Difference between Adaptive MFA's `UntrustedIP` assessor and Bot detection's IP reputation risk signal

Problem statement

What is the difference between Adaptive MFA’s UntrustedIP assessor and Bot detection’s IP reputation risk signal? Do they both use the same signals to assess risk?


The Adaptive MFA untrusted IP assessor uses aggregated lists of IP addresses of known bad actors from across the internet to check if an IP address is present.

Bot Detection uses machine learning and our own tenant logs to identify patterns to determine the likelihood of whether or not an IP address is a Bot.