axn

The Attribute Exchange Network (AXN) Developer Hub

Welcome to the AXN developer hub. You'll find comprehensive guides and documentation to help you start working with AXN as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started    

Assertion List

Assertions are the test results provided by Attribute Providers (APs) on the Attribute Exchange Network (AXN). Below are the descriptions of each.

You will notice some assertions are prefixed with "test." and some are "link.". We chose this naming convention to distinguish between atomic tests (test.*) and tests that link 2-or-more pieces of information. Links are stronger forms of trust building and tests provide vital about individual pieces of information.
Example 1: test.age18OrOver checks if the date-of-birth provided is >=18 years old.
Example 2: link.phone_lastName checks if the last name provided matches the last name of the owner of the phone number provided

Assertion Description Possible Values
test.emailIsValid The subject's email has been verified as a real address that is currently accepting mail. pass/fail/unverified
test.emailIsSafe The subject's email is a disposable email from a temporary account pass/fail/unverified
test.driversLicenseVerified The subject's Driver's License has been authenticated pass/fail/unverified
link.dOB_driversLicense The subject's Date-of-Birth matches that on the input Driver's License pass/fail/unverified
link.firstName_driversLicense The subject's first matches that on the input Driver's License pass/fail/unverified
link.middleName_driversLicense The subject's middle name matches that on the input Driver's License pass/fail/unverified
link.city_driversLicense The subject's city matches that on the input Driver's License pass/fail/unverified
link.state_driversLicense The subject's state matches that on the input Driver's License pass/fail/unverified
link.zip_driversLicense The subject's postal code matches that on the input Driver's License pass/fail/unverified
link.country_driversLicense The subject's country matches that on the input Driver's License pass/fail/unverified
test.driversLicenseBarcodeVerified The subject's Driver's License barcode has been verified pass/fail/unverified
link.driversLicenseFront_driversLicenseBack The subject's Driver's License front picture matches the back pass/fail/unverified
link.companyName_companyAddress A company with the provided name exists at the provided address. pass/fail/unverified
link.companyName_phone A company with the provided name is registered to the provided company phone. pass/fail/unverified
link.companyName_email A company with the provided name is registered to the provided company email. pass/fail/unverified
test.companyDomainVerified The provided company email has been successfully associated with a DUNS registered company. pass/fail/unverified
test.device The provided device phone number has passed an OTP check. pass/fail/unverified
link.email_user The provided email has passed an OTP check.
Assertion
Description

test.nameAgeGTE30d

Checks if an (optionally) passed Name has been registered in threatmetrix for <= 30 days (Not currently in use)

test.emailAgeGTE30d

Checks if an (optionally) passed Email has been registered in threatmetrix for <= 30 days (Not currently in use)

test.addressAgeGTE30d

Checks if an (optionally) passed Address has been registered in threatmetrix for <= 30 days (Not currently in use)

test.telephoneAgeGTE30d

Checks if an (optionally) passed Phone # has been registered in threatmetrix for <= 30 days (Not currently in use)

test.exactIDAgeGTE7d

ExactID is threatmetrix's device identifier that uses persistent markers to ID the device (cookies, Adobe Flash LSO, HTML5 Persistent markers, and Silverlight cookies). This test checks the tenure of a device by examining its persistent markers. The exhaustive list is proprietary but you can read more here: https://kb.threatmetrix.com/index.php?View=entry&EntryID=1276

test.smartIDAgeGTE7d

SmartID is threametrix's device identifier that uses device attributes to ID the device (screen resolution, device name, flash_guid etc). The exhaustive list is proprietary but you can read more here: https://kb.threatmetrix.com/index.php?View=entry&EntryID=1276

test.lte3CredentialsDevice7d

Checks if this Exact ID has logged in > 3 times today

test.expectedLanguage

Checks if the language set in the browser does not match the language expected for the device's location

test.credentialLTE500mi1hr

Checks if the device's True IP has exceeded geophysical limitations

link.addressCountry_TrueGeoCountry

Check the given address against the device's geo location (requires location services)

link.timeZone_TrueGeo

Checks the time zone of the device against the device's geo location time zone (requires location services)

test.trueIPLTE500miInputIP

Checks if an (optionally) passed IP is >= 500 miles from the device's IP (Not currently in use)

blacklist.email

Check if the (optionally) passed Email is blacklisted (list is managed manually) (Not currently in use)

blacklist.telephone

Check if the (optionally) passed Phone # is blacklisted (list is managed manually) (Not currently in use)

blacklist.ip

Check if the device's IP is blacklisted (list is managed manually) (Not currently in use)

blacklist.device

Check if the device's ExactID or SmartID is blacklisted (list is managed manually)

blacklist.ofacIP

Check if the (optionally) passed IP, DNS IP, Proxy IP or True IP is from a country US-government blacklist (list is managed manually) (Not currently in use). List as of 04/12/2019: Albania,Bosnia and Herzegovina,Bulgaria,Montenegro,Kosovo,Macedonia, the Former Yugoslav Republic of,Belarus,Democratic Republic of the Congo,Cote d'Ivoire,Cuba,Iraq,Iran,Korea, Democratic People's Republic of,Liberia,Sudan,Syrian Arab Republic,Zimbabwe

detect.browserAnomaly

Checks if a device's screen resolutions has changed > 4 times per Day, if the screen Color Depth is unusually low, if the flash Browser Language does not match the device's expected language or if cookie copying is suspected

detect.unusualActivity

Checks if the user spends <.2 seconds on the page or if the "system state" (last reboot date) has changed more than 2 times in the last hour. The exhaustive list is proprietary but you can read more here https://kb.threatmetrix.com/index.php?View=entry&EntryID=1225

detect.tmxDeviceTrustTag12mo

A Trust tag is an ID that consists of the user's device ID and credential. A tag can be created AFTER a successful verification and re-used for future logins to greatly improve (+70) trust score. Trust tags are not used by default.

