WO2017116339A1 - A system for determining fraud in telecommunication systems - Google Patents

A system for determining fraud in telecommunication systems Download PDF

Info

Publication number
WO2017116339A1
WO2017116339A1 PCT/TR2016/000207 TR2016000207W WO2017116339A1 WO 2017116339 A1 WO2017116339 A1 WO 2017116339A1 TR 2016000207 W TR2016000207 W TR 2016000207W WO 2017116339 A1 WO2017116339 A1 WO 2017116339A1
Authority
WO
WIPO (PCT)
Prior art keywords
fraud
determination module
key performance
performance indicators
database
Prior art date
Application number
PCT/TR2016/000207
Other languages
French (fr)
Inventor
Caner CANAK
Mehmet Onur SARKAN
Original Assignee
Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi filed Critical Turkcell Teknoloji Arastirma Ve Gelistirme Anonim Sirketi
Priority to EP16843234.2A priority Critical patent/EP3398323A1/en
Publication of WO2017116339A1 publication Critical patent/WO2017116339A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M3/00Automatic or semi-automatic exchanges
    • H04M3/22Arrangements for supervision, monitoring or testing
    • H04M3/2281Call monitoring, e.g. for law enforcement purposes; Call tracing; Detection or prevention of malicious calls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/47Fraud detection or prevention means
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/58Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP based on statistics of usage or network monitoring
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2203/00Aspects of automatic or semi-automatic exchanges
    • H04M2203/55Aspects of automatic or semi-automatic exchanges related to network data storage and management
    • H04M2203/555Statistics, e.g. about subscribers but not being call statistics
    • H04M2203/556Statistical analysis and interpretation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2203/00Aspects of automatic or semi-automatic exchanges
    • H04M2203/60Aspects of automatic or semi-automatic exchanges related to security aspects in telephonic communication systems
    • H04M2203/6027Fraud preventions

Definitions

  • the present invention relates to a fraud determination system which uses key performance indicators (KPI) as main input for mobile communication operator companies.
  • KPI key performance indicators
  • Telecommunication fraud not only causes telecommunication operators to suffer damage but also end users to suffer damage as well. Companies being telecommunication operators take precautions in order to prevent unauthorized use of services provided to their subscribers for the purpose of protecting their reputations.
  • the said systems enable to detect fraud attempts by analyzing usage reports of subscribers.
  • Fraud detection systems are each typical data mining applications. Fraud detection systems enable to create a kind of fingerprint database which determines usage trends of each customer from historical usage data. However, any fraud detection system does not use abnormalities in key performance indicators in order to detect fraud in a telecommunication system today.
  • the United States patent document no. US2014226803 discloses a computer- assisted fraud detection method in a telecommunication system. Within the said system, illicit use case of a user is detected on the basis of some information kept related to use of network. This test system enables to determine use of fraud via comparison by using information such as communication periods of users, how often does s/
  • An objective of the present invention is to realize a fraud determination system which uses key performance indicators (KPI) as main input for mobile communication operator companies.
  • KPI key performance indicators
  • Figure 1 is a schematic view of the inventive system. The components illustrated in the figure are individually numbered, where the numbers refer to the following: 1.
  • MCN Mobile communication network
  • the inventive fraud determination system (1) enabling to detect frauds in mobile communication network (MCN) by using key performance indicators (KPI) as main input for mobile communication operator companies comprises:
  • At least one abnormality determination module (3) which is in communication with the database (2) and detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2);
  • At least one fraud determination module (4) which is in communication with the database (2) and detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2);
  • At least one central processor module (5) which is in communication with the abnormality determination module (3) and the fraud determination module (4), enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module
  • the database (2) included in the inventive system (1) is in communication with the abnormality determination module (3) and the fraud determination module (4).
  • Customer-based key performance indicators in mobile communication network (MCN) are recorded inside the database (2).
  • the abnormality determination module (3) included in the inventive system (1) is in communication with the database (2) and the central processor module (5).
  • the abnormality determination module (3) detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2).
  • the fraud determination module (4) included in the inventive system (1) is in communication with the database (2) and the central processor module (5).
  • the fraud determination module (4) detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2).
  • the central processor module (5) included in the inventive system (1) is in communication with the abnormality determination module (3) and the fraud determination module (4).
  • the central processor module (5) enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module (3) from the abnormality determination module (3) and whether there is fraud originating from the said possible frauds by receiving the information about the possible frauds in the key performance indicators detected by the fraud determination module (4) from the fraud determination module (4).
  • the central processor module (5) also enables to take necessary pre-determined actions in order to prevent fraud related to the detected fraud.
  • the central processor module (5) then records the information about the circumstances received by the abnormality determination module (3) and evaluated as fraud inside the fraud determination module (4) in order to easily detect frauds that may happen in similar circumstances.
  • IMSI International Mobile Subscriber Identity
  • connection number which is the number of connection realized by electronic devices such as smart phone, mobile phone in mobile communication network-
  • 2G/3G data volume (throughput) which is the total value of mobile applications downloaded and installed by users- can be provided to the key performance indicators recorded in the database (2).
  • the abnormality determination module (3) detects abnormality in the said key performance indicators and sends the data about the said the abnormality to the central processor module (5) in the event that the IMSI connection number recorded in the database (2) is quite higher than the pre-determined value or again the 2G/3G data volume is quite higher than the pre-determined value.
  • the abnormality determination module (3) If it is detected by the abnormality determination module (3) in the mobile communication network (MCN) that an electronic device makes voice calls between 3000-5000 daily in one exemplary embodiment wherein the number of voice calls made daily by an electronic device such as smart phone, mobile phone which gets service from a mobile communication network (MCN) inside the database (2) of the invention is recorded as key performance indicator and the number of voice calls is recorded as being made between 10-50 value range daily in normal, this status is detected as abnormality.
  • the abnormality determination module (3) sends the data about the detected abnormality to the central processor module (5).
  • the data reaching the central processor module (5) are preferably evaluated by fraud experts manually and it a fraud is detected related to the said status as a result of this evaluation, the said status is recorded inside the fraud determination module (4) in order to be able to easily detect the same fraud later.

