Lists and Rules in Verisoul

Verisoul provides a robust fraud prevention system built around two core concepts: Lists and Rules. This guide will help you understand how to effectively use these tools to protect your application from fraud while maintaining a smooth user experience.

Lists: Managing User Groups

Lists are a fundamental tool for organizing accounts and implementing specific fraud prevention workflows. They allow you to categorize users and apply different treatments based on their status.

For detailed API documentation on implementing Lists, see the Lists API Reference.

Types of Lists

Standard Lists

Verisoul provides three built-in lists that form the foundation of fraud prevention:

List NamePurposeEffect
Allow ListTrusted accountsMarks accounts as Real (affects decision field only)
Block ListRisky accountsMarks accounts as Fake (affects decision field only)
Main Account ListPrimary user accountsSets multiple_accounts score to 0

Custom Lists

Create your own lists for specific use cases such as:

  • High-risk users requiring additional verification
  • Users under review
  • Special access groups
  • Industry-specific categories

List Properties and Behavior

Key Characteristics:

  • Standard lists are mutually exclusive (one account, one standard list)
  • Custom lists can have overlapping membership
  • Standard lists are permanent and cannot be deleted
  • Custom lists can be created and deleted as needed
  • Lists can only contain account entities

Important Notes:

  • Dashboard updates require an API call to reflect in your application
  • Webhook notifications for list changes coming soon
  • Lists can be managed via both Dashboard and API

Rules: Automated Decision Making

Rules enable real-time, automated decision-making by defining conditions that trigger list additions. They form the dynamic component of your fraud prevention strategy.

Understanding Rules

Core Characteristics:

  • Multiple rules can run simultaneously
  • Evaluated in real-time on every API request
  • One rule can output to one list only
  • Rules can add to lists but cannot remove entries
  • Complex logic supported through AND/OR operators

Rule Execution

Rules are evaluated during key account interactions:

  • Account Events: Authenticate and Get Account operations
  • Session Events: Real-time session data analysis
  • Evaluation Order: All applicable rules are processed in parallel
  • Response Time: Rules are processed synchronously with API requests

Example Rule Patterns

// Geographic Restriction
{
  condition: "country != 'US'",
  action: "ADD_TO_BLOCK_LIST"
}

// Trusted Domain Allowance
{
  condition: "email_domain == 'trusted-company.com'",
  action: "ADD_TO_ALLOW_LIST"
}

// Complex Verification Logic
{
  condition: "(country == 'US' AND proxy <= 0.1) OR domain in top_1000_sites",
  action: "ADD_TO_TRUSTED_USERS_LIST"
}

Coming Soon

Upcoming Features:

  • Self-service rule creation UI
  • Webhook notifications for list changes
  • Enhanced rule templates

Need help implementing lists and rules? Contact our support team at support@verisoul.com