BSS Fraud-Analiz

A solution to ensure an increased level of security when working in RBS systems and invites banks to cooperate for pilot projects on the use of the system.

The FRAUD-Analysis system is the first industrial solution designed to prevent fraud when a bank serves legal entities in remote banking systems (RBS). The solution fully complies with the specifics of the banking business in the Russian Federation.

Currently, as you know, the use of any RBS system, in addition to the obvious benefits, contains a number of threats, both to the bank and to its customers. The most tangible for the bank's client is the threat of theft of funds.

At the moment, the following methods of implementing the threat are relevant:

• the use of stolen funds authentications and a private key; EDS
• Access to an open system session (direct or remote)
• substitution of payment document details (using malware). At the time of signing the document by the bank's client, the details of the document are changed using malware. The client does not notice the substitution and sends the signed document to the bank.

The system "FRAUD-Analysis," created on the basis of the platform "Correqts," was originally designed as a multi-vending system, i.e. it allows you to work both with the system "RBS BS-Client" v. 3 of BSS, and with the systems of RBS and ABS of other vendors.

To protect against fraud, the RBS BS-Client system has implemented a set of measures and recommendations to improve the level of security. To provide customers with a safe service while maintaining the comfort of work, the bank needs to take on the protection of customers from the actions of intruders. For this purpose, BSS has developed the FRAUD-Analysis system, which is intended for prompt verification by the bank of payment documents for fraud immediately before execution.

Diagram of "Fraud-Analysis" system operation

The process of "FRAUD-Analysis" system operation consists of the following steps:

• The customer sends the payment document to the bank.
• The payment document is uploaded to the FRAUD-Analysis system.
• FRAUD-Analysis system carries out checks according to the rules set up by the bank and issues the result.

The following result options are available for each individual document:

• The document was successfully validated.
• Suspicious document, operator intervention required.
• The document is fraudulent.

If the document is validated successfully, it automatically continues. If the document is suspicious or fraudulent, then the document is suspended until a decision is made by the bank's responsible specialist. The shutdown is optional, and the decision to turn it on is made by the bank.

If fraud is detected, in addition to displaying information to the operator's AWS, it is possible to additionally inform the operator using the "Notification Server" system, for example, sending an SMS message to his mobile phone or to the client's mobile phone.

2022

Inclusion in the "Financial Sector Software Interchangeability Catalog"

On August 11, 2022, BSS announced the inclusion of its own solutions for remote banking, voice technologies and information security in the "Directory of Interchangeability of Software for the Financial Sector." In particular, from BSS, the Directory includes a fraud prevention system in the Fraud Analysis remote channels. Read more here.

Release version 4.21

On June 30, 2022, the company BSS announced the release of the updated version of Fraud Analysis v.4.21 -, antifraud system which provides safety remote customer service and protects against actions. malefactors The main feature of the version was the "Module of the SBP verification system payments (V2S)," which allows you to prevent cases of fraud when committing in. transaction Fast Payment System (FPS)

It is implemented in addition to the "SBP Payment Verification System Module (S2S)," which allows preventing theft of client's funds through SBP payments between individuals (including the formation of indicators of a suspicious operation according to the requirements of the "SBP OPCC Standard").

The use of SBP has already become a popular way to make payments. Banks note that the number of transactions in the SBP is growing. SBP begins to attract the attention of scammers who are constantly looking for ways to enrich themselves.

Cybercriminals can take advantage of the situation when legal entities transfer funds to individuals. For example, when returning funds for purchases, payment of wages, compensation and insurance payment, investment income, lending at the time of purchase.

BSS is constantly looking for opportunities to ensure security and comfort in banking. Thus, seeing the potential threat of fraud when using the SBP (B2C), BSS has developed the "Module of the SBP Payment Verification System (V2S)," which meets all the requirements of the "SBP OPCC Standard." This standard describes the mechanism for the bank to check payment documents that go from legal entities to individuals (B2C transfers).

"We are looking for opportunities to help banks increase revenue, increase customer loyalty and secure banking operations. "The module of the SBP payment verification system (V2S)" as part of the "Fraud analysis" v.4.21, developed in accordance with the "SBP OPCC Standard," prevents fraud and ensures the security of transactions in the Fast Payment System, " commented Vitaly Pateshman, BSS Sales Director

2021: Inclusion in the unified register of Russian software

The unified register of Russian software includes four more BSS solutions. The company announced this on January 21, 2021. The register also includes a decision to counter fraud in FRAUD-Analysis remote channels. Read more here.

