Abstract : Every year, e-service providers report losses of billions of dollars due to fraud. Despite their huge efforts in implementing sophisticated fraud detection systems on top of their e-services, fraud effects seem to be rather increasing than decreasing. As a result, fraud risk assessment has been introduced as a fundamental part of e-service providers’ prevention strategies. In particular, identifying potential fraud risks and estimating their impacts are two essential requirements to prevent fraud risks while developing and delivering e-services to customers. In this paper, we show that fraud patterns can be used to perform fraud risk assessment. We analysed real fraud incidents from an e-service domain – Telecom, and identified six fraud patterns, which are recurrently used to commit fraud. We then use those patterns in the same scenario in order to demonstrate their applicability to fraud risk assessment.
Sabrina De Capitani di Vimercati; Fabio Martinelli. 32th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), May 2017, Rome, Italy. Springer International Publishing, IFIP Advances in Information and Communication Technology, AICT-502, pp.553-567, 2017, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-58469-0_37〉
https://hal.inria.fr/hal-01649009
Contributeur : Hal Ifip
<>
Soumis le : lundi 27 novembre 2017 - 10:31:55
Dernière modification le : lundi 27 novembre 2017 - 10:34:04
Ahmed Yesuf, Jetzabel Serna-Olvera, Kai Rannenberg. Using Fraud Patterns for Fraud Risk Assessment of E-services. Sabrina De Capitani di Vimercati; Fabio Martinelli. 32th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), May 2017, Rome, Italy. Springer International Publishing, IFIP Advances in Information and Communication Technology, AICT-502, pp.553-567, 2017, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-58469-0_37〉. 〈hal-01649009〉
