ThreatMetrix Advanced
Overview
The ThreatMetrix (TMX) Advanced Service Offering (SO) is based on our existing TMX verification, but offers more in-depth and refined information from a user and their device. These new assertions are highly recommended for fraud detection and prevention. For more information about what attributes need to be supplied to this SO, please refer to our TMX documentation on the topic.
Assertions
Assertions in TMX are certain conditions that return a pass/fail. A pass means the condition was met, a fail means that TMX detected that the condition was not met. If an attribute required for detection is not configured for a service, the assertion will pass by default.
| Assertion | Description |
|---|---|
| whitelist.localCheckDetected | Allows known trusted entities, reducing friction for legitimate users |
| blacklist.localCheckDetected | Prevents access for known bad actors, enhancing security |
| watchlist.localCheckDetected | Flags suspicious entities for closer inspection, improving threat detection |
| detect.browserAnomalyCheck | Detects unusual browser behavior that may indicate bot or fraud activity |
| detect.attributeAnomaly | Identifies identity inconsistency |
| detect.entityReputationCheck | Helps block access for known malicious actors based on past behavior |
| detect.emailBehaviorCheck | Warns about potential fraudulent emails |
| detect.trustTagBehavior | Detects risky devices and bot-like behavior |
| detect.proxyTorVPN | Detects use of anonymizing services |
| detect.proxyGEO/TRUEGEOMismatch | Detects geo-location inconsistencies |
| detect.sessionCloaking | User attempted to hide device or session details |
| detect.malware | Blocks access from malware-infected devices |
| test.entityVelocityCheck | Checks for automated bot attacks or rapid fraud attempts |
| test.distanceTraveledCheck | Looks to see if the device's location rapidly changes |
| test.trustedPersona1MTH, test.trustedPersona2MTH, test.trustedPersona3MTH | Checks if user has been trusted in the past 1, 2, or 3 months |
| detect.personaAnomalies3MTH | Identifies potential fraud through excessive persona changes |
| detect.ATOCheck | Prevents account takeovers |
| detect.bot | Identifies bots |
| detect.jailbreakORRoot | Prevents jailbroken or rooted devices from authenticating |
| detect.entityINGlobalBlocklist | Blocks access for globally blacklisted entities |
| detect.entityINGlobalWhitelist | Reduces friction for globally trusted entities |
| detect.aggregator | Detects potential aggregator attacks |
| detect.proxyTorVPN | Blocks access through TOR networks |
Updated 8 days ago