Assertion List
Assertions are the test results provided by Attribute Providers (APs) on the Attribute Exchange Network (AXN). Below are the descriptions of each.
You will notice some assertions are prefixed with "test." and some are "link.". We chose this naming convention to distinguish between atomic tests (test.*) and tests that link 2-or-more pieces of information. Links are stronger forms of trust building and tests provide vital about individual pieces of information.
Example 1: test.age18OrOver checks if the date-of-birth provided is >=18 years old.
Example 2: link.phone_lastName checks if the last name provided matches the last name of the owner of the phone number provided
| Assertion | Description | Possible Values |
|---|---|---|
| test.emailIsValid | The subject's email has been verified as a real address that is currently accepting mail. | pass/fail/unverified |
| test.emailIsSafe | The subject's email is a disposable email from a temporary account | pass/fail/unverified |
| test.driversLicenseVerified | The subject's Driver's License has been authenticated | pass/fail/unverified |
| link.dOB_driversLicense | The subject's Date-of-Birth matches that on the input Driver's License | pass/fail/unverified |
| link.firstName_driversLicense | The subject's first matches that on the input Driver's License | pass/fail/unverified |
| link.middleName_driversLicense | The subject's middle name matches that on the input Driver's License | pass/fail/unverified |
| link.city_driversLicense | The subject's city matches that on the input Driver's License | pass/fail/unverified |
| link.state_driversLicense | The subject's state matches that on the input Driver's License | pass/fail/unverified |
| link.zip_driversLicense | The subject's postal code matches that on the input Driver's License | pass/fail/unverified |
| link.country_driversLicense | The subject's country matches that on the input Driver's License | pass/fail/unverified |
| test.driversLicenseBarcodeVerified | The subject's Driver's License barcode has been verified | pass/fail/unverified |
| link.driversLicenseFront_driversLicenseBack | The subject's Driver's License front picture matches the back | pass/fail/unverified |
| link.companyName_companyAddress | A company with the provided name exists at the provided address. | pass/fail/unverified |
| link.companyName_phone | A company with the provided name is registered to the provided company phone. | pass/fail/unverified |
| link.companyName_email | A company with the provided name is registered to the provided company email. | pass/fail/unverified |
| test.companyDomainVerified | The provided company email has been successfully associated with a DUNS registered company. | pass/fail/unverified |
| test.device | The provided device phone number has passed an OTP check. | pass/fail/unverified |
| link.email_user | The provided email has passed an OTP check. |
| Assertion | Description |
|---|---|
| test.nameAgeGTE30d | Checks if an (optionally) passed Name has been registered in threatmetrix for <= 30 days (Not currently in use) |
| test.emailAgeGTE30d | Checks if an (optionally) passed Email has been registered in threatmetrix for <= 30 days (Not currently in use) |
| test.addressAgeGTE30d | Checks if an (optionally) passed Address has been registered in threatmetrix for <= 30 days (Not currently in use) |
| test.telephoneAgeGTE30d | Checks if an (optionally) passed Phone # has been registered in threatmetrix for <= 30 days (Not currently in use) |
| test.exactIDAgeGTE7d | ExactID is threatmetrix's device identifier that uses persistent markers to ID the device (cookies, Adobe Flash LSO, HTML5 Persistent markers, and Silverlight cookies). This test checks the tenure of a device by examining its persistent markers. The exhaustive list is proprietary but you can read more here: https://kb.threatmetrix.com/index.php?View=entry&EntryID=1276 |
| test.smartIDAgeGTE7d | SmartID is threametrix's device identifier that uses device attributes to ID the device (screen resolution, device name, flash_guid etc). The exhaustive list is proprietary but you can read more here: https://kb.threatmetrix.com/index.php?View=entry&EntryID=1276 |
