Bank-Grade Integration API

Connect. Decide. Document. All within your perimeter.

The Integration API gives core banking systems, fraud consoles, and compliance workflows a single, secure connection to the Compact Machines decision engine — with a full audit trail across every call.

3 Protocols

REST · WS · gRPC

one integration surface

Air-Gapped

Private network ready

no public cloud routing

100%

Decisions logged

model version attached to each

SAR-Ready

Dossier export

compliance packaged per alert

Architecture

One gateway. Your systems stay in control.

The API acts as a single, controlled integration point between your banking infrastructure and the decision engine. Nothing leaves your network without explicit configuration.

Core Banking

payment rails, accounts

Fraud Console

alert triage, dispositions

Compliance Tooling

SAR filing, dossiers

API Gateway

Bank-Grade Integration API

RESTWebSocketgRPC

Decision Engine

Compact Machines Platform

Runs entirely within your network perimeter

Connection Modes

Three protocols for every integration pattern

RESTSynchronous

Standard request-response for alert queries, disposition submissions, model version lookups, and compliance dossier exports.

GET /alerts
POST /alerts/:id/disposition
GET /model/versions
POST /dossier/export
WebSocketStreaming

Persistent connection for real-time transaction score feeds. The scoring stream emits one scored event per 500ms and connects directly to review console UIs.

WS /stream/transactions
WS /stream/alerts
gRPCHigh-Throughput

Binary protocol for high-frequency scoring requests and batch submission. Preferred for core banking system integrations where latency SLAs are strict.

DecisionService.Score
DecisionService.ScoreBatch
AlertService.List

Integration Patterns

Four patterns banks deploy on day one

Real-Time Payment Scoring

Core Banking → API → Decision Engine → Response (< 150ms)

Each transaction submitted to the payment rail is scored before it clears. The API returns a routing decision — auto-clear, review, or block — within the settlement window.

Alert Feed to Review Console

Scoring Engine → WebSocket Stream → Review UI

High-confidence and borderline transactions appear in the analyst console as they arrive. No polling, no batch jobs — alerts surface the moment the threshold is crossed.

Compliance Dossier Export

Alert → Disposition → API → SAR Package

Once an analyst dispositions an alert, the API assembles a complete dossier — transaction record, risk evidence, model version, threshold in force — ready for regulatory submission.

Batch Overnight Screening

File Submit → Batch Score → Results Return

Submit a batch of transactions at end-of-day or end-of-week for offline scoring. Same decision engine, same threshold policy, results returned with full provenance per record.

Security Posture

Designed for bank security standards

Private Network Deployment

The entire API surface runs inside your network perimeter. No transaction data leaves your environment. No public cloud routing for sensitive payment flows.

Environment Isolation

Separate deployment targets for development, staging, and production. Credential sets do not cross environments. Each environment maintains its own audit log.

Typed Data Contracts

All API inputs and outputs are validated against versioned schemas. Malformed or unexpected data is rejected at the boundary — not silently absorbed.

mTLS Authentication

Mutual TLS on all service-to-service calls. Caller identity is verified before any decision endpoint responds. Compatible with existing PKI infrastructure.

Audit Trail

Every event recorded. Nothing reassembled after the fact.

The API generates a continuous, tamper-evident event log across every call, decision, disposition, and model change. Examiners can reconstruct any decision from first principles — without involving engineering.

  • Every API call logged

    timestamp, caller identity, endpoint, response code

  • Decision provenance attached

    model version + threshold in force at call time

  • Disposition record created

    analyst identity, outcome, attached dossier ID

  • Model version changes tracked

    promotion, rollback, approval actor, timestamp

  • Threshold policy changes versioned

    previous value, new value, approving user

  • Retrain events recorded

    training corpus reference, metrics, gate result

Systems Connected

Core Banking Platform

Transaction submission, account signals

Fraud Operations Console

Alert feed, disposition, dossier export

AML Review Workspace

Pattern alerts, SAR assembly, audit trail

Risk Reporting Layer

Decision accuracy metrics, cohort performance

Regulatory Filing Systems

Compliance dossier delivery, SAR submission

Connect your first system in a day

We walk through the integration surface with your platform team — selecting protocol, mapping endpoints, and running a live transaction through the scoring path.