Risk Scoring
Understanding VeriPlus risk assessment algorithms, scoring models, and how to use risk scores for compliance decisions.
Risk Scoring
VeriPlus calculates risk scores (0-100) for applicants, wallets, and transactions using machine learning and rule-based models.
What is Risk Scoring?
Risk scoring quantifies the likelihood that a customer or transaction is fraudulent, involved in money laundering, or otherwise high-risk.
Benefits:
- Automate decisions - Accept low-risk, reject high-risk, review medium
- Prioritise resources - Focus compliance team on high-risk cases
- Reduce friction - Fast-track low-risk customers
- Audit trail - Defensible risk-based approach for regulators
Risk Score Range
| Score | Risk Level | Description | Action |
|---|---|---|---|
| 0-30 | LOW | Trustworthy, minimal fraud risk | Auto-approve |
| 31-50 | MEDIUM | Some risk factors present | Standard review |
| 51-70 | HIGH | Multiple risk factors | Enhanced due diligence |
| 71-100 | CRITICAL | High fraud/crime risk | Reject or in-depth review |
Applicant Risk Score
Scoring Factors
VeriPlus calculates applicant risk from:
| Factor | Weight | Description |
|---|---|---|
| Document Verification | 35% | Authenticity, fraud score |
| Biometric Match | 20% | Face match confidence |
| AML Screening | 25% | Sanctions, PEP, adverse media hits |
| Country Risk | 10% | FATF rating, corruption index |
| Historical Behavior | 10% | Past verifications, chargebacks |
Document Fraud Score
AI analyses documents for manipulation indicators:
| Indicator | Impact |
|---|---|
| Altered text/numbers | +40 |
| Photoshopped image | +35 |
| Screen capture/photo of photo | +30 |
| Template mismatch | +25 |
| Low resolution | +15 |
| Expired document | +20 |
Fraud Score:
- 0-30: Authentic
- 31-60: Uncertain, manual review
- 61-100: Likely forged, reject
Biometric Confidence
Face match score (0-100):
| Score | Assessment | Risk Impact |
|---|---|---|
| 90-100 | Strong match | -10 (reduces risk) |
| 80-89 | Good match | 0 |
| 70-79 | Weak match | +15 |
| <70 | Poor match | +30 |
Liveness Detection:
- Pass: -5 risk
- Fail (deepfake detected): +50 risk
AML Risk
Screening results affect risk:
| AML Result | Risk Impact |
|---|---|
| No matches | 0 |
| Low-confidence matches | +10 |
| PEP (Tier 3) | +20 |
| PEP (Tier 2) | +30 |
| PEP (Tier 1) | +40 |
| Adverse media | +25 |
| Sanctions match | +100 (auto-reject) |
Country Risk
Based on FATF ratings and corruption index:
| Country Category | Risk Impact | Examples |
|---|---|---|
| Very Low Risk | -5 | Switzerland, Singapore, Nordic countries |
| Low Risk | 0 | US, UK, EU, Canada, Australia, Japan |
| Medium Risk | +15 | Most Latin America, Eastern Europe |
| High Risk | +30 | FATF Greylist countries |
| Very High Risk | +60 | FATF Blacklist (North Korea, Iran) |
Calculation Example
Base Risk Score: 50
Factors:
+ Document fraud score: 12 (-12 points, good document)
+ Face match score: 92 (-5 points, strong match)
+ Liveness: Pass (-5 points)
+ AML: PEP Tier 2 match (+30 points)
+ Country: United Kingdom (0 points)
+ Historical: First-time user (0 points)
Final Risk Score: 50 - 12 - 5 - 5 + 30 + 0 + 0 = 58
Risk Level: HIGH
Recommendation: Enhanced due diligenceKYT Wallet Risk Score
Scoring Factors
Cryptocurrency wallet risk (0-100):
| Factor | Weight | Description |
|---|---|---|
| Sanctions | Critical | OFAC/sanctioned addresses |
| Darknet Markets | 30% | Illegal marketplace interaction |
| Ransomware | 25% | Ransomware payments |
| Scam/Fraud | 20% | Fraudulent schemes |
| Mixing Services | 15% | Privacy tools |
| Gambling | 5% | Online gambling |
| Exchange | -10% | Legitimate exchange (reduces risk) |
Category Scores
Each category scored 0-100:
Example Wallet:
Sanctions: 0 (no sanctions)
Darknet Markets: 45 (traced funds)
Ransomware: 8 (distant connection)
Scam: 12 (low exposure)
Stolen Funds: 6 (minimal)
Mixer: 38 (mixed funds detected)
Gambling: 23 (some gambling)
Exchange: 65 (high exchange interaction)
Weighted Average: 45 × 0.30 + 8 × 0.25 + 12 × 0.20 + 38 × 0.15 + 23 × 0.05 - 65 × 0.10
= 13.5 + 2 + 2.4 + 5.7 + 1.15 - 6.5
= 18.25
After sanctions check (0, no sanctions):
Final Risk Score: 18
Risk Level: LOWSanctions Override: Any sanctions match = automatic 100 risk score
Transaction Depth
Risk calculated at different trace depths:
| Depth | Description | Processing Time |
|---|---|---|
| 0 | Direct wallet only | 1s |
| 1 | 1-hop sources | 2-3s |
| 2 | 2-hop sources | 5-10s |
| 3 | 3-hop deep trace | 15-30s |
Example:
Depth 0 (wallet itself): Risk = 10 (clean)
Depth 1 (direct sources): Risk = 35 (1 source is mixer)
Depth 2 (2 hops back): Risk = 62 (traced to darknet)