| test.lte3CredentialsDevice7d | Checks if this Exact ID has logged in > 3 times today |
| test.expectedLanguage | Checks if the language set in the browser does not match the language expected for the device's location |
| test.credentialLTE500mi1hr | Checks if the device's True IP has exceeded geophysical limitations |
| link.addressCountry_TrueGeoCountry | Check the given address against the device's geo location (requires location services) |
| link.timeZone_TrueGeo | Checks the time zone of the device against the device's geo location time zone (requires location services) |
| test.trueIPLTE500miInputIP | Checks if an (optionally) passed IP is >= 500 miles from the device's IP (Not currently in use) |
| blacklist.email | Check if the (optionally) passed Email is blacklisted (list is managed manually) (Not currently in use) |
| blacklist.telephone | Check if the (optionally) passed Phone # is blacklisted (list is managed manually) (Not currently in use) |
| blacklist.ip | Check if the device's IP is blacklisted (list is managed manually) (Not currently in use) |
| blacklist.device | Check if the device's ExactID or SmartID is blacklisted (list is managed manually) |
| blacklist.ofacIP | Check if the (optionally) passed IP, DNS IP, Proxy IP or True IP is from a country US-government blacklist (list is managed manually) (Not currently in use). List as of 04/12/2019: Albania,Bosnia and Herzegovina,Bulgaria,Montenegro,Kosovo,Macedonia, the Former Yugoslav Republic of,Belarus,Democratic Republic of the Congo,Cote d'Ivoire,Cuba,Iraq,Iran,Korea, Democratic People's Republic of,Liberia,Sudan,Syrian Arab Republic,Zimbabwe |
| detect.browserAnomaly | Checks if a device's screen resolutions has changed > 4 times per Day, if the screen Color Depth is unusually low, if the flash Browser Language does not match the device's expected language or if cookie copying is suspected |
| detect.unusualActivity | Checks if the user spends <.2 seconds on the page or if the "system state" (last reboot date) has changed more than 2 times in the last hour. The exhaustive list is proprietary but you can read more here https://kb.threatmetrix.com/index.php?View=entry&EntryID=1225 |
| detect.tmxDeviceTrustTag12mo | A Trust tag is an ID that consists of the user's device ID and credential. A tag can be created AFTER a successful verification and re-used for future logins to greatly improve (+70) trust score. Trust tags are not used by default. |
| detect.malware | "Detects harmful malware by using the following tactics: Honeypot - Passive technology designed to bait malware into attempting web injections Page Fingerprinting – Active monitoring to identify modified code running in browser Targeted Malware – Identifies specific markers associated with targeted threats Storage Monitoring – Looks for malware indicators dropped on the local machine Application Reputation (Android SDK only) – Identifies nefarious and/or malicious applications Application Integrity (iOS + Android SDK) – Identifies modified versions of ‘real’ applications RAT / Remote Desktop – Monitors for remote access trojans being used on a local machine Biometrics for Bot Detection – Examines user behavioral activity to identify bots Proxy Piercing – Designed to identify the true IP address of a device hidden behind a proxy". List of malware that ThreatMetrix is effective at finding: Zeus, Ramnit, Gootkit, Cridex, Dridex, Dyre, Neverquest, Tinba, Trickbot, ATS_ |
| detect.aggregator | Detects if the device is coming from an aggregator (ex. Mint attempting to log in on a customer's behalf) |
| detect.tor | Detects if device is routed from the TOR network |
| detect.torNode | Detects if device's IP is a tor exit node |
| detect.vpn | Detects if device is using a VPN |
| detect.proxyHidden | Detects if the device is using a proxy with "hidden" proxy type. This is the most risky proxy |
| detect.proxyAnonymous | Detects if the user is using a proxy with "anonymous" proxy type. An anonymous proxy does not send your real IP address in the HTTP_X_FORWARDED_FOR header, instead it submits the IP address of the proxy or is just blank. The HTTP_VIA header is sent with a transparent proxy, also revealing that you are using a proxy server. |
