SlideShare a Scribd company logo

Fraud detection system

B
baladutt

The document outlines the architecture of a fraud detection system developed by Bala Dutt in June 2021, focusing on various transaction types, fraud detection methodologies, and the use of machine learning algorithms for real-time processing. It emphasizes the importance of modular design, ease of integration, and effective information fusion to improve fraud detection capabilities. Additionally, it discusses the implementation of a domain-specific language for simulating scenarios and feedback mechanisms to enhance system performance.

Software
1 of 16
Download to read offline
1
2
3
4
5
Most read
6
7
8
9
10
11
12
13
14
15
16
Fraud Detection System Bala Dutt / June 2021
Agenda Context - From/To PAIR FDS Architecture & FDSP language MASSES & Simulation Language Demo Design Technology/Conclusion/Future Work
From To Large delay txns, online txns by privileged few, a small percentage of fraud Instant txns, sophisticated attacks (OTP stealing), adversarial attacks and ultra-scale, online txns by non-tech savvy people “Write off approach”, after the fact, actor focussed approach Realtime, streaming, online learning Human In the Loop Single algorithm Multiple algorithms, Cold start, Unseen situations, high accuracy Work in silos, difficult to change and integrate Modular, Integrative, easy to experiment & change
Information Fusion Effective Fraud Detection System Actionable Pluggable Processing Responsive Time to Detect Time to improve Easy to understand & Change Online Simulate Transactional Reference Approval Notification Feedback Channels Stream processing Ensemble Online+offline Classifiers Outliers Rule-based Point Sequence History Patterns Features Samples Scope Enrichment
Fraud detector Delivery pipeline ML algo - outlier detectors ML Algo - classifiers Delivery 1 Delivery 2 Delivery ... Flink Kafka Ref 1 Ref 2 SMS - info/alert SMS - otp Push notification Email Block transaction Block user Resource Server 1 Resource Server 2 Resource Server ... Resource Access Event pipeline AccessEvent Resource access Subject Subject Resource details Alerts/Infos Reference Data pipeline Reference Data 1 Reference Data 2 Reference Data ... User Configuration Offline ML Feedback loop Monitoring Grafana.net, Prometheus History Feedback loop Kafka Kafka Rule Based
Intuit Confidential and Proprietary 6 Stream Processing Trigger Enrich Analyze PostProcess Deliver Enrichment Specification Ensemble and pipeline specification Enrichment and presentation specification Stream processing specification Tensorify Feature selection Security (Anonymization etc.) Events processed by swimlanes
Intuit Confidential and Proprietary 7 GitOps Multi-StreamProcessing deployment system StreamProcessing... StreamProcessing Selector SecurityProcessing Enrichment ML PreDeliveryEnrichment ... StreamProcessing 2 StreamProcessing 1 Build process StreamProcessing … Monitoring view StreamProcessing 2 Monitoring view StreamProcessing 1 Monitoring view Virtual view Stream processing language
Pool Simulation - MASSES Subject Subject Pool Resource Resource Actor ActorInstance AI1 AI2 AI3 AI... State Transition Spec Paired is AccessEvent Resource Access Event pipeline ripting language to model scenario
Demo Multiple Stream Processing Scenarios Random Sr Citizen Deny User User moved https://www.youtube.com/watch?v=qvt7pgCnSHU
Implementation https://github.com/fraud-detection-system/Fraud-Detection-System Artifacts Simulator with a DSL (Domain Specific Language) to specify scenarios including feedback Fraud Detection Server - Kafka, Flink based stream processing pipeline Multiple online ML algorithms - classifiers (5) and outlier detectors (5) Multiple Reference data Monitoring
Design
Intuit Confidential and Proprietary 12 Domain model Types of Resources Resource Server Subject User App Performs Action Actions Resource supports Device is a Attributes Attributes Attributes Entity AccessEvent Environment
Actor (good) Txn Amount Payee Description IPAddress Time Browser/Machine Details Type - physical, online Series of Actor (bad) Series of
Intuit Confidential and Proprietary 14 Canonical Data Model Common minimalistic vocabulary Flat attribute model k,v as Strings Values can be keys Logic part of enrichment Type of attribute value Link to reference data Subject Id: 1234 PhysicalLocation: 5678 VirtualLocation: 172.19.21.12 DeviceId: xsfde Resource Id: account AccountId: 5678 BankName: ICICI User Id: 1234 EmailId: a@b.com PhoneNo: 9876 HomeLocation: 5678 HomeCity: Bengaluru PhoneLocation: 23232 Account Id: 5678 Balance:100000 LastTxnTime: Status: Locked|Active RiskScoredEntities Id: 3434 Type: User|Location|PhoneNo Score: Low| Med| High Configuration Id: 1234 Type: User|Account MaxAutoAmount: 1000 Approver: 34345 Subject Id: account PhoneNo: 5678 Action Id: sendSMS text: “alert ...”
History Circular buffer Configuration Size Attributes Save Key Attributes Size Enrichment by diff Attributes to diff Diff mechanism Diff attribute name Scenario Series of txns from Bengaluru One txn from Las Vegas Solution Diff on location
Thank you

