency to fulfill the vital records order.
Back to Top
Scenario 2: Identity Theft Protection Subscription Services
Industries: Online Service Providers
Applications: Identity Theft Prevention
Products: ProCheck,
ProID, ProMonitor Commercial
A large internet service provider (ISP) would like to offer
identity theft protection subscription services to its existing
e-mail and Internet customers to increase its subscriber revenue
streams.
ChoicePoint Authentication Solutions initially enrolls the customer
into the identity theft protection service by verifying and
authenticating the identity of the customer. Then, on a daily
basis, CPAS will monitor the subscriber's profile for any high-risk
changes (e.g., use of SSN by others, address changes, telephone
number changes).
Based on the ISP's business rules, ChoicePoint will alert the
subscriber via e-mail, or potentially by text message to cell
phone. The subscriber may also view details of the identity
profile changes at the ISP customer service Web site. The ISP
would also provide information to advise members on what actions
they should take in the case of identity theft.
Back to Top
Scenario 3: Credit Card Verification for High-risk Transactions
Industries: Financial Services
Applications: Credit Card Transactions
Products: ProCheck,
ProID, ProMonitor Commercial
A Gateway application vendor develops credit card payment processing
software and also provides credit card transaction monitoring
services for online merchants and credit card issuing banks.
These Gateway vendors offer enhanced or packaged identity verification,
authentication and monitoring features to online merchants as
an additional service.
ChoicePoint's Authentication Solutions are integrated into the
Gateway vendor's packaged application services to reduce "chargebacks."
Chargebacks occur when a credit card customer successfully disputes
fraudulent charges that appear on his or her credit card; the
result is that the card-issuing bank is left holding the bad
debt. If an online merchant receives too many chargebacks within
a certain period, the credit card-issuing bank may choose to
increase its "discount rate" (service fees) or close the merchant
account.
The authentication process is triggered for high-value or high-risk
transactions (e.g., "big ticket" electronic items such as expensive
stereo equipment or items that are shipped to an address where
the credit card is not billed).
ChoicePoint's Authentication Solutions verifies the user's identity
and then presents the user with a series of randomly generated
questions, allowing the user to complete his or her transaction
automatically online or via the telephone.
The ChoicePoint authentication process could also be used as
part of the credit card activation process, and monitoring services
can be used throughout the credit card transaction process.
Back to Top
Scenario 4: Enterprise Network Security
Industries: All
Applications: Security Management
Products: ProCheck,
ProID, ProID Password Reset,
ProMonitor Commercial
Our authentication solutions can be offered as a "plug-in" to an enterprise security management software suite. This helps enterprises conduct business more efficiently by providing visibility into who is accessing their network resources and what resources they can access by ensuring that the appropriate person has access to the appropriate information at the appropriate time. CPAS does this in three sub-scenarios.
Web Access Mangement
CPAS supports vendor Web access management tools by providing
solutions that allow business clients to verify and authenticate
user identity prior to account creation, enrollment or log-in.
Online banking provides one example of the value of this service.
An existing banking customer would like to create an online
banking account. Before the bank allows the user to access sensitive
checking or savings account information or bill payment features
online, the bank must first validate that the account number
exists. Identity management software does this through directory
services.
Then the bank must verify that the user owns the account information presented. CPAS can do this through ProID or a combination of ProCheck/ProID if the account is entirely new, along with the existing suite of Web access software.
Then the bank must issue a username and password. Web access software does this through provisioning and registration tools and then certain access rights and privileges must be managed. Web access software does this through its authorization tools and CPAS can support this through the use of ProID/ProMonitor.
A use case example is as follows: prior to allowing a check request from a home equity loan online, ProID may be used to verify and authenticate the identity of the user and then the Web access software may immediately grant authorization based on the results of the authentication process, or it may issue a one-time password or random PIN to enhance security.
Password Management
CPAS also supports password management tools by providing the business client with remote, self-service options for various users across domains such as:
- Reduced sign-on that allows fewer username/passwords to be used for multiple applications
- Password resets without human assistance
- One-time password issuance for two-factor authentications
Identity Theft Protection
CPAS can also provide an identity theft protection component to network security threat management tools via ProMonitor. This allows business clients to quickly respond to potential threats by alerting users that their digital identity may have been compromised and then immediately revoking the existing username/password.
Back to Top
|
|
