scope:

This Recommendation provides guidelines on technical capabilities for fraud management in services with high assurance level requirements. The objective of this Recommendation is to provide a system capable of detecting fraud activities. This Recommendation is applicable to many commercial and enterprise sectors using security sensitive information and communication technology (ICT) applications through the deployment of a fraud detection and response system. This Recommendation is also applicable to the management of internal fraud in an organization as well as external fraud by remote access or commercial service.

This Recommendation covers the following areas:

 - capabilities for fraud detection and response service;

- operations and components for fraud detection and response system; and

- considerations for incident defence and response service.