More Related Content

PPTX
Introduction to Google Cloud Services / Platforms
Nilanchal
 
PPSX
Apache Flink, AWS Kinesis, Analytics
Araf Karsh Hamid
 
PDF
Apache Spark Introduction
sudhakara st
 
PPTX
ADF Demo_ppt.pptx
vamsytaurus
 
PPTX
Intro to Azure Data Factory v1
Eric Bragas
 
PPTX
Introduction to GCP (Google Cloud Platform)
Pulkit Gupta
 
PDF
Snowflake for Data Engineering
Harald Erb
 
PDF
IaaS, SaaS, PasS : Cloud Computing
Software Park Thailand
 
Introduction to Google Cloud Services / Platforms
Nilanchal
 
Apache Flink, AWS Kinesis, Analytics
Araf Karsh Hamid
 
Apache Spark Introduction
sudhakara st
 
ADF Demo_ppt.pptx
vamsytaurus
 
Intro to Azure Data Factory v1
Eric Bragas
 
Introduction to GCP (Google Cloud Platform)
Pulkit Gupta
 
Snowflake for Data Engineering
Harald Erb
 
IaaS, SaaS, PasS : Cloud Computing
Software Park Thailand
 

What's hot (20)

PPTX
Snowflake Datawarehouse Architecturing
Ishan Bhawantha Hewanayake
 
PPTX
Azure automation
Diego Henrique da Silva
 
PPTX
AWS Cloud trail
zekeLabs Technologies
 
PPTX
Introduction to AWS API Gateway Presentation
Knoldus Inc.
 
PDF
Data Catalog in Denodo Platform 7.0: Creating a Data Marketplace with Data Vi...
Denodo
 
PDF
Introduction to Azure Data Factory
Slava Kokaev
 
PPTX
Cloud computing risks
sripriya78
 
PPTX
Keeping a Secret with HashiCorp Vault
Mitchell Pronschinske
 
PDF
Building an open data platform with apache iceberg
Alluxio, Inc.
 
PDF
A Tour of Google Cloud Platform
Colin Su
 
PPTX
Introduction to Azure Databricks
James Serra
 
PPTX
Databricks Platform.pptx
Alex Ivy
 
PDF
Microservices for Application Modernisation
Ajay Kumar Uppal
 
PDF
End-to-End Spark/TensorFlow/PyTorch Pipelines with Databricks Delta
Databricks
 
PPTX
Cloud security and security architecture
Vladimir Jirasek
 
PDF
Confluent REST Proxy and Schema Registry (Concepts, Architecture, Features)
Kai Wähner
 
PPTX
Aws overview (Amazon Web Services)
Jatinder Randhawa
 
PPT
Application Security
Reggie Niccolo Santos
 
PPTX
Designing modern dw and data lake
punedevscom
 
PDF
Designing ETL Pipelines with Structured Streaming and Delta Lake—How to Archi...
Databricks
 
Snowflake Datawarehouse Architecturing
Ishan Bhawantha Hewanayake
 
Azure automation
Diego Henrique da Silva
 
AWS Cloud trail
zekeLabs Technologies
 
Introduction to AWS API Gateway Presentation
Knoldus Inc.
 
