Your suggested change has been received. Thank you.

Suggest A Change

Thank you! Your suggestion has been submitted.

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

There are some errors in your form.

Your Name This field is required

Your Email This field is required

How can we improve this content? This field is required

OneWelcome Identity Platform
- Explore Thales Docs

IDAAS core
User journey orchestration
Consent and preference management
Consent Management v2
- Admin UI guide
- Consent Management v2 APIs
Identity broker
Delegated User Management v2
Externalized authorization
Delegated user management
- Getting started
- Roles
- Rules
- User management
- Self service page
- Data
- APIs
- Apps
- Jobs
- Reports
Risk management
- Essential Edition
- Enhanced Edition
Mobile identity
- Mobile identity - Access component
- Mobile identity - Tulip
Mobile SDK
API references
Release notes and FAQ
Policy-Based Authorization Manager
Integrations
Identity Orchestrator (IO)

All

All

Risk management

Please Note:

Risk management
Essential Edition
- Default rules
- Default policies
Enhanced Edition
- Quickstart
  - Tutorial overview
  - Collecting Signals
    - Collecting signals from a mobile
    - Collecting signals from a web page
    - Android
    - iOS
  - Evaluating risk
- Guides
  - What is a policy?
  - Managing policies in the IFP console
  - Evaluate risk with auth feedback
    - Overview
    - Collecting Signals
    - Risk Evaluation
    - Authenticating
    - Authentication Feedback
  - Reporting fraudulent transactions
  - Change password or PIN
  - Ionic Mobile Integration
    - Introduction
    - Setup your environment
    - Create Cordova Plugin
      - Introduction
      - Creating the native Android part of the plug-in
      - Creating the native iOS part of the plug-in
    - Add the plug-in to the app
- REST API
  - Partners
    - Partner technologies overview
    - Thales
    - ThreatMetrix
    - Global Score
      - Description
      - Global score computation
  - Authentication and authorisation
  - Implementing Client-Side Mutual TLS Authentication
  - OpenAPI - stand alone IFP
- SDK
  - Web SDK
    - Risk Management Javascript SDK
    - CORS (Cross-Origin Resource Sharing)
    - Definitions
    - Framework v1
      - Overview
      - Signal collection For a Multi Page Website
    - Framework v2
      - Overview
      - Specification
      - Integration examples
      - Partners Integration
  - Mobile SDK
    - Introduction
    - Overview
    - Signal groups and corresponding signals
      - Overview
      - Signal group size
    - SDK variants
    - SDK compatibilities
    - Release notes
    - Security
      - Android
      - iOS
    - Integration guidelines
      - Before you start
      - Basic integration
      - Advanced use cases
      - Debug vs. Release builds
      - Removal of Zimperium and InAuth SDK
      - Error codes
      - Troubleshooting
    - Permissions
      - OIP Risk Management SDK permissions
      - Permissions required for ThreatMetrix
      - iOS Certificate Pinning For Release Configuration
    - Privacy
      - Apple app privacy
    - Other
      - Android application size reduction
      - Exporting ThreatMetrix Certificate from Browser
      - Third-party libraries
      - Frequently asked questions
      - Appendix A: Evaluation
    - Glossary
    - API reference
    - Supported plaforms

Was this document helpful? Yes No

Feedback Sent!

If you like, you can provide additional feedback.

OneWelcome Identity Platform
Risk management

Risk management

In today’s environment, with everything increasingly online, organizations face mounting challenges, from regulatory changes to cyber threats where risks are not only financial but also reputational. Proactive risk management is essential for maintaining business continuity, meeting compliance obligations, and protecting critical assets.

OneWelcome Identity Platform Risk Management is a cloud-based solution that helps enterprises identify, assess, monitor, and mitigate risks across digital channels. It is grounded in financial-services–grade controls and analytics, meeting the high bar set by banks and insurers, while supporting organizations with stringent risk and compliance obligations through consistent, policy-driven protection.

Risk management services are at the heart of our OneWelcome Identity Platform, to secure and enhance onboarding and access to digital services. They allow organizations to assess every single online session in real time and seamlessly (without user interaction), to evaluate the risk and select the most appropriate actions.