Abstract

The present invention relates to a fraud determination system (1) which uses key performance indicators (KPI) as main input for mobile communication operator companies.

Description

A SYSTEM FOR DETERMINING FRAUD IN TELECOMMUNICATION
SYSTEMS
Technical Field
The present invention relates to a fraud determination system which uses key performance indicators (KPI) as main input for mobile communication operator companies.
Background of the Invention
Fraud in telecommunication systems goes back to the first generation date of telecommunication industry. Making call from subscriber lines to expensive directions by parallel connections made physically to subscriber lines is one of the first fraud methods used. Today, the same transaction is carried out by SIM card cloning in GSM infrastructures. Today, telecommunication fraud is one of the biggest problems of telecommunication industry. Upon new generation communication technologies emerged, a great increase has occurred in new type of fraudulent revenue methods as well. Communications Fraud Control Association (CFCO) estimates that the loss caused by telecommunication fraud attempts was approximately 70 to 78 billion dollars in 2009. Competitive pressures in telecommunication market lead telecommunication companies to carry out more effective studies on the subject of reducing revenue losses arising from fraud. Telecommunication fraud not only causes telecommunication operators to suffer damage but also end users to suffer damage as well. Companies being telecommunication operators take precautions in order to prevent unauthorized use of services provided to their subscribers for the purpose of protecting their reputations. Today, companies being telecommunication operators use various fraud management systems with the intention of preventing fraud in telecommunication systems. The said systems enable to detect fraud attempts by analyzing usage reports of subscribers. Fraud detection systems are each typical data mining applications. Fraud detection systems enable to create a kind of fingerprint database which determines usage trends of each customer from historical usage data. However, any fraud detection system does not use abnormalities in key performance indicators in order to detect fraud in a telecommunication system today. The United States patent document no. US2014226803 discloses a computer- assisted fraud detection method in a telecommunication system. Within the said system, illicit use case of a user is detected on the basis of some information kept related to use of network. This test system enables to determine use of fraud via comparison by using information such as communication periods of users, how often does s/he communicate and get it contact.
Summary of the Invention
An objective of the present invention is to realize a fraud determination system which uses key performance indicators (KPI) as main input for mobile communication operator companies.
Detailed Description of the Invention "A System for Determining Fraud in Telecommunication Systems" realized to fulfill the objective of the present invention is shown in the figure attached, in which:
Figure 1 is a schematic view of the inventive system. The components illustrated in the figure are individually numbered, where the numbers refer to the following: 1. System
2. Database
3. Abnormality determination module
4. Fraud determination module
5. Central processor module
MCN: Mobile communication network
The inventive fraud determination system (1) enabling to detect frauds in mobile communication network (MCN) by using key performance indicators (KPI) as main input for mobile communication operator companies comprises:
at least one database (2) wherein customer-based key performance indicators in mobile communication network (MCN) are recorded;
at least one abnormality determination module (3) which is in communication with the database (2) and detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2);
at least one fraud determination module (4) which is in communication with the database (2) and detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2); and
at least one central processor module (5) which is in communication with the abnormality determination module (3) and the fraud determination module (4), enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module
(3) from the abnormality determination module (3) and whether there is fraud originating from the said possible frauds by receiving the information about the possible frauds in the key performance indicators detected by the fraud determination module (4) from the fraud determination module (4), and enables to take necessary pre-determined actions in order to prevent fraud related to the detected fraud. The database (2) included in the inventive system (1) is in communication with the abnormality determination module (3) and the fraud determination module (4). Customer-based key performance indicators in mobile communication network (MCN) are recorded inside the database (2).
The abnormality determination module (3) included in the inventive system (1) is in communication with the database (2) and the central processor module (5). The abnormality determination module (3) detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2).
The fraud determination module (4) included in the inventive system (1) is in communication with the database (2) and the central processor module (5). The fraud determination module (4) detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2).