Data Catalog in Denodo Platform 7.0: Creating a Data Marketplace with Data Vi...
Denodo
 
Introduction to Azure Data Factory
Slava Kokaev
 
Cloud computing risks
sripriya78
 
Keeping a Secret with HashiCorp Vault
Mitchell Pronschinske
 
Building an open data platform with apache iceberg
Alluxio, Inc.
 
A Tour of Google Cloud Platform
Colin Su
 
Introduction to Azure Databricks
James Serra
 
Databricks Platform.pptx
Alex Ivy
 
Microservices for Application Modernisation
Ajay Kumar Uppal
 
End-to-End Spark/TensorFlow/PyTorch Pipelines with Databricks Delta
Databricks
 
Cloud security and security architecture
Vladimir Jirasek
 
Confluent REST Proxy and Schema Registry (Concepts, Architecture, Features)
Kai Wähner
 
Aws overview (Amazon Web Services)
Jatinder Randhawa
 
Application Security
Reggie Niccolo Santos
 
Designing modern dw and data lake
punedevscom
 
Designing ETL Pipelines with Structured Streaming and Delta Lake—How to Archi...
Databricks
 
Ad

Similar to Fraud detection system (20)

PPT
The “Predictive” Battlespace: Leveraging the Power of Event-Driven Architect...
Nathaniel Palmer
 
PDF
Apache Kafka vs. Integration Middleware (MQ, ETL, ESB)
Kai Wähner
 
PDF
Apache Kafka vs. Integration Middleware (MQ, ETL, ESB) - Friends, Enemies or ...
confluent
 
PDF
Apache Kafka vs. Traditional Middleware (Kai Waehner, Confluent) Frankfurt 20...
confluent
 
PDF
Confluent Cloud for Apache Kafka® | Google Cloud Next ’19
confluent
 
PPTX
Realtime Detection of DDOS attacks using Apache Spark and MLLib
Ryan Bosshart
 
PPTX
A Decentralised Platform for Provenance Management of Machine Learning Softwa...
CREST
 
PDF
Io t data streaming
ratthaslip ranokphanuwat
 
PPTX
SOA patterns
Arnon Rotem-Gal-Oz
 
ODP
Cartographer, or Building A Next Generation Management Framework
ansmtug
 
PDF
Apache Kafka as Event Streaming Platform for Microservice Architectures
Kai Wähner
 
PPTX
Corporate Security Issues and countering them using Unified Threat Management...
Rishabh Dangwal
 
PDF
Web application security - Course overview
Satish b
 
PDF
Fluturas presentation @ Big Data Conclave
fluturads
 
PPTX
Event mesh api meetup AsyncAPI Singapore
Phil Scanlon
 
PPTX
Containerless in the Cloud with AWS Lambda
Ryan Cuprak
 
PDF
Apidays Paris 2023 - API Security Challenges for Cloud-native Software Archit...
apidays
 
PDF
MLOps journey at Swisscom: AI Use Cases, Architecture and Future Vision
BATbern
 
PDF
Stream Processing – Concepts and Frameworks
Guido Schmutz
 
PPTX
What's new in​ CEHv11?
EC-Council
 
The “Predictive” Battlespace: Leveraging the Power of Event-Driven Architect...
Nathaniel Palmer
 
Apache Kafka vs. Integration Middleware (MQ, ETL, ESB)
Kai Wähner
 
Apache Kafka vs. Integration Middleware (MQ, ETL, ESB) - Friends, Enemies or ...
confluent
 
Apache Kafka vs. Traditional Middleware (Kai Waehner, Confluent) Frankfurt 20...
confluent
 
Confluent Cloud for Apache Kafka® | Google Cloud Next ’19
confluent
 
Realtime Detection of DDOS attacks using Apache Spark and MLLib
Ryan Bosshart
 
A Decentralised Platform for Provenance Management of Machine Learning Softwa...
CREST
 
