US 9,813,446 B2
Systems and methods for matching and scoring sameness
Christopher Everett Bailey, Langley (CA); Randy Lukashuk, Errington (CA); and Gary Wayne Richardson, Port Moody (CA)
Assigned to NuData Security Inc., Vancouver (CA)
Filed by NuData Security Inc., Vancouver (CA)
Filed on Sep. 4, 2016, as Appl. No. 15/256,612.
Claims priority of provisional application 62/214,969, filed on Sep. 5, 2015.
Prior Publication US 2017/0070524 A1, Mar. 9, 2017
Int. Cl. H04L 29/06 (2006.01); H04L 29/08 (2006.01); G06F 17/30 (2006.01); H04L 12/24 (2006.01); G06F 21/60 (2013.01); G06F 7/08 (2006.01); H04L 12/26 (2006.01)
CPC H04L 63/1466 (2013.01) [G06F 7/08 (2013.01); G06F 17/3033 (2013.01); G06F 17/3053 (2013.01); G06F 17/30598 (2013.01); G06F 17/30867 (2013.01); G06F 21/602 (2013.01); H04L 41/20 (2013.01); H04L 43/12 (2013.01); H04L 43/16 (2013.01); H04L 63/1416 (2013.01); H04L 63/1425 (2013.01); H04L 67/02 (2013.01); H04L 67/303 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A computer-implemented method for analyzing a first web site or mobile device app interaction, the method comprising acts of:
identifying a plurality of first-degree anchor values from the first web site or mobile device app interaction, wherein the plurality of first-degree anchor values comprise a first-degree network address X and a first degree anchor value Y, wherein the first-degree anchor value Y is of an anchor type selected from a group consisting of: account identifier, email address, phone number, credit card number, location, device characteristic, and device identifier;
accessing a profile of the first-degree network address X, wherein:
the profile of the first-degree network address X comprises a plurality of sets of second-degree anchor values; and
the plurality of sets of second-degree anchor values comprises a set of one or more second-degree anchor values of the same anchor type as the first-degree anchor value Y;
generating an association score indicative of an association among the plurality of first-degree anchor values identified from the first web site or mobile device app interaction, based at least in part on an association between the first-degree network address X and the first-degree anchor value Y, wherein the association between the first-degree network address X and the first-degree anchor value Y is analyzed at least in part by:
determining whether the first-degree anchor value Y appears as a second-degree anchor value in the set of second-degree anchor values in the profile of the first-degree network address X; and
using information stored in the profile of the first-degree network address X to determine how frequently the first-degree anchor value Y was previously observed from a same digital interaction as the first-degree network address X;
determining, based on the association score, whether to perform additional analysis; and
in response to determining that additional analysis is to be performed:
collecting additional data from the web site or mobile device app interaction; and
displaying, via a backend user interface, a risk assessment report to an operator of a web site or mobile device app via which the web site or mobile device app interaction is conducted, wherein the risk assessment report is based on a result of analyzing the additional data collected from the web site or mobile device app interaction.