The central processor module (5) included in the inventive system (1) is in communication with the abnormality determination module (3) and the fraud determination module (4). The central processor module (5) enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module (3) from the abnormality determination module (3) and whether there is fraud originating from the said possible frauds by receiving the information about the possible frauds in the key performance indicators detected by the fraud determination module (4) from the fraud determination module (4). The central processor module (5) also enables to take necessary pre-determined actions in order to prevent fraud related to the detected fraud. In one embodiment of the invention, the central processor module (5) then records the information about the circumstances received by the abnormality determination module (3) and evaluated as fraud inside the fraud determination module (4) in order to easily detect frauds that may happen in similar circumstances. In one exemplary embodiment of the inventive system (1), IMSI (International Mobile Subscriber Identity) connection number -which is the number of connection realized by electronic devices such as smart phone, mobile phone in mobile communication network- and 2G/3G data volume (throughput) -which is the total value of mobile applications downloaded and installed by users- can be provided to the key performance indicators recorded in the database (2). In the said exemplary embodiment, the abnormality determination module (3) detects abnormality in the said key performance indicators and sends the data about the said the abnormality to the central processor module (5) in the event that the IMSI connection number recorded in the database (2) is quite higher than the pre-determined value or again the 2G/3G data volume is quite higher than the pre-determined value.
If it is detected by the abnormality determination module (3) in the mobile communication network (MCN) that an electronic device makes voice calls between 3000-5000 daily in one exemplary embodiment wherein the number of voice calls made daily by an electronic device such as smart phone, mobile phone which gets service from a mobile communication network (MCN) inside the database (2) of the invention is recorded as key performance indicator and the number of voice calls is recorded as being made between 10-50 value range daily in normal, this status is detected as abnormality. The abnormality determination module (3) sends the data about the detected abnormality to the central processor module (5). The data reaching the central processor module (5) are preferably evaluated by fraud experts manually and it a fraud is detected related to the said status as a result of this evaluation, the said status is recorded inside the fraud determination module (4) in order to be able to easily detect the same fraud later.
It is possible to develop a wide range of embodiments of the inventive "System for Determining Fraud in Telecommunication Systems (1)", the invention cannot be limited to examples disclosed herein and it is essentially according to claims.

Claims

1. A fraud determination system (1) enabling to detect frauds in mobile communication network (MCN) by using key performance indicators as main input for mobile communication operator companies; comprising: at least one database (2) wherein customer-based key performance indicators in mobile communication network (MCN) are recorded;
at least one abnormality determination module (3) which is in communication with the database (2) and detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2);
at least one fraud determination module (4) which is in communication with the database (2) and detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2);
and characterized by
at least one central processor module (5) which is in communication with the abnormality determination module (3) and the fraud determination module (4), enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module (3) from the abnormality determination module (3) and whether there is fraud originating from the said possible frauds by receiving the information about the possible frauds in the key performance indicators detected by the fraud determination module (4) from the fraud determination module (4), and enables to take necessary pre-determined actions in order to prevent fraud related to the detected fraud.
2. A system (1) according to Claim 1, characterized by the database (2) which is in communication with the abnormality determination module (3) and the fraud determination module (4) and wherein customer-based key performance indicators in mobile communication network (MCN) are recorded.
A system (1) according to Claim 1 or 2, characterized by the abnormality determination module (3) which is in communication with the database (2) and the central processor module (5) and detects abnormalities in the said key performance indicators by processing the key performance indicators recorded in the database (2).
A system (1) according to any of the preceding claims, characterized by the fraud determination module (4) which is in communication with the database
(2) and the central processor module (5) and detects possible frauds in the said key performance indicators by running the pre-determined rules on the key performance indicators recorded in the database (2).
A system (1) according to any of the preceding claims, characterized by the central processor module (5) which is in communication with the abnormality determination module (3) and the fraud determination module (4), enables to determine whether there is fraud originating from the said abnormalities by receiving the information about the abnormalities in the key performance indicators detected by the abnormality determination module
(3) from the abnormality determination module (3) and whether there is fraud originating from the said possible frauds by receiving the information about the possible frauds in the key performance indicators detected by the fraud determination module (4) from the fraud determination module (4).
A system (1) according to Claim 5, characterized by the central processor module (5) which enables to take necessary pre-determined actions in order to prevent fraud related to the detected fraud. A system (1) according to any of the preceding claims, characterized by the central processor module (5) which records the information about the circumstances received by the abnormality determination module (3) and evaluated as fraud inside the fraud determination module (4) in order to easily detect frauds that may happen in similar circumstances.
PCT/TR2016/000207 2015-12-31 2016-12-26 A system for determining fraud in telecommunication systems WO2017116339A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP16843234.2A EP3398323A1 (en) 2015-12-31 2016-12-26 A system for determining fraud in telecommunication systems

