New capabilities strengthen BehavioSec Behavioral Biometric Platform ahead of PSD2 deadline
BehavioSec has added new capabilities to the BehavioSec Behavioral Biometric Platform ahead of the deadline for PSD2 compliance, including new account fraud detection, a more accurate anomaly detection module, and enhanced mouse recognition.
The European Union’s PSD2 payment security mandate comes into full force on September 14, 2019. To help financial services, fintech, retail, and other customers increase account security while improving user experience, BehavioSec updated its platform with features developed based on customer feedback from large-scale deployments for version 5.1.
“More than exotic malware or devious actors, countless breach headlines and investigative data constantly remind us that the most dangerous threat propelling cybercrime is attackers’ weaponizing the reuse of weak or stolen passwords at Internet scale,” said BehavioSec VP of Products Jordan Blake. “BehavioSec breaks the credential compromise breach cycle by continuously authenticating users upon login, according to unique behavioral biometrics attributes such as typing patterns, touchscreen pressure and device handling. These innately human nuances aren’t for sale on the dark web or easily mimicked by malware, negating attackers’ most comfortable advantages. Today we are introducing new features driving the speed, recognition and performance of BehavioSec’s platform even further for customers and third-party developers. There has never been greater urgency or opportunity to end passwords’ status as the weakest link and turn the tables on cybercriminals’ comfortable techniques.”
The new version compares a new account user’s behavior with the wider population of relevant institutions with the company’s population profiling technology to provide early warning of fraudulent new accounts, according to the announcement. The artificial intelligence-powered Anomaly Detection Module further reduces false positives by learning cases of legitimate use that might otherwise appear suspect, such as when a user regularly connects through a remote access tool, and more sophisticated mouse gesture detection defends web applications against malware attacks which attempt to mimic users’ movements.
BehavioSec says some traditional fraud detection data sources, like user location data, are being made less available by cellular carriers or are being counteracted by new spoofing techniques.
EMA recognized BehavioSec as a top choice for securing enterprise mobile applications earlier this year.
TypingDNA notes in a recent blog post that the European Banking Authority has approved keystroke dynamics and the angle the user holds the device at as behavioral biometrics acceptable as inherence elements for the strong customer authentication standard of PSD2, along with the physical biometrics of fingerprint, retina, and iris scanning, vein and voice recognition, face and hand geometry, and heart rate. The company argues that typing biometrics are the best option because they are more acceptable to different age groups than other modalities and involve less friction for users.