Simulating a transaction from the Intelligent Adaptive Authentication demo

Once successfully authenticated and logged in to the Intelligent Adaptive Authentication demo, Ms Doe now can create a new transaction.

Simulating a new transaction

After Ms Doe clicks New Transaction in the account details section, the Sandbox User banking website displays a form where the beneficiary's name, the IBAN of the beneficiary's account, the amount, and the currency of the transaction can be entered.

When Ms Doe submits the transaction, an External Transfer event is sent to the Risk Management componentClosed The Risk Management component is a highly versatile, reliable, and scalable fraud management system used for monitoring online banking applications and payment processing across multiple channels; it helps to protect against anti-money-laundering (AML), online banking fraud, and to comply with regulations. where it passes through basic transaction campaignsClosed Campaigns group elements in a hierarchical structure to filter events and ensure that the raised alerts can be processed adequately. Campaigns target specific record types such as for instance approved transactions only. A campaign is the top filtering level., divisionsClosed Divisions group several types of rules in a hierarchical structure to filter the events to ensure that the raised alerts can be processed adequately., and rulesClosed Rules are used to define sets of criteria to verify if an event (transaction and non-monetary event) matches any fraudulent behavior. If an event matches a previously defined rule, an alert can be raised. for Adaptive Authentication Web Payment, such as:

  • Blacklisted TXN
  • Challenged TXN (High)
  • TXN from RISKY Country (High)
  • Very Low amount (High)
  • High Amount Challenged (Low)
  • Medium Amount Challenged (Low)

To simulate different scenarios or determine the risk potential of the trusted device, you can mock several parameters that can be used with the Risk Management component rules. In the OneSpan Intelligent Adaptive Authentication demo appClosed The app enables you to simulate different scenarios and challenge different device parameters with OneSpan Intelligent Adaptive Authentication. menu, select Mock device data and choose which parameters you want to use in the simulation.

The Secure element parameter is by default disabled. Transactions with amounts greater than 100.00 will be denied. To ensure that your transaction will not be denied, enable this parameter.

Depending on the amount of the transaction, the External Transfer event will match different rules. The Risk Management component will send the corresponding response to the Intelligent Adaptive Authentication demo which will display a Cronto image and send a notification to the mobile device.

Rules matched
Transaction amount Matched RA Rule
Between 0 and 100.00 Very Low amount
Between 100.01 and 4,999.99 Medium Amount Challenged
Higher than 5,000.00 High Amount Challenged

Simulating a transaction from a risky country

With the Sandbox User banking website, you can simulate what happens when a transaction is initiated from a risky country. The Intelligent Adaptive Authentication demo offers several options to simulate risky countries. Defined country codes are to be used for the available risky countries.

Risky countries
Risky country Country code
Mexico 484
United States of America 840
United Kingdom 826
Nigeria 566
France 250

Simulating a transaction from a risky country

  1. In the Risk Parameters (Browser CDDC) section of the Intelligent Adaptive Authentication demo, select a country you would like to blocklist.

  2. In the Risk Management component, navigate to Design rules & actions > Rule Management.
  3. To expand the Rules navigation pane, click on the Search & List icon in the upper left corner of the Rule Management screen.
  4. In the Rules navigation pane, expand Adaptive Authentication Web Payments (Medium) > Challenged TXN (High), and select the TXN from RISKY Country (High) rule.
  5. In the TXN from RISKY Country (High) dashboard, click Toggle Rule in the Rule section of the button bar.
  6. In the Rules navigation pane, select the Transactions hierarchy and open the Hotlist tab in the dashboard.
  7. Select RISKY_COUNTRY_BLACK_LIST and edit the hot list you would like to blocklist.
  8. In the hot list, enter the number code of the country you have chosen for the simulation - see Risky countries for the available countries and corresponding number codes.

    The country code you enter here must correspond to the country you have selected in the Risk Parameters (Browser CDDC) section of the Intelligent Adaptive Authentication demo!

  9. The External Transfer event will mach the TXN from RISKY Country rule in the Risk Management component.

    The Intelligent Adaptive Authentication demo will display a Cronto image and send a notification to the mobile device.