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
TR2015/17613 2015-12-31
TR2015/17613A TR201517613A2 (en) 2015-12-31 2015-12-31 A SYSTEM FOR DETERMINATION OF FRAUD IN TELECOMMUNICATION SYSTEMS

Publications (1)

Publication Number Publication Date
WO2017116339A1 true WO2017116339A1 (en) 2017-07-06

Family

ID=58228519

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/TR2016/000207 WO2017116339A1 (en) 2015-12-31 2016-12-26 A system for determining fraud in telecommunication systems

Country Status (3)

Country Link
EP (1) EP3398323A1 (en)
TR (1) TR201517613A2 (en)
WO (1) WO2017116339A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5495521A (en) * 1993-11-12 1996-02-27 At&T Corp. Method and means for preventing fraudulent use of telephone network
US6327352B1 (en) * 1997-02-24 2001-12-04 Ameritech Corporation System and method for real-time fraud detection within a telecommunications system
US20140226803A1 (en) 2012-07-24 2014-08-14 Twilio, Inc. Method and system for preventing illicit use of a telephony platform

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5495521A (en) * 1993-11-12 1996-02-27 At&T Corp. Method and means for preventing fraudulent use of telephone network
US6327352B1 (en) * 1997-02-24 2001-12-04 Ameritech Corporation System and method for real-time fraud detection within a telecommunications system
US20140226803A1 (en) 2012-07-24 2014-08-14 Twilio, Inc. Method and system for preventing illicit use of a telephony platform

Also Published As

Publication number Publication date
TR201517613A2 (en) 2017-07-21
EP3398323A1 (en) 2018-11-07

Similar Documents

Publication Publication Date Title
EP3324607B1 (en) Fraud detection on a communication network
US11509763B1 (en) Using calling party number for caller authentication
US10264454B2 (en) System and method for mobile number verification
US9871913B1 (en) Systems and methods to identify ANI and caller ID manipulation for determining trustworthiness of incoming calling party and billing number information
CN105611084A (en) User fraud suspiciousness degree calculation method and suspiciousness degree calculation system
US6570968B1 (en) Alert suppression in a telecommunications fraud control system
CN108810290B (en) Method and system for recognizing fraud calls
US6636592B2 (en) Method and system for using bad billed number records to prevent fraud in a telecommunication system
KR101195030B1 (en) System and method for judging location of financial terminal
Tarmazakov et al. Modern approaches to prevent fraud in mobile communications networks
TWI507009B (en) System and method of smartphone for preventing fraud
WO2017116339A1 (en) A system for determining fraud in telecommunication systems
CN109104429B (en) Detection method for phishing information
CN108810289B (en) Internet label canceling method and device
CN105376423A (en) Calling detection method, device and system
US5978459A (en) Encryption of telephone calling card codes
CN109995733B (en) Capability service opening method, device, system, equipment and medium
CN104660834A (en) Junk call protection method and device
CN112565525A (en) Anti-fraud early warning method and device
CN108900478B (en) Detection method and device for transaction attack and safety protection equipment
CN104506547B (en) The system for preventing point-of-sale terminal telephone-moving
Masrub et al. SIM Boxing Problem: ALMADAR ALJADID Case Study
CN117010904A (en) Financial identification method for data security calculation, storage medium and related equipment
Field et al. Techniques for telecommunications fraud management
CN115037836A (en) Terminal shutdown processing method and device and electronic equipment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16843234

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE