There is a requirement from a one of the CA leading customer to Deny all the transactions that are coming from Jail broken mobile devices.
Are we capturing any Mobile Device parameters to determine whether the mobile devices are Jail broken devices or not during Risk Analysis?
Yes, we do with the DDNA SDK for iOS and Android devices.
Thanks,
Lakshmi.
There is an attribute in DDNA called JAILBROKEN. If this is set to true then risk server will DENY the transaction if the JAILBROKEN custom rule is set to 100
Thanks
Awijit
Thanks Lakshmi, Awajit!! This helps with DDNA SDK. Is there any parameter available for browser based integration?
Hi Kiran, in this scenario is the user going to login via mobile phone browser ?
Is the ask that if the mobile phone browser is used to login then how can risk server verify that device is not rooted ?
Ask is for the applications, accessing from mobile browsers with our standard Javas Script Risk parameter integration.
In the mfp that we collect in browser, I have not seen an attribute that shows whether the device is rooted or not. I think some investigation needs to be done in documentation or code.