Device Intelligence
Start here
This guide presents a technical overview of Entrust's Device Intelligence report.
Introduction
The Device Intelligence report assesses non-document and non-biometric signals to capture sophisticated fraud, without adding user friction to an identity verification. The Device Intelligence report works alongside Entrust's other reports capturing digital, passive fraud signals such as device integrity, IP and geolocation data, in addition to the current visual fraud detection.
You can run Device Intelligence as a standalone report, but we recommend that you combine it with a Document report or Facial Similarity report.
The Device Intelligence report is only compatible with other reports that require a media upload (such as a document capture, live photo or live video capture) because the report collects device integrity information during the upload of the media.
Note: The Device Intelligence report will be more effective and provide better data if you're using the Entrust Identity Verification SDKs and not sending the media via the API directly.
Signals captured by the report
The purpose of the Device Intelligence report is to gather a range of intelligence signals to assess the integrity of the device and app used to interact with the Entrust system. This includes device signals (such as operating system, browser, presence of an emulator, etc.), IP address, and geolocation data (such as city, country, etc.).
For a full list of the data signals collected, please refer to our API reference documentation.
Result logic
The Device Intelligence report can return a result of clear or consider.
The overall report result will be clear if the device breakdown and its sub-breakdowns are clear. This means the applicant was using a valid device and is not associated with suspicious behaviour, indicating they are a genuine user.
The overall report result will be consider if the device breakdown and any of its sub-breakdowns are consider. This means the applicant was detected to have used an invalid device or is associated with suspicious behaviour, indicating they may be a fraudulent user.
More details regarding the structure of the report and an example result can be found in our API reference documentation.
Device Intelligence Report task
Similar to other Entrust reports, the Device Intelligence report should be added as a Device Intelligence Report task to a Studio workflow from the Workflow Builder.
Although a Device Intelligence report can be run as a standalone report, it's recommended you combine it with a Document report or Facial Similarity report. As such, your Studio workflow should also include a Document Report task and Facial Similarity report task.
Furthermore, because the report collects device integrity information through a media upload (such as a document, live photo or live video capture), a Device Intelligence Report task must always follow the route of a Document Capture task or a Face Capture task in order to extract the appropriate input data.
Below you will find an illustrated example of a Studio workflow running a Device Intelligence report:
More information about report tasks can be found in our Studio Product Guide.
Device Intelligence Report task results
If you want to obtain the specific outputs from the Device Intelligence Report task via the API (for example, the overall report result or breakdown results), you can manage this by configuring the Workflow Output in the Studio Workflow Builder. You can also retrieve all associated output data from a Device Intelligence report.
You can refer to our Studio product guide for more information on Workflow Output configuration. Once set up, the output can be consumed by making a Retrieve Workflow Run call to the API. Report results are found in the output property.
Workflow Run results can also be accessed on the results tab of your Studio Dashboard.