2019: Release of version 4.7

"The version update increases the convenience of using the system for banks to perform 167-FZ - added imports in the FinCERT format of phone feeds, electronic wallets, hashes of passports and SNILS, added new directories and verification criteria, and uploaded information on froda payments for. In FinCERT the next version, among other things, it is planned to add the import and verification of FinCERT feeds with data from sender devices, "comments BSS Dmitry Knyazev, Deputy Director of the Retail Products Department, on the planned update.

The transition to the version of the system "FRAUD-Analysis" v. 4.7 is carried out from version v. 4.6 within the framework of the maintenance contract.

2018

Release version 4.4

On July 13, 2018, BSS announced the release of the next version of FRAUD-Analysis v. 4.4, designed to prevent fraud in remote banking systems for legal entities and individuals.

In the presented version, the payment verification model has been improved, the possibility of saving client licenses has been simplified, the logging system has been improved, and the mechanism for canceling changes made to the system AWS interface has been simplified.

author '= Dmitry Knyazev, Deputy Director of Retail Products Department of BSS To save banks licenses for the system, the procedure for removing non-working clients has been improved, for a number of behavioral criteria, the adjustment of the analysis depth from any day in the past has been added, for modeling, the ability to load rules of payer groups has been added, to save disk space, the ability to configure the automatic removal of old logs has been added, for ease of operation, the mechanism for canceling changes to the AWS system has been improved.

The transition to the version of the system "FRAUD-Analysis" v. 4.4 is carried out from version v. 4.3, 4.3.1 within the framework of the maintenance contract.

Release version 4.3

In January 2018, BSS announced the release of the next version of the Fraud-Analysis system v. 4.3, designed to prevent fraud in remote banking systems for legal entities and individuals.

According to the developer, the capabilities of the modeling subsystem have been significantly expanded: now it allows you to simulate the system's response to changes in rule settings on a selection of real payments to analyze the effectiveness of these changes. The logging system has been improved to increase information content. Added features for working with reference books.

The main change to this version is the optimized modeling subsystem. Now you can set up the model on a specific selection of real payments and compare the results of the effectiveness of the settings. Modeling takes place in the sandbox and does not affect the standard payment check, there is no need to deploy a separate test copy of the system. In addition, many small changes have been implemented that expand the functionality and usability of the system, - commented Dmitry Knyazev, Deputy Director of the Retail Products Department of BSS, on the planned update.

The transition to the Fraud-Analysis system version v. 4.3 is carried out from version v. 4.2 within the framework of the maintenance contract.

2017

Release version 4.2

On August 25, 2017, BSS announced the release of FRAUD-Analysis version 4.2.

In the updated version of "FRAUD-Analysis":

• expanded the model of verification of payments from mobile devices;
• The set of criteria for verification of private users has been expanded;
• increased productivity;
• Load monitoring tools have been created for system maintenance
• modified uploading of reporting forms;
• many small improvements and improvements have been made.

The growing number of mobile users of RBS and the inherent features of the mobile platform require increased attention from anti-fraud systems. Therefore, in the next version of the system, we have expanded the model for checking payments from mobile devices, and in addition, the range of criteria for checking individuals as a whole. In addition, many different degrees of complexity have been made at the request of banks, "commented Dmitry Knyazev, Deputy Director of the Retail Products Department of BSS.

Transition to the version of the system "FRAUD-Analysis" v. 4.2 is carried out from version 4.1 within the framework of the maintenance contract.

Fraud-Analysis v. 4.1

In the updated version of the FRAUD-Analysis system, the verification of additional payment parameters has been expanded, the model has improved in conditions of lack of information, the event model has been modified, the reporting functionality has been expanded, multi-domain authorization has been implemented, new service functions have been added, the list and detailing of logged system events has been expanded.

2016: Fraud-Analysis v. 4.0

On November 2, 2016, the company BSS announced the release of the v. FRAUD-Analiz 4.0 version of the system, designed to prevent fraud in the systems of remote banking service legal entities and individuals.

Version v. 4.0 adds the ability to deeply analyze the RBS user's workplace by integrating the FRAUD-Analysis system with the Group-IB Bot-Trek Secure Bank solution and implements improvements based on the experience of banks.

The updated FRAUD-Analysis system, in addition to the previously built-in mechanism for analyzing the RBS user's workplace, has the ability to analyze in more depth through integration with the Group-IB Bot-Trek Secure Bank solution. New reports, rules and criteria for verification have been implemented, the functionality of working with directories, client groups, system operating modes has been expanded, support for new versions of the OS, DBMS, application servers has been provided and many other improvements have been made.

"To provide the best product to our customers, we, along with the constant expansion of the functionality and improvement of the internal properties of the FRAUD-Analysis system, implement joint solutions with our partners. An example of such work was the new version with the integration of the Group-IB Bot-Trek Secure Bank system. " Dmitry Knyazev, Head of BSS

2014

Fraud-Analysis v. 3.0

On June 2, 2014, BSS announced the release of a new version of FRAUD-Analysis v. 3.0.

In the new version of the system "FRAUD-Analysis":

• implemented an innovative mechanism for detecting fraudulent payments by combining criteria into rules and setting the conditions for triggering rules;
• new criteria and rules for finding fraudulent payments have been developed;
• increased visibility of visualization of criteria and rules actuation;
• improved user mechanisms for setting up and managing the system;
• a mechanism for exporting and importing rules has been developed;
• implemented the wishes of user banks to improve the system.

"The company's comprehensive anti-fraud solution BSS is built on the basis of modern products and allows us to effectively counter current threats caused by fraudulent payments in systems," RBS stressed the Andrei Khokhlov head of the anti-fraud solutions development department. "The BSS strengthening of the expert component of the FRAUD-Analysis system, carried out due to the implementation of the new rules mechanism, significantly increases the response accuracy and flexibility of setting up the system in accordance with the specifics of each bank."

Fraud-Analysis v. 3.1

On August 11, 2014, BSS announced the release of an updated version of FRAUD-Analysis 3.1 software.

The new version "FRAUD-Analysis" v. 3.1 - represents a new level of protection against fraudulent activities and includes the best practices of application in banks of Russia and neighboring countries.

The new version implements:

• an innovative mechanism for detecting fraudulent payments by combining criteria into rules and setting the conditions for triggering rules;
• Criteria Designer
• password policy mechanisms and the possibility of domain authorization of users using LDAP tools;
• new criteria and rules for finding fraudulent payments;
• new reports;
• improvement of visualization of criteria and rules actuation;
• Improved capabilities of user-defined system setup and management mechanisms
• Developing rules in the Export and Import Mechanism
• wishes of user banks to improve the system.

"The company's comprehensive anti-fraud solution BSS is built on the basis of modern products and allows us to effectively counter current threats caused by fraudulent payments in systems," RBS stressed the Andrei Khokhlov head of the anti-fraud solutions development department. - BSS Strengthening the expert component of the FRAUD-Analysis system, carried out due to the implementation of the new rules mechanism, significantly increases the accuracy of operation and flexibility of setting up the system in accordance with the specifics of each bank. The presence of a criteria designer and a rule designer allows banks, without waiting for the release of new versions, to create and test new rules and criteria based on available source data. "

Transition to the version of the system "FRAUD-Analysis" v.3.1 from version v.3.0 can be performed within the framework of the maintenance contract.

Fraud-Analysis v. 3.2

In December 2014, BSS announced the release of a new version of FRAUD-Analysis v. 3.2, designed to prevent fraud in remote banking systems for legal entities and individuals. The updated FRAUD-Analysis system has strengthened expert anti-fraud functionality, improved service administration mechanisms and facilitated the update process. The new version of the FRAUD-Analysis system is ready for full-featured operation on the basis of open system software. The update also contains improvements made in accordance with the wishes of user banks of the FRAUD-Analysis system.

In system version "FRAUD-Analysis" v. 3.2:

• The expert component has been strengthened ─ new criteria for detecting fraudulent payments have been added;
• Improved work with white and black lists;
• implemented a mechanism for automatic updating of workplaces of bank employees;
• full support for the operation of the FRAUD-Analysis system based on DBMSostgreSQL has been implemented ;
• implemented the wishes of user banks to improve the system.

The transition to the version of the system "FRAUD-Analysis" v. 3.2 is carried out from version v. 3.1 within the framework of the maintenance contract.

