Trust Scoring and Counterparty Controls
Trust scoring is how Conto turns recipient history, verification, and network intelligence into a practical control surface for agent payments. It helps answer a simple question before money moves:How comfortable should this agent be paying this address right now?
Two Layers of Trust
Conto maintains two complementary trust scoring layers:- Per-organization trust: your org’s local view of a counterparty based on your own transaction history with them.
- Network trust: a cross-organization view of a counterparty across all Conto customers, treating signals like a credit bureau.
What Feeds the Trust Score
Conto calculates trust with four weighted components:
This means trust is not based on a single signal. A new counterparty can improve over time through
successful activity, while a once-safe counterparty can degrade if failure or alert signals appear.
How Trust Levels Are Assigned
Internally, Conto calculates a score on a0.0 to 1.0 scale and then maps it to a trust level.
Low data is not the same as malicious behavior. Conto treats many new counterparties as
UNKNOWN
rather than auto-blocking them.Lifecycle Statuses
Trust level is an evidence signal. Lifecycle status is the operator control state that Conto stores on each counterparty and maps back into policy-compatible fields.
SDK and dashboard counterparty APIs expose the canonical
lifecycleStatus while continuing to
return trustLevel and approvalStatus for existing policy rules.
External Enrichment and Compliance Signals
Conto Network Intelligence
Conto aggregates anonymized network signals across organizations to improve counterparty evaluation. This data takes precedence when it exists because it reflects real payment behavior on the platform. Operators can now inspect that network layer directly in the dashboard, not just infer it from a policy result. The Network workspace exposes detailed entity views, trust lookups, alert context, and network-wide strength summaries so teams can see why an address is unknown, verified, trusted, or blocked.Fairscale for Solana
For Solana addresses with no existing network trust score, Conto can enrich the counterparty with Fairscale data.- Used for cold-start reputation on Solana
- Normalized into Conto’s
0.0 - 1.0trust scale - Fail-open design: enrichment helps, but provider unavailability does not automatically block
Sanctions Screening
Sanctions and compliance checks are separate from trust scoring.- Local OFAC screening is built in
- Chainalysis and TRM Labs can be layered on for enterprise use
- Compliance checks are fail-closed for enterprise screening providers
How Trust Becomes a Control
Trust data feeds directly into policy evaluation. Common trust-aware controls include:TRUST_SCOREthresholds- Counterparty status and trust-level rules
- New-recipient approval workflows
- Auto-freeze and alert thresholds when trust drops sharply
Canonical Patterns
1. New vendor safe path
- Unknown counterparties are allowed to exist but not to spend freely.
- Require approval for first payments or low-trust recipients.
- Promote to normal flow once transaction history and verification improve.
2. Trusted vendor fast path
- Allow trusted or verified counterparties to pass with fewer interruptions.
- Keep hard denies for sanctioned or blocked recipients.
- Layer spend limits and time windows on top of trust so no single signal has too much power.
3. Solana cold-start enrichment
- Use Fairscale when a Solana recipient has no Conto network history.
- Combine that score with a conservative approval threshold.
- Let the relationship graduate as real transaction history builds.
4. Trust deterioration response
- Watch for trust score drops, repeated failures, or new flags.
- Route affected counterparties into approval workflows.
- Use alerts or auto-freeze when trust degradation becomes severe.
Look Up Trust Programmatically
Use the SDK network trust endpoint to inspect any wallet address:- Global trust information
- Agent-specific relationship trust, when it exists
- Flags and risk indicators
- Aggregate transaction history
- recommendation tier
- behavioral red flags
- pillar scores and badges
- confidence and verification hints
What Operators Can Inspect
The Network dashboard is meant to answer two different questions:- What does the network know about this address right now?
- How much shared intelligence is my organization currently participating in?
- detailed entity lists ranked by transaction volume and trust level
- first-seen and last-seen timing for known entities
- network-wide transaction counts, participating organizations, and tracked volume
- your organization’s own contribution to a known entity, including local flags or block signals
- trust lookups for EVM addresses, Solana addresses, and supported domains
Network Sharing Modes
Organizations can control how they participate in network intelligence from Settings.
If sharing is disabled, network lookups degrade gracefully: Conto returns an
UNKNOWN baseline and
explains that shared trust signals are paused until the organization re-enables network
intelligence.
Trust, Approvals, and Policy Design
Trust scoring works best as part of a layered model:- Use trust to classify recipients.
- Use approvals to review the gray area.
- Use hard policy denies for clearly forbidden destinations.
- Fast lane for trusted counterparties
- Review lane for unknown or changing counterparties
- Blocked lane for clearly disallowed behavior
Related Guides
Trust Providers
See Fairscale, sanctions screening, and provider priority
Approval Workflows
Use trust levels as a review trigger
Securing Agents
Build a layered risk model for agents that spend
Recipes
Copy-paste trust lookup and policy setup commands