Risk control rules are to define some rules for each scene to carry out corresponding control, "no rules, no square circle". After having the scene, different rules are proposed for each scene. For example: for registration, you can ask how many minutes the same mobile phone number can get the verification code; for example: for withdrawal, you can withdraw the rules such as the single withdrawal limit or the single day withdrawal limit. As for the rules, in my personal opinion, the rules should be graded under conditions. This is because, in some scenarios, such as user withdrawal, the same rule, such as the upper limit of a single manual withdrawal, may trigger different risk control measures under different parameters, if the classification is passed.
In the case of these complex scenarios, finer control can be achieved and it will be more flexible. Risk control parameters Risk control parameters, which define the specific values of each risk control rule. Through the control of corresponding Fax List numerical values, we can achieve detailed control, distinguish different groups of people, and take different measures. For example, for registration, the same mobile phone number can obtain 3 verification codes within 10 minutes. Here the number of bars and the number of minutes can be parameters. For another example, the upper limit of a single transaction when withdrawing is 10,000 yuan. The 10000 here is the parameter.
Because the company is in a different stage every time, sometimes it needs to increase user activity or transaction volume, and sometimes it needs to control expenditure and reduce losses. At the same time, the external environment is constantly changing. For example, in the Internet finance industry, the state often issues policies, and these often require adjustment of the corresponding risk control parameters. Therefore, such things as parameters need to be settable in the background, so that they can be adjusted at any time.