# DFS operators controls to mitigate SIM risks and fraud

1. **Real time IMSI/ICCID detection**: DFS and Payment Service Providers should be able to detect real-time whenever a SIM card associated with DFS services is swapped or replaced. Further verification before authorizing any transaction or account changes with new SIM should be required.
2. **Real time device change detection:** Device authentication to improve endpoint security by tracking the IMEI's of the devices used to access financial services. In this way, an account that changes devices can be flagged by the DFS operator
3. **Encourage use of secure DFS access:** Avail the customers the option to opt-out of the USSD or STK channels for financial transactions, especially those that can access the DFS using an app.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://itu.gitbook.io/sim-swap-threats/security-recommendations-to-protect-against-dfs-sim-risks-and-sim-swap-fraud/dfs-operators-controls-to-mitigate-sim-risks-and-fraud.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.