Ping Identity // Risk Policies
PingOne Risk was developed to enable organizations to preemptively filter out bad actors and other out of band sign on attempts and more. Designing the ability to tune multiple risk policies by either weights or scores was challenging and involved working directly with very large customers across multiple iterations until we nailed it down. To get these policies working smoothly required a project to add staging policies where the admin could tap into an existing policy, but make adjustments without affecting production and see which performed better.
Risk Policy – Weights
The weighted version of risk policies was the original and offered a highly visual way of tuning your policy to your org's needs.
Risk Policy – Scores
A weighed version of risk policies was added later to service the needs of admins that needed even more detailed control.
Policy List // Staging Policies
The last risk policy demonstrates how a staging policy is linked to the production active policy. This way adjustments can be made in staging without affecting production. If the admin finds the staging policy is performing better then can immediately replace production.
Default Risk Policy Editing
When a policy is clicked on from the list view the admin is taken into this view where they can add/remove predictors, set scores and risk thresholds and override rules. This offers a very granular control per-policy.