AccessGate
AccessGate is an optional Loci module for device, session, and checkpoint risk intelligence. It helps teams add context to login, onboarding, payment initiation, beneficiary changes, and other sensitive actions.
AccessGate does not replace transaction monitoring. It complements it by adding behavioral and environment signals that can be used in step-up, review, or decline decisions.
What AccessGate Evaluates
A checkpoint can include signals such as:
- Device identifiers and browser or mobile environment attributes.
- Operating system and app context where available.
- Screen, memory, permissions, and environment metadata where collected by the client SDK.
- IP, geolocation, velocity, and location consistency.
- Session behavior and historical profile consistency.
- Emulator, rooted or jailbroken device, automation, and remote-access indicators where detectable from available signals.
- Challenge and feedback outcomes.
Signal availability depends on the channel, SDK integration, client permissions, operating system restrictions, and deployment configuration.
Checkpoint Flow
- The client application collects supported device and session signals.
- The client sends a checkpoint request to AccessGate.
- AccessGate evaluates the request against device, session, profile, and policy context.
- The response returns a risk decision and supporting signals.
- The client applies the configured policy: allow, challenge, review, or block.
Common Use Cases
- Login risk scoring.
- New device detection.
- High-risk transaction step-up.
- Beneficiary creation or change review.
- Account recovery risk checks.
- Session anomaly detection.
- Device and profile intelligence for case investigations.
Investigation Context
When enabled, AccessGate evidence can be linked into Loci investigations by entity, customer, session, or device identifier. This helps analysts answer questions such as:
- Was this transaction initiated from a new or risky device?
- Did the location or network profile change suddenly?
- Were there emulator, automation, or device integrity signals?
- Has this device or profile appeared across multiple entities?
Scope
AccessGate focuses on device, session, and checkpoint risk intelligence for customer-facing digital journeys. Workforce monitoring, privileged-access monitoring, and employee-fraud programs require separate enterprise data sources and controls.
Durable device recognition depends on the available signals, SDK integration, permissions, platform constraints, and privacy requirements.