Io t data streaming
ratthaslip ranokphanuwat
 
SOA patterns
Arnon Rotem-Gal-Oz
 
Cartographer, or Building A Next Generation Management Framework
ansmtug
 
Apache Kafka as Event Streaming Platform for Microservice Architectures
Kai Wähner
 
Corporate Security Issues and countering them using Unified Threat Management...
Rishabh Dangwal
 
Web application security - Course overview
Satish b
 
Fluturas presentation @ Big Data Conclave
fluturads
 
Event mesh api meetup AsyncAPI Singapore
Phil Scanlon
 
Containerless in the Cloud with AWS Lambda
Ryan Cuprak
 
Apidays Paris 2023 - API Security Challenges for Cloud-native Software Archit...
apidays
 
MLOps journey at Swisscom: AI Use Cases, Architecture and Future Vision
BATbern
 
Stream Processing – Concepts and Frameworks
Guido Schmutz
 
What's new in​ CEHv11?
EC-Council
 
Ad

Recently uploaded (20)

PDF
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
PDF
iTop VPN 6.5.0 Crack + License Key 2025 (Premium Version)
youngle786g
 
PDF
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
PPTX
Computer Software and OS of computer science of grade 11.pptx
GauravDahal9
 
PDF
Adobe Premiere Pro 2025 (v24.5.0.057) Crack free
ghrom2211g
 
PPTX
Why Generative AI is the Future of Content, Code & Creativity?
Webuters Technologies Pvt. Ltd
 
PDF
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
PDF
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
PDF
CCleaner Pro 6.38.11537 Crack Final Latest Version 2025
itskinga12
 
PDF
Download FL Studio Crack Latest version 2025 ?
ghrom2211g
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PDF
Digital Systems & Binary Numbers (comprehensive )
fyfhqfhtv2
 
PPTX
Log360_SIEM_Solutions Overview PPT_Feb 2020.pptx
nonameist3434
 
PPTX
history of c programming in notes for students .pptx
Vijayakumari829030
 
PDF
17 Powerful Integrations Your Next-Gen MLM Software Needs
ventaforcemlmsoftwar
 
PDF
Complete Guide to Website Development in Malaysia for SMEs
Asian Business Services & Technologies
 
PPTX
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
PPTX
Transform Your Business with a Software ERP System
Canada Software Company
 
PDF
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
iTop VPN 6.5.0 Crack + License Key 2025 (Premium Version)
youngle786g
 
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
Computer Software and OS of computer science of grade 11.pptx
GauravDahal9
 
Adobe Premiere Pro 2025 (v24.5.0.057) Crack free
ghrom2211g
 
Why Generative AI is the Future of Content, Code & Creativity?
Webuters Technologies Pvt. Ltd
 
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
CCleaner Pro 6.38.11537 Crack Final Latest Version 2025
itskinga12
 
Download FL Studio Crack Latest version 2025 ?
ghrom2211g
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
Digital Systems & Binary Numbers (comprehensive )
fyfhqfhtv2
 
Log360_SIEM_Solutions Overview PPT_Feb 2020.pptx
nonameist3434
 
history of c programming in notes for students .pptx
Vijayakumari829030
 
17 Powerful Integrations Your Next-Gen MLM Software Needs
ventaforcemlmsoftwar
 
Complete Guide to Website Development in Malaysia for SMEs
Asian Business Services & Technologies
 
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
Transform Your Business with a Software ERP System
Canada Software Company
 
