Simulating a transaction from the Intelligent Adaptive Authentication demo
Once successfully authenticated and logged in to the Intelligent Adaptive Authentication demo, Ms Doe now can create a new transaction.
Simulating a new transaction
After Ms Doe clicks New Transaction in the account details section, the Sandbox User banking website displays a form where the beneficiary's name, the IBAN of the beneficiary's account, the amount, and the currency of the transaction can be entered.
When Ms Doe submits the transaction, an External Transfer event is sent to the Risk Management component The Risk Management component is a highly versatile, reliable, and scalable fraud management system used for monitoring online banking applications and payment processing across multiple channels; it helps to protect against anti-money-laundering (AML), online banking fraud, and to comply with regulations. where it passes through basic transaction campaigns Campaigns group elements in a hierarchical structure to filter events and ensure that the raised alerts can be processed adequately. Campaigns target specific record types such as for instance approved transactions only. A campaign is the top filtering level., divisions Divisions group several types of rules in a hierarchical structure to filter the events to ensure that the raised alerts can be processed adequately., and rules Rules are used to define sets of criteria to verify if an event (transaction and non-monetary event) matches any fraudulent behavior. If an event matches a previously defined rule, an alert can be raised. for Adaptive Authentication Web Payment, such as:
- Blacklisted TXN
- Challenged TXN (High)
- TXN from RISKY Country (High)
- Very Low amount (High)
- High Amount Challenged (Low)
- Medium Amount Challenged (Low)
To simulate different scenarios or determine the risk potential of the trusted device, you can mock several parameters that can be used with the Risk Management component rules. In the OneSpan Intelligent Adaptive Authentication demo app The app enables you to simulate different scenarios and challenge different device parameters with OneSpan Intelligent Adaptive Authentication. menu, select Mock device data and choose which parameters you want to use in the simulation.
The Secure element parameter is by default disabled. Transactions with amounts greater than 100.00 will be denied. To ensure that your transaction will not be denied, enable this parameter.
Depending on the amount of the transaction, the External Transfer event will match different rules. The Risk Management component will send the corresponding response to the Intelligent Adaptive Authentication demo which will display a Cronto image and send a notification to the mobile device.
|Transaction amount||Matched RA Rule|
|Between 0 and 100.00||Very Low amount|
|Between 100.01 and 4,999.99||Medium Amount Challenged|
|Higher than 5,000.00||High Amount Challenged|
Simulating a transaction from a risky country
With the Sandbox User banking website, you can simulate what happens when a transaction is initiated from a risky country. The Intelligent Adaptive Authentication demo offers several options to simulate risky countries. Defined country codes are to be used for the available risky countries.
|Risky country||Country code|
|United States of America||840|
Simulating a transaction from a risky country
In the Risk Parameters (Browser CDDC) section of the Intelligent Adaptive Authentication demo, select a country you would like to blocklist.
- In the Risk Management component, navigate to Design rules & actions > Rule Management.
- To expand the Rules navigation pane, click on the Search & List icon in the upper left corner of the Rule Management screen.
- In the Rules navigation pane, expand Adaptive Authentication Web Payments (Medium) > Challenged TXN (High), and select the TXN from RISKY Country (High) rule.
- In the TXN from RISKY Country (High) dashboard, click Toggle Rule in the Rule section of the button bar.
- In the Rules navigation pane, select the Transactions hierarchy and open the Hotlist tab in the dashboard.
- Select RISKY_COUNTRY_BLACK_LIST and edit the hot list you would like to blocklist.
- In the hot list, enter the number code of the country you have chosen for the simulation - see Risky countries for the available countries and corresponding number codes.
The country code you enter here must correspond to the country you have selected in the Risk Parameters (Browser CDDC) section of the Intelligent Adaptive Authentication demo!
- The External Transfer event will mach the TXN from RISKY Country rule in the Risk Management component.
The Intelligent Adaptive Authentication demo will display a Cronto image and send a notification to the mobile device.