Q2 Console Reporting: Q2 Sentinel configurations
Q2 Sentinel is a risk and fraud analytics tool that incorporates a behavioral classification model built from an individual user’s activity history.
The model is dynamic and evolves over time to learn users’ changing behaviors to enable real-time analysis of transaction activity.
Because this analysis occurs in real-time, while in Active mode, transactions that Q2 Sentinel identifies as suspect are placed on hold in the Suspect Transactions queue. These transactions will not be processed until they are approved by the appropriate FI staff.
Transaction types
Currently, Q2 Sentinel analyzes the following transaction types:
- ACH Single Payments, ACH Batch/Payroll, ACH Pass Thru
- External Transfers
- Domestic Wires
- International Wires
Login information
Q2 Sentinel evaluates all login sessions and not just those associated with transactions that are scored by Sentinel. Sentinel’s Endpoint Interrogation scoring module takes a deeper look into each end user’s login.
Q2 Sentinel analyzes the following information regarding an end user's login activity to determine what is normal for the end-user:
- Week (of month)
- Day
- Hour
- Geolocation
Device information
At every login, Q2 Sentinel records a utilization pattern based on details collected over time. Q2 Sentinel can then use this pattern history to detect when a different device is used, even when login credentials and access codes are provided and correct.
Q2 Sentinel inspects and verifies the following details of the end user's device:
- Operating system
- Browser type and version
- .NET framework instances and version
- Presence of any additional software, including Adobe Flash and Microsoft Office