Mastercard Incorporated
Systems and methods for authenticating a user based on biometric and device data

Abstract:

A data controller (DC) system including one or more data controller (DC) computing device for authenticating a user is provided. The DC system is configured to receive first crypto key data associated with a first transaction including encrypted on-device biometric data, and a first account identifier, store the first crypto key data as historical crypto key data, and receive an authentication request message for a second transaction including second crypto key data which includes a second account identifier. The DC system is further configured to correlate the second crypto key data to the historical crypto key data, match the first account identifier to the second account identifier, determine a fraud score for the second transaction, automatically generate an authentication response message including the fraud score, and transmit the authentication response message.