Methods for fraud detection

摘要

Method and systems for validating a client user in a secured network are provided. Upon authentication, a user is supplied a login cookie that includes verification data. When requesting access to a secured resource, the verification data is compared to the data in the request to confirm that the requestor is a legitimate user and not a user who has stolen the login cookie.

主权项

1. A computerized-method of validating a client user in a secured network, the method comprising:
receiving, by a first server computing device, a first request from a client to login to a protected domain of the first server, the first request including user login credentials and a first set of verification data, the first set of verification data recorded by the client at the time the login credentials were entered; determining, by the first server computing device, whether the login credentials are recognized; transmitting, by the first server computing device, a first cookie to the client, the first cookie including the login credentials and a second set of verification data, the second set of verification is a subset or derived from the first set of verification data; transmitting, by the first server computing device, a second cookie to the client, the second cookie including a third set of verification data that is sufficient to confirm the first cookie; receiving, by a second server computing device, a request to gain access to a protected resource of the protected domain, the second request including the first cookie and a fourth set of verification data; determining, by the server computing device, whether the request was transmitted by the client associated with the first cookie based on the first cookie and the fourth set of verification data; wherein determining whether the request was transmitted by the client associated with the first cookie further comprises:
determining, by the second server computing device, whether the first cookie passes a first level review; andif the first cookie does not pass a first level review, then:
redirecting, by the second server computing device, the client to the first server computing device;detecting, by the first server computing device, the second cookie is received from the client;determining, by the first server computing device, whether the first cookie passes a second level review based on the first cookie and the second cookie; if the request was transmitted by the client associated with the first cookie, allowing access to the protected resource of the protected domain; and if the request was not transmitted by the client associated with the first cookie, denying access to the protected resource of the protected domain or redirect the user to reenter login credentials.