Depth 3 (3 hops back): Risk = 78 (ultimate source is ransomware)
Recommendation:
- Depth 1-2 for standard checks
- Depth 3 for high-value customersTransaction Risk Score
Real-Time Scoring
For each transaction, VeriPlus assesses:
| Factor | Description |
|---|---|
| Amount | Unusual transaction size |
| Frequency | Rapid succession of transactions |
| Velocity | Total value in time window |
| Destination | Risk of recipient |
| Structuring | Pattern to avoid reporting thresholds |
Velocity Rules
Monitor transaction volume:
Time Window: 24 hours
Transactions: 15
Total Value: $45,000
Average: $3,000
Max: $15,000
Risk Assessment:
- High transaction count (+20)
- Large total value (+25)
- Large individual transaction (+15)
Transaction Risk: 60 (HIGH)Structuring Detection
Detect attempts to evade reporting:
Example:
Transactions in 48 hours:
$2,900, $2,800, $2,950, $2,850
Pattern: Multiple transactions just below $3,000 threshold
Risk Flag: Structuring
Risk Score: +40Risk-Based Workflows
Low-Risk Flow
Risk Score: 0-30
Actions:
1. Auto-approve
2. No manual review
3. No additional checks
4. Normal monitoringMedium-Risk Flow
Risk Score: 31-50
Actions:
1. Standard verification
2. Basic AML screening
3. Approve with monitoring
4. Quarterly re-screeningHigh-Risk Flow
Risk Score: 51-70
Actions:
1. Enhanced verification (liveness)
2. Comprehensive AML screening
3. Manual review by compliance team
4. Source of funds verification
5. Monthly re-screeningCritical-Risk Flow
Risk Score: 71-100
Actions:
1. Reject automatically OR
2. Senior compliance review
3. In-depth investigation
4. Law enforcement notification (if sanctions)
5. Continuous monitoring if approvedCustom Risk Rules
Create organisation-specific rules:
Rule Examples
Rule 1: High-Value Customers
if (transactionValue > 10000) {
riskScore += 20;
requireManualReview = true;
}Rule 2: New Account Activity
if (accountAge < 30 && transactionCount > 10) {
riskScore += 30;
requireEnhancedDueDiligence = true;
}Rule 3: Country + Amount
if (countryRisk === 'HIGH' && transactionValue > 5000) {
riskScore += 40;
rejectAutomatic = true;
}Machine Learning Model
VeriPlus uses ML to improve risk scoring:
Training Data
Model trained on:
- 10 million+ verification records
- Known fraud cases
- Regulatory enforcement actions
- Industry fraud patterns
Features
ML considers 150+ features:
- Document metadata
- User behaviour patterns
- Device fingerprints
- Time of day, day of week
- IP geolocation
- Email/phone providers
- Typing patterns
Model Performance
| Metric | Value |
|---|---|
| Accuracy | 96% |
| False Positive Rate | 2% |
| False Negative Rate | 2% |
| AUC-ROC | 0.98 |
Continuous Improvement: Model retrained monthly with new data
Risk Score API
Get Applicant Risk
GET /api/v3/applicants/:id
Response:
{
"applicantId": "app_123",
"riskScore": 58,
"riskLevel": "HIGH",
"riskFactors": [
{
"factor": "AML_PEP_MATCH",
"impact": +30,
"description": "PEP Tier 2 match found"
},
{
"factor": "DOCUMENT_QUALITY",
"impact": -12,
"description": "High-quality authentic document"
}
]
}Get Wallet Risk
GET /api/v3/kyt/checks/:id
Response:
{
"checkId": "kyt_abc123",
"riskScore": 72,
"riskLevel": "HIGH",
"categoryScores": {
"darknetMarkets": 45,
"ransomware": 8,
"mixer": 38
}
}Audit and Compliance
Risk Score Explainability
Every risk score includes:
- Component breakdown - Which factors contributed
- Impact values - How much each factor changed the score
- Recommendations - Suggested actions
- Timestamp - When score was calculated
Example:
{
"riskScore": 65,
"components": [
{ "name": "Document Fraud", "score": 15, "weight": 0.35 },
{ "name": "Biometric Match", "score": 85, "weight": 0.20 },
{ "name": "AML Screening", "score": 40, "weight": 0.25 }
],
"rationale": "High risk due to PEP match and medium country risk",
"recommendation": "Enhanced due diligence required"
}Defensibility
Risk scores are:
- Auditable - Full calculation breakdown
- Reproducible - Same inputs → same score
- Explainable - Human-readable reasoning
- Compliant - Meets regulatory standards
Best Practices
- Set Clear Thresholds: Define accept/review/reject scores for your risk appetite
- Review Regularly: Audit risk model performance monthly
- Adjust for Business: Tune thresholds based on false positive/negative rates
- Document Exceptions: Record why high-risk customers were approved
- Monitor Drift: Track if risk score distribution changes over time
- Combine with Manual Review: Don't rely solely on automated scoring
- Update Rules: Adjust risk rules as fraud patterns evolve
Next Steps
Ready to get started?
Start with our free plan. No credit card required.