2015

Fraud-Analysis v. 3.4

On 18 June 2015, BSS announced the release of "FRAUD-Analysis" v. 3.4.

The FRAUD-Analysis system ensures close interaction RBS CORREQTS with the company's system. This BSS version has increased the number of analyzed parameters and criteria for evaluating payment transactions to identify fraudulent actions, implemented the wishes of our customers, increasing the convenience of working with the system and expanding its functionality.

"For five years of continuous development, the FRAUD-Analysis system has grown into a successful competitor to Western counterparts," stressed the Dmitry Knyazev director of the fraud analysis department. "This BSS was made possible thanks to operational changes in functionality at the request of our customers, close integration with other products of the company, the use of new technological solutions, ease of implementation and" omnivore "in terms of supporting both free and proprietary system software."

The transition to the version of the system "FRAUD-Analysis" v.3.4 from version v. 3.3 takes place within the framework of the maintenance contract.

Fraud-Analysis v. 3.5

On December 3, 2015, BSS announced the release of version v.3.5 of the FRAUD-Analysis system.

The product has improved the configuration of the behavioral model, added functionality.

Provides a simpler and more convenient process for setting up and verifying a behavioral model to assess payment eligibility. The version has added verification criteria, universal import of user reference books, the possibility of quick mass installation of the AWS system using MSI.

In accordance with the wishes of the customers, a number of improvements have been made in working with the criteria and rules of verification, analytical reports, and the list of notification parameters has been expanded.

Dmitry Knyazev, Head of BSS, said:

- With each new version, FRAUD-Analysis receives the functionality that our clients and potential system users are waiting for. The implementation of new opportunities is based on many years of experience in the implementation and operation of the system in dozens of Russian banks. Our main task is to listen to the needs of customers and reflect them efficiently and promptly in our industrial anti-fraud solution.

The transition to the version of the system "FRAUD-Analysis" v.3.5 from version v.3.4 is carried out within the framework of the maintenance contract.

2014

Fraud-Analysis v. 2.0

• The system architecture has been completely redesigned: mechanisms for reliability, performance and fault tolerance of the system are implemented at a high level.
• Fraud checks have been strengthened by implementing additional criteria for the behavioral model (analysis of typical client actions, analysis of traces of attackers' actions), as well as filter criteria.
• We fully support group policies that allow you to flexibly configure criteria for detecting fraudulent payments for different groups of customers.
• A fully functional link between the FRAUD-Analysis system and the retail customer has been implemented. Priva te Client, "which provides an analysis of payments by individuals for signs of fraud. Correct collaboration of "FRAUD-Analysis" with "RBS BS-Client. Private Client "is supported since v. 2.5.310.
• The set of reports that can be generated within the framework of the FRAUD-Analysis system has been expanded. In addition, the list of settings designed for flexible configuration of system reports has been expanded.
• Based on the analysis of the results of the work of previous versions of the FRAUD-Analysis system in banks, the mechanism for maintaining and using "black" and "white" lists has been significantly revised.
• The combination of the FRAUD-Analysis system and the RSA Transaction Monitoring system has been standardized and improved, which makes it possible to deploy and commission an effective anti-fraudulent solution as soon as possible.
• The wishes of banks actively using the FRAUD-Analysis system of previous generations to improve the system have been implemented.
• The list of OSPO compatible with the system has been updated.

Fraud-Analysis v. 2.1

• new criteria have been implemented that allow, on the basis of geolocation information, to identify fraudulent schemes related to attacks by attackers that are outside the main region of the bank's client's presence;
• new criteria and reference books have been implemented that greatly simplify the configuration of identifying fraudulent schemes related to attempts to withdraw funds to individual cards;
• modifications of the system interface have been made to improve the convenience of operation when viewing analytical information on the payment document;
• interaction with the Integrum information and reference system, which allows you to search for information about the trustworthiness of legal entities from open information sources;
• improvements based on the wishes of banks using the system have been implemented.

2013

Fraud-Analysis v. 1.6

• The reliability, performance and fault tolerance of the system are significantly increased.
• Fraud checks have been strengthened by implementing additional criteria for the behavioral model (analysis of typical client actions, analysis of traces of attackers), as well as filter criteria.
• Integration with the Notification Server product is provided. 

