Mastercard Hypes Artificial Intelligence

Mastercard have deployed 'Decision Intelligence' to scrutinise real time transactions. That sounds impressive - is it?

Corporations and politicians share a tendency to say things that are narrowly true, though a lack of context renders the statements misleading. Mastercard are offering a prime example of this in the security arena.

The card brand has rolled out something it calls Decision Intelligence, which it said “uses artificial intelligence technology to help financial institutions increase the accuracy of real-time approvals of genuine transactions and reduce false declines.”

That sounds pretty good. It then elaborated why it saw this as news: “This is the first use of AI being implemented on a global scale directly on the Mastercard network.” It also labels Decision Intelligence as “a radical new approach,” one that “takes a broader view in assessing, scoring and learning from each transaction. That score then enables the card issuer to apply the intelligence to the next transaction.”

Mastercard’s Ajay Bhalla, president of its enterprise risk and security efforts, is even quoted as saying, “We are solving a major consumer pain point of being falsely declined when trying to make a purchase.”

But the “radical approach” of using AI to intelligently assess fraud in real time has been done by providers that include Forter, Signifyd, Smyte, Stripe Radar, Sift Science, Ravelin, Riskified and Feedzai.

Naturally, unlike Mastercard’s technology, all of them look for problems across payment types, not limiting themselves to transactions from one payment card.

And the claim that Mastercard has solved the problem of false declines is really over the top. There are two problems with that, one involving market share and the other involving the data that Mastercard can apply its AI to.

Mastercard does not have a stranglehold on the transactions market, and in fact Visa processes far more transactions. And while there are merchants that get along without accepting American Express, Diner’s Club or Discover, it’s just about impossible to accept Mastercard and not accept Visa.

That means that, even if this Mastercard effort were perfectly effective, merchants would still have to deploy other antifraud measures for every other payment type they accept. So how does a Mastercard-specific approach help them, given that it is limited to a minority of their transactions?

Here’s what one security executive (who wished to remain anonymous and not alienate Mastercard) had to say about Mastercard’s announcement: “There’s nothing new in their technology or its application. More likely, Mastercard is just trying to fix a deeply broken declines problem and is hoping this will help them look better in the eyes of banks when it comes time to renegotiate contracts.” He then tried to imagine what Mastercard would say to those banks: “‘We can help you reduce declines. Look, we have fancy artificial intelligence.’”

The security executive added that the best AI analytics can’t overcome the limitation that the data that Mastercard has access to — transaction data — is quite restricted. Most security firms use a “machine learning model that is informed by all kinds of data, including how users behave on their site, specific order information, device information, user account details, navigation patterns on the merchant’s website, social networking activity, stuff Mastercard has no access to.”

Any embrace of analytics in security is a positive move. Let’s just hope Mastercard doesn’t believe its own hype. It might have to change its tagline to “Mastercard: We’re everywhere context isn’t.”

Computerworld:      Financial Institutions & Cybercrime:

 

« Amazon Is Using AI To Transform Retail
Behavior Analytics Tools For Cyber-Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Lookout

Lookout

Lookout is the data-centric cloud security company that uses a defense-in-depth strategy to address the different stages of a modern cybersecurity attack.

Hodgson Russ

Hodgson Russ

Hodgson Russ is a US business law firm. Practice areas include Privacy, Data Breach & Cybersecurity.

PETRAS IoT Hub

PETRAS IoT Hub

PETRAS is a consortium of 12 research institutions and the world’s largest socio-technical research centre focused on the future implementation of the IoT.

Quick Heal Technologies

Quick Heal Technologies

Quick Heal Technologies is a leading IT security solutions provider focused on endpoint and network security solutions.

Seqrite

Seqrite

Seqrite offers a highly advanced range of enterprise and IT security solutions to protect your organization's most critical data.

Inter-American Cooperation Portal on Cyber-Crime

Inter-American Cooperation Portal on Cyber-Crime

The Inter-American Cooperation Portal on Cyber-Crime was created to facilitate and streamline cooperation and information exchange among government experts from OAS member states.

Axence

Axence

Axence provides professional solutions for the comprehensive management of IT infrastructure for companies and institutions all over the world.

PhishX

PhishX

PhishX is a SaaS platform for security awareness that simulates Cyberthreats, train people, while measure and analysis results, reducing Cybersecurity risks for People and Companies.

Advisera 27001Academy

Advisera 27001Academy

Advisera is a market leader in providing documentation and online support for the implementation of business standards including ISO 27001, ISO 22301 and EU GDPR.

Extreme Networks

Extreme Networks

Since 1996, Extreme has been pushing the boundaries of networking technology, driven by a vision of making it simpler and faster as well as more agile and secure.

AI Spera

AI Spera

AI-Driven Cyber Threat Intelligence Security. AI Spera provides real-time intelligence to empower your security competences in all aspects of the business.

Privasee

Privasee

Make GDPR compliance simple with Privasee. Our software makes it easy to protect your data and ensure you’re compliant with the new regulations.

Summit 7 (S7)

Summit 7 (S7)

Summit 7 is a national leader in cybersecurity, compliance, and managed services for the Aerospace and Defense industry and corporate enterprises.

Next DLP

Next DLP

Next DLP (formerly Jazz Networks) is a leading provider of insider risk and data protection solutions.

Domotz

Domotz

Domotz enables IT teams to monitor and manage their networks remotely, while ensuring that the security and the operational efficiency of their organizations are properly maintained.

Forward Networks

Forward Networks

Forward Networks - transforming networks to be more reliable, agile, and secure.