Skip to main content

Risk Engine

eGuardian's Risk Engine is responsible for calculating the level of assurance (LOA) for each transaction. LOA will be used by the smart MFA module to decide whether to increase or decrease the friction for the user.

eGuardian's Risk Engine comes with an out of the box integration with the Policy Engine.

Risk Analyzers#

Risk Analyzers are responsible for fetching data from different sources and calculating a final score based on the collected information. Each Risk Analyzer focuses on a specific area and gets a specific kind of data. For example, the IP Risk Analyzer gets some information about the IP address of the user and generates a score based on that address.

This is a noninclusive list of built-in Risk Analyzers:

  • AIML Risk Analyzer: Provides a score based on the user contextual information provided to Acceptto's AI/ML engine.
  • Auth Method Risk Analyzer: Provides a score based on the authenticator used for the last MFA.
  • DBFP Risk Analyzer: Provides a score based on the user's browser fingerprint.
  • IP Risk Analyzer: Provides a score based on the user's IP address.
  • Location Risk Analyzer: Provides a score based on the user's obtained location. The location will be obtained from the phone or browser and if not provided, falls back to the IP-based location.

Third-party Risk Analyzers#

The Risk Analyzers are designed to be modular and there are multiple ways of integrating new risk analyzers:

  1. Calling an external API to fetch the score for a given user and context
  2. An external risk engine can call the generic score API to provide the score for the users
  3. A custom Risk Analyzer module can be implemented by the Acceptto team that can communicate with any external resources

LOA Score#

The LOA score is a number between 0.0 to 4.0. The higher the LOA the more likely the user is who they claim to be. The overall LOA score is calculated out of the LOA scores generated by the Risk Analyzers.

Total LOA Score Calculation#

Each Risk Analyzer is associated with a weight which is a float number used to calculate the total LOA score. This weight indicates the importance of a Risk Analyzer. Total LOA score is a weighted average of individual Risk Analyzer scores.

Example#

Consider the following Risk Analyzers information.

Risk AnalyzerScoreWeightNotes
DBFP1.21
Auth Method41Because OOB method was push
IP10.5
GPS00.5Because location data is not available (e.g. user didn't allow permission)
AlienVault IP00.25Third party Risk Analyzer

The total LOA score is equal to:

(1.2*1 + 4*1 + 1*0.5 + 0*0.5 + 0*0.25) / (1 + 1 + 0.5 + 0.5 + 0.25) = 1.75