During the onboarding process, risk management can be used to provide identity affirmation, that is, the possibility to complement the identity proofing process by providing assurance for a claimed identity.
For access to digital services, risk management can determine the most appropriate authentication method to use: allow the operation, block it, or challenge the user with step-up authentication, all running silently in the background to provide the best user experience.

Risk management editions

Essential Edition

Provides fundamental rules for making decisions about login flows on desktop and mobile web, delivered via OneWelcome Identity Platform-hosted pages.

See the Essential Edition page for comprehensive documentation:

Default rules — Available rules with configurable parameters
Default policies — Pre-configured policies for common scenarios

Enhanced Edition

Provides an advanced risk-based engine with policies, risk scores, and comprehensive rule sets to tackle complex fraud (such as phishing or social engineering) using an ML model. Use cases cover any type of sensitive actions from account creation to transfer, login, new beneficiary, and so on. Integration is done via RESTful API, JavaScript for web, and mobile-native SDKs.

See the Enhanced Edition page for comprehensive documentation. Key sections:

Quickstart — Getting started with signal collection and risk evaluation
Guides — Advanced topics, policy management, fraud reporting
REST API — Risk evaluation and feedback APIs
Web SDK — JavaScript SDK for web applications
Mobile SDK — iOS and Android native SDKs

Use in login flows

Risk management can be used in login flows to branch the user journey based on the evaluated risk level (low, medium, high) and apply step-up authentication when needed.

How it works

Signal collection: Device and context signals are captured from user devices via a lightweight JavaScript snippet (web) and mobile SDKs (Android/iOS).
Real-time, on-demand evaluation: Risk is categorized as Low, Medium, or High per event in real time, enabling immediate decisions.
Actionable outcomes: Policy-driven decisions that Allow, Deny, or Challenge (such as step-up authentication), minimize friction for trusted users while increasing protection.

Risk Management principles

Following each risk evaluation, the service leverages outcome feedback, whether an action was allowed, challenged, or denied, and uses it to refine future risk decisions. Positive signals (such as a recent successful authentication on a recognized device) lower friction for trusted, recurring users, while confirmed fraud reports strengthen detection—improving accuracy and reduce false positives for a better user experience. Depending on the implementation, feedback collection can be automatic or require additional integration.

Integration process (Enhanced Edition)

The Enhanced edition follows a three-step integration process:

Step 1: Collecting Risk payload

Embed the risk signal collection scripts/SDKs into your web pages or mobile applications. These scripts/SDKs create a risk payload that must be sent to your application backend with the user's request data to perform a risk assessment.

See the Web SDK and Mobile SDK documentation for full client-side integration details. Follow the Quickstart section for step-by-step examples.

Step 2: Performing a risk assessment

Modify your back-end server to call the OIP Risk Management API to obtain a risk score. The back-end API is fully documented in the REST API section. See the Integration Guides for detailed examples.

Step 3: Providing feedback

After a risk assessment is performed, update OIP Risk Management about the outcome of the user's request (success, failure, etc.) to help improve subsequent risk assessments. Use the Fraud Feedback REST API to report the result of the user action once it completes.

What is a policy?

A policy defines the decision logic for a risk evaluation. It considers context signals, rules, and scores to determine an outcome: allow, challenge, or deny.

How a policy works

A policy contains ordered scenarios (conditions based on context, rules, and scores).
Scenarios are evaluated from top to bottom.
The first matching scenario returns its associated decision.
If no scenario matches, the policy either returns its default decision or passes control to the next policy.

Multiple policies

You can define multiple policies, which are evaluated in the order that they are listed.
A policy is only evaluated if its operating context matches the request’s scope, otherwise it is skipped.
Evaluation continues until a decision is made or the default policy is reached.

Scope and operating context

When requesting a risk evaluation, you do not specify a policy directly.
You provide a scope (such as a use case, user or transaction type, or environment).
A policy is considered only if its operating context matches that scope.

Scenarios or steps

A policy can contain zero or more scenarios.
Scenarios are evaluated in the order that they are listed.
Each scenario has an associated decision and is defined with one or more conditions.
A scenario matches only if all of its conditions are met.
When a scenario matches, evaluation stops. No further scenarios or policies are evaluated, and the scenario’s decision is returned.

On this page

OneWelcome Identity Platform

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com

Support
- Customer Release Notes
- Support Contacts
Legal
- End User License Agreement
- Terms of Service

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com