Marble is an open-source Transaction, Event, and User real-time engine designed to help companies detect money laundering, service abuse or fraud behavior.
We provide an easy-to-use rule builder that can leverage any type of data, an engine capable of running checks in batch or in real-time, and a case manager to improve operational efficiency.
Marble is beneficial for payment service providers (PSPs), banking-as-a-service (BaaS) providers, neo banks, marketplaces, telecommunications companies... It allows them to quickly set up and update detection scenarios that generate decisions within minutes.
These decisions can trigger events in your systems, introduce friction, or restrict operations in real-time. They can also be investigated within Marble using our case manager or in your own system by utilizing our API.
Marble is developed with compliance requirements in mind, ensuring that everything is versioned and auditable without any time limitations.
Open-source, open architecture:
- Composable: Connect Marble to any of your internal systems or tools, such as transaction databases, KYC solutions, or 3rd party data providers.
- Pricing: Our self-hosted version is free. Our cloud version is priced like a SaaS and is surprisingly cheaper than market leaders.
- Privacy: Your data never has to leave your infrastructure.
NB: We do not provide KYC services. There are plenty of awesome players in the market that you can connect with :)
Marble core features
- Create detection scenarios based on rules.
- Run those scenarios in batch or real-time to generate decisions.
- Investigate decisions in your own system or within Marble's case manager.
- Manage custom lists such as known users, VPN IPs, and keywords.
- Create any type of data model to feed into Marble.
Released (overview)
- Rule engine: executes detection scenarios in batch or real-time.
- Batch run: can be scheduled or run on-demand.
- Real-time: triggered through an API.
- Data management: allows you to create your own data model for using Marble.
- Data interface: set up and describe the objects you want to send to Marble.
- Ingestion API: send any data to Marble.
- Rule builder: easily create detection scenarios using a user-friendly interface.
- Create scenarios.
- Create rules.
- Score-weighted final decision.
- Lists: create internal lists and keep them updated for use in rules.
- Case management: investigate decisions and create escalations.
- View decisions.
- Investigate a case.
- User management.
In development
- On-premise self-installation
Planned on roadmap
- Backtest: check scenario efficiency on your past data before pushing to production
- Supervised Machine Learning: use previous results to create a custom ML detection model
- Advanced connectors for unstructured data: use documents, GPS points, images… in your rules.
Marble's incredible flexibility is due to its fully open data model. Here are some applications already in use with Marble:
- Transaction monitoring for financial institutions (AML & fraud), supporting every type of payment scheme (including the exotic ones: Marble handles any type of data).
- User/account monitoring.
- User risk score calculation at onboarding and throughout their lifecycle.
- Event scoring: adding new beneficiaries, subscribing to new products, etc.
- Vendor/buyer checks for marketplaces: return abuse, fake transactions, etc.
- Condition abuse: robocalling for telecom companies, bot management on social networks and apps.
- Embedded in financial SaaS: fine control of expenses for end users.
Feel free to try other use cases and let us know! We'd love to hear from you.
Simply clone this repository and run docker compose --env-file .env.example up
(customize the .env-example file or provide your own copy).
It will run out of the box with the firebase auth emulator. If you wish to run Marble open-source in production, you will need to create a firebase auth app.
You can also take inspiration from the terraform templates provided in the repository to create a serverless GCP deployment of Marble, inspired by Marble's own cloud deployment.
The first time you run the code, you should enter an organization name and organization admin user email to create using the CREATE_ORG_NAME and CREATE_ORG_ADMIN_EMAIL environment variables. Unless using the firebase emulator, you must enter an actual email address that you own so that you may verify it and login with firebase. You can always create new organizations later using the same procedure.
In a local demo setup:
- just run the docker-compose as it is, it should work
- give the firebase emulator a moment to get started, it's a bit slow when first launched
In a production setup:
- set the
FIREBASE_AUTH_EMULATOR_HOST_SERVER
andFIREBASE_AUTH_EMULATOR_HOST_CLIENT
env variables to empty strings in your .env file - create a Firebase project and a Firebase app, and set the relevant env variables (
FIREBASE_API_KEY
toFIREBASE_APP_ID
as well asGOOGLE_CLOUD_PROJECT
) in your .env file - if you plan to use the batch ingestion feature or the case manager with file storign feature, make sure you create the Google Cloud Storage buckets, set the corresponding env variables and run your code in a setup that will allow default application credentials detection
Risk management is challenging for many companies. Currently, you can either:
- Build your own risk infrastructure:
- It’s a never-ending task.
- Building from scratch takes months and often falls short of end-user expectations.
- Essential elements like versioning and audit trails are often overlooked.
- Risk teams need updates urgently, but development teams need to scope and prioritize first.
- Or, spend a significant amount to buy a service where:
- Setup costs and time are substantial.
- You might lack full control over the applied rules.
- The scoring algorithm is “proprietary,” meaning you can’t explain it.
- There’s limited flexibility to connect your data and product specifics, such as limited payment schemes covered.
- Contract renewal is burdensome.
Marble offers a clear third option:
- Start Strong: Benefit from one of the best engines on the market for free. There’s no excuse for not having top-notch monitoring from day one.
- Privacy: Your data remains yours, always.
- Total Transparency: The code is open; you can see everything within the engine. You KNOW why an alert is raised every time; you don’t have to guess.
- Evolutivity: Use any data you want and evolve the model instantly. Adding a new product, even with a never-before-seen payment scheme, takes minutes.
- Community Driven: Contribute based on your needs: need a custom calculation? A third-party integration? It’s just a commit away.
We want to create an open environment and appreciate all types of contributions that benefits all current and future users. Here are some ways you can contribute:
- Give us feedback in our Slack community
- Help with bugs and features on our Issues page
- Submit a feature request or bug report
High level roadmap
Opensource - self installation
- Docker for GCP
- Docker for AWS
- Docker for Azure
Rule Engine :
- Realtime decision through API
- Scheduled batch decisions
- On-demand batch decisions
Rule builder
- Create and update a scenario
- Create and update lists
- No code rule creation
- Create Rules with group (OR) and conditions (AND)
- Associate a score weight with each rule
- Aggregate creation
- Use aggregates to manage one to many relations and searchs
- Duplicate agregates
- Nest agregates
- Connectors
- Boolean connectors (>,<,=,<>…)
- Text connectors (is in, is not in, contains, contains partially)
- Date connectors (before, within…)
- Nesting (sub-calculation within a single rule line)
- Previous results use (Has been flagged previously by)
- Unstructured data connectors (document contains, distance between GPS points…)
- Fuzzy text connectors (is close to…)
- Score based decision
- Supervised learning
- ML model creation
- ML model test
Data
- Define data model with objects and fields
- Define Enums
- Non-breaking update of data model
- Breaking update of data model
- Ingestion API
- Zapier connector for 3rd party
Audit
- Scenario, data and list versioning
- Front-accessible run logs
Case management
- Manage
- Create inboxes
- Create tags
- Create users
- Case investigation
- Create a case from a decision or from scratch
- Associate multiple decisions to a case
- Add commentary to a case
- Add documents
- View timeline
- View the environment of a case (linked users / transactions…)
- Graph relationship
- Set a reminder
- Case feedback to rule engine
- Case manager analytics
Analytics
- Scenario performance analytics
- Scenario A/B testing
- Backtest
Reach out to us on our website, on our slack, or ask for a demo here.
Made with ❤️ in 🇫🇷 by Marble