Mastercard Hypes Artificial Intelligence

Uploaded on 2016-12-14 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial, TECHNOLOGY-Key Areas-Artificial Intelligence, TECHNOLOGY--Developments

Mastercard have deployed 'Decision Intelligence' to scrutinise real time transactions. That sounds impressive - is it?

Corporations and politicians share a tendency to say things that are narrowly true, though a lack of context renders the statements misleading. Mastercard are offering a prime example of this in the security arena.

The card brand has rolled out something it calls Decision Intelligence, which it said “uses artificial intelligence technology to help financial institutions increase the accuracy of real-time approvals of genuine transactions and reduce false declines.”

That sounds pretty good. It then elaborated why it saw this as news: “This is the first use of AI being implemented on a global scale directly on the Mastercard network.” It also labels Decision Intelligence as “a radical new approach,” one that “takes a broader view in assessing, scoring and learning from each transaction. That score then enables the card issuer to apply the intelligence to the next transaction.”

Mastercard’s Ajay Bhalla, president of its enterprise risk and security efforts, is even quoted as saying, “We are solving a major consumer pain point of being falsely declined when trying to make a purchase.”

But the “radical approach” of using AI to intelligently assess fraud in real time has been done by providers that include Forter, Signifyd, Smyte, Stripe Radar, Sift Science, Ravelin, Riskified and Feedzai.

Naturally, unlike Mastercard’s technology, all of them look for problems across payment types, not limiting themselves to transactions from one payment card.

And the claim that Mastercard has solved the problem of false declines is really over the top. There are two problems with that, one involving market share and the other involving the data that Mastercard can apply its AI to.

Mastercard does not have a stranglehold on the transactions market, and in fact Visa processes far more transactions. And while there are merchants that get along without accepting American Express, Diner’s Club or Discover, it’s just about impossible to accept Mastercard and not accept Visa.

That means that, even if this Mastercard effort were perfectly effective, merchants would still have to deploy other antifraud measures for every other payment type they accept. So how does a Mastercard-specific approach help them, given that it is limited to a minority of their transactions?

Here’s what one security executive (who wished to remain anonymous and not alienate Mastercard) had to say about Mastercard’s announcement: “There’s nothing new in their technology or its application. More likely, Mastercard is just trying to fix a deeply broken declines problem and is hoping this will help them look better in the eyes of banks when it comes time to renegotiate contracts.” He then tried to imagine what Mastercard would say to those banks: “‘We can help you reduce declines. Look, we have fancy artificial intelligence.’”

The security executive added that the best AI analytics can’t overcome the limitation that the data that Mastercard has access to — transaction data — is quite restricted. Most security firms use a “machine learning model that is informed by all kinds of data, including how users behave on their site, specific order information, device information, user account details, navigation patterns on the merchant’s website, social networking activity, stuff Mastercard has no access to.”

Any embrace of analytics in security is a positive move. Let’s just hope Mastercard doesn’t believe its own hype. It might have to change its tagline to “Mastercard: We’re everywhere context isn’t.”

Computerworld:      Financial Institutions & Cybercrime:

 

« Amazon Is Using AI To Transform Retail
Behavior Analytics Tools For Cyber-Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Centre for International Governance Innovation (CIGI)

Centre for International Governance Innovation (CIGI)

CIGI research areas include Conflict Management & Security which encompass cyber security and cyber warfare.

OCERT

OCERT

OCERT is the National Computer Emergency Response Team of Oman.

General Dynamics Information Technology (GDIT)

General Dynamics Information Technology (GDIT)

General Dynamics IT delivers cyber security services to defend critical information and infrastructure.

Internet Storm Center (ISC)

Internet Storm Center (ISC)

ISC provides a free analysis and warning service to thousands of Internet users and organizations, and is actively working with ISPs to fight back against the most malicious attackers.

Bunifu Technologies

Bunifu Technologies

Bunifu Technologies is an Information Security and Custom Software Development Company.

ecsec

ecsec

ecsec is a specialized vendor of security solutions including information security management, smart card technology, identity management, cloud computing and electronic signature technology.

LaoCERT

LaoCERT

LaoCERT is the national Computer Incident Response Team for Laos.

Stamus Networks

Stamus Networks

Stamus Networks offers Scirius Security Platform solutions that marry real-time network traffic data with enhanced Suricata intrusion detection (IDS) and an advanced analytics engine.

TrueFort

TrueFort

TrueFort take an application-first approach that offers comprehensive protection for real-time visibility and analysis, protection and better communication across business, IT, and security teams.

Client Solution Architects (CSA)

Client Solution Architects (CSA)

Client Solution Architects (CSA) is a leading digital transformation consulting firm focused on the U.S. Defense Department and all U.S. Federal enterprise information technology service areas.

The PenTesting Company

The PenTesting Company

The PenTesting Company is owned and operated by offensive security professionals. Penetration Testing is essentially all we do.

ECS Ethiopia

ECS Ethiopia

ECS Ethiopia provides Ethiopia’s leading institutions with top cyber-security expertise and technology to enable them to overcome risks and market barriers enabling them to grow their business.

GoPlus Security

GoPlus Security

GoPlus is working as the "security infrastructure" for web3, by providing open, permissionless, user-driven Security Services.

Delta Partners

Delta Partners

Delta Partners is a venture capital firm investing in Ireland and the United Kingdom with a strong focus on early stage technology companies.

Anzen Technology Systems

Anzen Technology Systems

Anzen create software solutions which allows organisations to utilize the public cloud for sensitive or classified information, whilst increasing data security and retaining data sovereignty.

Algoritha

Algoritha

Algoritha is a pioneering entity in the realm of security and forensic services.