detect.malware

"Detects harmful malware by using the following tactics:
Honeypot - Passive technology designed to bait malware into attempting web injections
Page Fingerprinting – Active monitoring to identify modified code running in browser
Targeted Malware – Identifies specific markers associated with targeted threats
Storage Monitoring – Looks for malware indicators dropped on the local machine
Application Reputation (Android SDK only) – Identifies nefarious and/or malicious applications
Application Integrity (iOS + Android SDK) – Identifies modified versions of ‘real’ applications
RAT / Remote Desktop – Monitors for remote access trojans being used on a local machine
Biometrics for Bot Detection – Examines user behavioral activity to identify bots
Proxy Piercing – Designed to identify the true IP address of a device hidden behind a proxy".

List of malware that ThreatMetrix is effective at finding: Zeus, Ramnit, Gootkit, Cridex, Dridex, Dyre, Neverquest, Tinba, Trickbot, ATS_

detect.aggregator

Detects if the device is coming from an aggregator (ex. Mint attempting to log in on a customer's behalf)

detect.tor

Detects if device is routed from the TOR network

detect.torNode

Detects if device's IP is a tor exit node

detect.vpn

Detects if device is using a VPN

detect.proxyHidden

Detects if the device is using a proxy with "hidden" proxy type. This is the most risky proxy

detect.proxyAnonymous

Detects if the user is using a proxy with "anonymous" proxy type. An anonymous proxy does not send your real IP address in the HTTP_X_FORWARDED_FOR header, instead it submits the IP address of the proxy or is just blank.
The HTTP_VIA header is sent with a transparent proxy, also revealing that you are using a proxy server.

detect.proxyOpenTransparent

Detects if the user is using a proxy with "open" proxy type. This is the least risky proxy. A transparent proxy sends your real IP address in the HTTP_X_FORWARDED_FOR header, this means a website that does not only determine your REMOTE_ADDR but also check for specific proxy headers will still know your real IP address.

test.lte3ProxyToday

Detects if the ExactID has changed Proxy > 3 times in 1 day

link.proxyGeo_TrueGeo

"Detects if this device is connecting through a proxy server that didn’t
match the devices geo-location (requires location services)"

link.proxyOrg_TrueOrg

"Detects if the Proxy information and True ISP information for this
source do not match"

link.proxyISP_TrueISP

"Detects if the device is connecting through a proxy server that
doesn’t match the true IP address of the device"

link.address_candidate

Deprecated

link.dob_candidate

Deprecated

link.firstName_candidate

Deprecated

link.fullName_address

A person with the provided full name lives at the provided address.

link.fullName_candidate

Deprecated

link.fullName_phone

Check to ensure full name provided matches the full name on the registered phone

link.lastName_address

A person with the provided last name lives at the provided address

link.lastName_candidate

Deprecated

link.lastName_DOB

Deprecated

link.lastName_YOB

Deprecated

link.phone_candidate

Deprecated

link.phone_lastName

TeleSign check to ensure the last name provided matches the full name on the registered phone

link.ssn_candidate

Deprecated

link.ssn4_candidate

Deprecated

test.address_Is_Current

The address given is the most recent address for this person

test.address90DaysOld

Address provided was first reported for the consumer within the last 90 days

test.addressIsBusiness

Address provided is registered as a business address

test.addressIsPOBox

Address provided is registered as a PO box address

test.addressIsResidential

Address provided is registered as a Residential Address

test.addressMatchesPhone

Address provided matches the address registered to the phone number provided

link.address_SSN

The SSN9 given matches the address given

test.age18OrOver

Date of birth provided is >= 18 years old

test.candidateNoOFACMatchToNameAndDOB

Check if there is an OFAC match to the provided name and dob (match = fail)

test.candidateNoOFACMatchToNameAndSSN

Check if there is an OFAC match to the provided name and ssn (match = fail)

test.candidateNoOFACMatchToNameSSNAndDOB

Check if there is an OFAC match to the provided name, ssn and dob (match = fail)

test.candidateNoOFACMatchToSSN

Check if there is an OFAC match to the provided ssn (match = fail)

test.candidateNoOFACMatchToSSNAndDOB

Check if there is an OFAC match to the provided ssn and date of birth (match = fail)

link.dob_SSN9

The date of birth given matches the SSN9 given

test.fileOneAddressMatch

The address passed matches one of the last 3 addresses that File One has for this person

test.fraudulentActivityAddress

Check if the provided address has been previously linked to fraud

link.fullName_SSN9

The full name given matches the SSN9 given

test.noAddressConflicts

The address given is the most recent address for this person according to their credit file

link.ssn_fullName_address

The SSN9 given matches the full name and address given

test.ssn4AgeMatches

The provided DOB matches the DOB from the SSN4

test.ssn4IssueDateVerified

The provided SSN4 has a verified issue date

test.ssn4MatchesNoOthers

The provided SSN4 and other data points are collectively unlikely to match any other SSN4

test.ssn4NotDeceased

The SSN4 is not deceased

test.ssnIssueDateVerified

The issue date on the SSN4 can be verified

test.ssnMatchesNoOthers

The provided SSN and other data points are collectively unlikely to match any other SSN

test.ssnNotDeceased

The SSN is not deceased

test.validSSN4Format

The format of the SSN4 is valid

test.validSsnFormat

The format of the SSN is valid

Assertion List


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.