With the help of the "Notification Server," it is possible to inform authorized employees of security departments and business divisions of the bank about information security incidents, as well as about the appearance of suspicious documents that require coordination with the client.

• The composition of specialized industrial software (software) has been expanded, on the basis of which online interaction of the FRAUD-Analysis system with the bank's information systems (ABS, RBS etc.) is provided, including with the Company's products - BSS the RBS BS-Client v. 3 and CORREQTS systems, as well as with popular paid and free software, including: 
  • Application Interpreter - Java Runtime Environment version 7;
  • Application Servers - IBM WebSphere Application Server version 7.0 and Oracle WebLogic Server versions 11g and 12c;
  • Message Queuing Provider - IBM WebSphere MQ versions 7.0, 7.1;
  • Application Server Operating Systems - Windows 2008 R2, Red Hat Enterprise Linux 6.0 and later.

• The logic and functionality of information exchange with RBS systems for legal entities of the Company BSS - "RBS BS-Client" v.3 and the "CORREQTS" platform has been redesigned.
• The automated workplace (AWS) of the safety officer is implemented.
• The possibility of interaction of external systems with the FRAUD-Analysis system using the SOAP protocol is provided. The implemented functionality will allow the Company's customer banks to choose the method of online interaction of the FRAUD-Analysis system with external systems in accordance with the needs of banks.
• The logging subsystem has been redesigned.

Fraud-Analysis v. 1.5

• Fraud payments checks in the FRAUD-Analysis system have been strengthened by implementing a behavioral model of customers. The behavioral model of clients is designed to identify fraudulent actions committed on behalf of the bank's clients by analyzing changes in the typical actions of clients in the RBS systems . As part of the implementation of the behavioral model, the mechanism of auto-verification of payments in the FRAUD-Analysis system was reorganized, the composition of inspections was redesigned and expanded.
• The composition of specialized industrial software (software) has been expanded, on the basis of which online interaction of the FRAUD-Analysis system with the bank's information systems (ABS, RBS, etc., including with the Company's products - BSS the RBS BS-Client and CORREQTS systems), the most common paid and free software, is provided.

The following providers are supported:

• Progress Software SonicMQ 8.5;
• Apache ActiveMQ 5.5.0;
• JBoss HornetQ 2.2.5.

The online interaction of the FRAUD-Analysis system based on IBM WebSphere MQ 6.0 is expanded by the ability to interact with the bank's information systems (ABS, RBS systems).

The implemented functionality will allow the Company's customer banks to choose the method of online interaction of the FRAUD-Analysis system with external systems in accordance with the needs of banks. The transition to version 1.5.0 of the FRAUD-Analysis system is carried out from versions 1.4, 1.4.100.

Fraud-Analysis v. 1.4

• The "FRAUD-Analysis" system is compatible DBMS Oracle with 10g Release 2 and Oracle 11g Release 2.
• Improved system performance in terms of displaying large amounts of data.
• Improved system performance when working in multi-server mode due to the separation of the entire set of tasks (import of payments, payment processing, upload of payments) between servers.
• A more convenient search and filtering of payment data is provided due to the ability to filter and sort payments by all details placed on the screen. Also, to speed up the process of identifying payments in the FRAUD-Analysis and RBS BS-Client systems, it is possible to search and filter by payment date and time in the RBS system on the bank side.
• Transition to the version of the system "FRAUD-Analysis" 1.4 is carried out from version 1.3 within the framework of the maintenance contract

Fraud-Analysis v. 1.3

• New criteria have been implemented that ensure effective control of payment documents in the context of one organization.
• The ability to set up existing payment limits in the system has been expanded: by payment amount; by the amount of payments for the period; by the number of payments for the period.
• It is possible to restrict the access rights of users to work with payments of specific organizations, or with payments to be executed in specific departments of the bank.
• Recommendations for the implementation of the FRAUD-Analysis system have been developed, describing:

• peculiarities of "FRAUD-Analysis" system interaction with bank information systems (system, RBS ABS); Key principles of payment processing in the FRAUD-Analysis system main measures for implementation of the FRAUD-Analysis system in the bank.

The transition to the new version of the system "FRAUD-Analysis" v. 1.3 is carried out from version 1.2. FRAUD-Analysis is compatible with version "RBS BS-Client" v. 3.17.7 and higher.