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 

Fraud detection system

  • 1. Fraud Detection System Bala Dutt / June 2021
  • 2. Agenda Context - From/To PAIR FDS Architecture & FDSP language MASSES & Simulation Language Demo Design Technology/Conclusion/Future Work
  • 3. From To Large delay txns, online txns by privileged few, a small percentage of fraud Instant txns, sophisticated attacks (OTP stealing), adversarial attacks and ultra-scale, online txns by non-tech savvy people “Write off approach”, after the fact, actor focussed approach Realtime, streaming, online learning Human In the Loop Single algorithm Multiple algorithms, Cold start, Unseen situations, high accuracy Work in silos, difficult to change and integrate Modular, Integrative, easy to experiment & change
  • 4. Information Fusion Effective Fraud Detection System Actionable Pluggable Processing Responsive Time to Detect Time to improve Easy to understand & Change Online Simulate Transactional Reference Approval Notification Feedback Channels Stream processing Ensemble Online+offline Classifiers Outliers Rule-based Point Sequence History Patterns Features Samples Scope Enrichment
  • 5. Fraud detector Delivery pipeline ML algo - outlier detectors ML Algo - classifiers Delivery 1 Delivery 2 Delivery ... Flink Kafka Ref 1 Ref 2 SMS - info/alert SMS - otp Push notification Email Block transaction Block user Resource Server 1 Resource Server 2 Resource Server ... Resource Access Event pipeline AccessEvent Resource access Subject Subject Resource details Alerts/Infos Reference Data pipeline Reference Data 1 Reference Data 2 Reference Data ... User Configuration Offline ML Feedback loop Monitoring Grafana.net, Prometheus History Feedback loop Kafka Kafka Rule Based
  • 6. Intuit Confidential and Proprietary 6 Stream Processing Trigger Enrich Analyze PostProcess Deliver Enrichment Specification Ensemble and pipeline specification Enrichment and presentation specification Stream processing specification Tensorify Feature selection Security (Anonymization etc.) Events processed by swimlanes
  • 7. Intuit Confidential and Proprietary 7 GitOps Multi-StreamProcessing deployment system StreamProcessing... StreamProcessing Selector SecurityProcessing Enrichment ML PreDeliveryEnrichment ... StreamProcessing 2 StreamProcessing 1 Build process StreamProcessing … Monitoring view StreamProcessing 2 Monitoring view StreamProcessing 1 Monitoring view Virtual view Stream processing language
  • 8. Pool Simulation - MASSES Subject Subject Pool Resource Resource Actor ActorInstance AI1 AI2 AI3 AI... State Transition Spec Paired is AccessEvent Resource Access Event pipeline ripting language to model scenario
  • 9. Demo Multiple Stream Processing Scenarios Random Sr Citizen Deny User User moved https://www.youtube.com/watch?v=qvt7pgCnSHU
  • 10. Implementation https://github.com/fraud-detection-system/Fraud-Detection-System Artifacts Simulator with a DSL (Domain Specific Language) to specify scenarios including feedback Fraud Detection Server - Kafka, Flink based stream processing pipeline Multiple online ML algorithms - classifiers (5) and outlier detectors (5) Multiple Reference data Monitoring
  • 12. Intuit Confidential and Proprietary 12 Domain model Types of Resources Resource Server Subject User App Performs Action Actions Resource supports Device is a Attributes Attributes Attributes Entity AccessEvent Environment
  • 14. Intuit Confidential and Proprietary 14 Canonical Data Model Common minimalistic vocabulary Flat attribute model k,v as Strings Values can be keys Logic part of enrichment Type of attribute value Link to reference data Subject Id: 1234 PhysicalLocation: 5678 VirtualLocation: 172.19.21.12 DeviceId: xsfde Resource Id: account AccountId: 5678 BankName: ICICI User Id: 1234 EmailId: [email protected] PhoneNo: 9876 HomeLocation: 5678 HomeCity: Bengaluru PhoneLocation: 23232 Account Id: 5678 Balance:100000 LastTxnTime: Status: Locked|Active RiskScoredEntities Id: 3434 Type: User|Location|PhoneNo Score: Low| Med| High Configuration Id: 1234 Type: User|Account MaxAutoAmount: 1000 Approver: 34345 Subject Id: account PhoneNo: 5678 Action Id: sendSMS text: “alert ...”
  • 15. History Circular buffer Configuration Size Attributes Save Key Attributes Size Enrichment by diff Attributes to diff Diff mechanism Diff attribute name Scenario Series of txns from Bengaluru One txn from Las Vegas Solution Diff on location