2009
Table Of Contents
- Payflow Link Fraud Protection Services User’s Guide
- Contents
- Preface
- Introduction
- How Fraud Protection Services Protect You
- Configuring Payflow Link
- Integrating Your Web Site with Payflow Link (Basic Integration)
- Integrating Your Web Site with Payflow Link (Advanced Integration)
- Testing Payflow Link
- Activating Payflow Link
- Managing Payflow Link
- Assessing Transactions that Triggered Filters
- Integrating TeleCheck Transactions
- Transaction Responses
- Submitting Transaction Data to the Payflow Link Server
- About the Confirmation Email Messages
- Payflow Link Transaction Types
- Frequently Asked Questions
- Index
Fraud Filter Reference
High-risk Address Filters
E
94 Fraud Protection Services User’s Guide
Email Service Provider Risk List Match Filter
What does the filter do?
This filter compares the e-mail service provider used by the customer against a list of high-risk
e-mail service providers.
NOTE: Fraudsters most often use free services at which they do not need to provide traceable
billing information. (Free services are also popular among legitimate shoppers—
because they are free.)
It is therefore a good practice to check whether the billing name appears in some form
in the e-mail address. For example, Tina Johnson should have an e-mail address of
TinaJohnson@hotmail.com or Johnson42@hotmail.com, or some similar variant. Such
an e-mail address is less suspicious than xy12@hotmail.com.
The specified action is taken whenever the e-mail service provider is found in the risk list.
How does the filter protect me?
Online merchants rarely talk to their customers. The customer’s e-mail address is a critical
communications channel between the merchant and customer. For example, e-mail is often
used to confirm a purchase and to notify the customer that shipment has been made.
It is therefore important for merchants to determine how reliably the e-mail address is tied to
the identity of the customer. Some e-mail service providers make it especially easy to open and
close e-mail accounts without ever providing personal information, enabling fraudsters to use
false identities to cover their tracks.
You should examine any transaction in which a high-risk e-mail service provider is involved.
Geo-location Failure Filter
What does the filter do?
This filter compares the IP address of the customer’s computer (captured in real-time when the
transaction is submitted) and compares its geographical location to the billing and shipping
addresses. IP (Internet protocol) addresses are unique identifiers for computers that can often
be mapped to a specific city or area code.
The specified action is taken whenever the IP address, shipping address, and billing address do
not fall within a 100 mile radius. If you provide only one physical address (billing or shipping
address), then the filter triggers when the distance between the IP address and the address that
you provided is greater than 100 miles.
NOTE: Gift purchases shipped far from the billing address will trigger the filter.
Every effort has been made to ensure that IP address mapping is accurate and
up-to-date. Given the nature of the Internet’s architecture, however, some Internet
Service Providers use data centers far from the customers being serviced. In addition, as
described in the IP Address Risk List Match filter, IP addresses can change
dynamically. For these reasons, treat this filter as an indicator of suspicious activity, not
as a definitive result.