| detect.proxyOpenTransparent | Detects if the user is using a proxy with "open" proxy type. This is the least risky proxy. A transparent proxy sends your real IP address in the HTTP_X_FORWARDED_FOR header, this means a website that does not only determine your REMOTE_ADDR but also check for specific proxy headers will still know your real IP address. |
| test.lte3ProxyToday | Detects if the ExactID has changed Proxy > 3 times in 1 day |
| link.proxyGeo_TrueGeo | "Detects if this device is connecting through a proxy server that didn’t match the devices geo-location (requires location services)" |
| link.proxyOrg_TrueOrg | "Detects if the Proxy information and True ISP information for this source do not match" |
| link.proxyISP_TrueISP | "Detects if the device is connecting through a proxy server that doesn’t match the true IP address of the device" |
| link.address_candidate | Deprecated |
| link.dob_candidate | Deprecated |
| link.firstName_candidate | Deprecated |
| link.fullName_address | A person with the provided full name lives at the provided address. |
| link.fullName_candidate | Deprecated |
| link.fullName_phone | Check to ensure full name provided matches the full name on the registered phone |
| link.lastName_address | A person with the provided last name lives at the provided address |
| link.lastName_candidate | Deprecated |
| link.lastName_DOB | Deprecated |
| link.lastName_YOB | Deprecated |
| link.phone_candidate | Deprecated |
| link.phone_lastName | TeleSign check to ensure the last name provided matches the full name on the registered phone |
| link.ssn_candidate | Deprecated |
| link.ssn4_candidate | Deprecated |
| test.address_Is_Current | The address given is the most recent address for this person |
| test.address90DaysOld | Address provided was first reported for the consumer within the last 90 days |
| test.addressIsBusiness | Address provided is registered as a business address |
| test.addressIsPOBox | Address provided is registered as a PO box address |
| test.addressIsResidential | Address provided is registered as a Residential Address |
| test.addressMatchesPhone | Address provided matches the address registered to the phone number provided |
| link.address_SSN | The SSN9 given matches the address given |
| test.age18OrOver | Date of birth provided is >= 18 years old |
| test.candidateNoOFACMatchToNameAndDOB | Check if there is an OFAC match to the provided name and dob (match = fail) |
| test.candidateNoOFACMatchToNameAndSSN | Check if there is an OFAC match to the provided name and ssn (match = fail) |
| test.candidateNoOFACMatchToNameSSNAndDOB | Check if there is an OFAC match to the provided name, ssn and dob (match = fail) |
| test.candidateNoOFACMatchToSSN | Check if there is an OFAC match to the provided ssn (match = fail) |
| test.candidateNoOFACMatchToSSNAndDOB | Check if there is an OFAC match to the provided ssn and date of birth (match = fail) |
| link.dob_SSN9 | The date of birth given matches the SSN9 given |
| test.fileOneAddressMatch | The address passed matches one of the last 3 addresses that File One has for this person |
| test.fraudulentActivityAddress | Check if the provided address has been previously linked to fraud |
| link.fullName_SSN9 | The full name given matches the SSN9 given |
| test.noAddressConflicts | The address given is the most recent address for this person according to their credit file |
| link.ssn_fullName_address | The SSN9 given matches the full name and address given |
| test.ssn4AgeMatches | The provided DOB matches the DOB from the SSN4 |
| test.ssn4IssueDateVerified | The provided SSN4 has a verified issue date |
| test.ssn4MatchesNoOthers | The provided SSN4 and other data points are collectively unlikely to match any other SSN4 |
| test.ssn4NotDeceased | The SSN4 is not deceased |
| test.ssnIssueDateVerified | The issue date on the SSN4 can be verified |
| test.ssnMatchesNoOthers | The provided SSN and other data points are collectively unlikely to match any other SSN |
| test.ssnNotDeceased | The SSN is not deceased |
| test.validSSN4Format | The format of the SSN4 is valid |
| test.validSsnFormat | The format of the SSN is valid |
Updated about 4 years ago