Determinism + Transparency: The Use Cases Waiting to Be Unlocked
There's a world where LLMs sit comfortably inside traditional model-risk frameworks. With deterministic inference and transparent models, we're closer than you think.
Paul Merrison 
There’s a world where LLMs sit comfortably inside traditional model risk frameworks. It’s not the world we live in today—but it’s closer than most people realize.
The previous posts in this series covered why banks can’t deploy LLMs for Tier 1 use cases: non-determinism breaks validation; proprietary opacity breaks documentation. Together, these create an impassable regulatory wall.
But walls can be dismantled. Here’s what the other side looks like.
Tetrate offers an enterprise-ready, 100% upstream distribution of Istio, Tetrate Istio Subscription (TIS). TIS is the easiest way to get started with Istio for production use cases. TIS+, a hosted Day 2 operations solution for Istio, adds a global service registry, unified Istio metrics dashboard, and self-service troubleshooting.
What Determinism Actually Gives You
Recent research has demonstrated that deterministic LLM inference is achievable under controlled conditions. IBM and others have published work showing how to eliminate the sources of non-determinism—GPU parallelism variance, sampling randomness, floating-point instabilities—while preserving model quality.
This isn’t theoretical. Deterministic inference is running in research settings today.
What does determinism give you? Same input → same output, every time. Not probabilistically similar outputs. Identical outputs. The same bytes.
This doesn’t eliminate errors. The model can still hallucinate, can still be wrong, can still produce problematic outputs. Determinism doesn’t make the model better—it makes the model measurable.
Validation becomes feasible. Run your test suite today, run it tomorrow—same results. You can measure accuracy and know it means something. You can establish baselines that don’t drift randomly. You can compare model versions and isolate the effect of changes.
Independent validation works. Your validators can reproduce your results exactly. Their measurements match yours. Auditors can verify claims because claims are verifiable.
Monitoring becomes meaningful. When your metrics change, you know something real happened. You can detect drift because you can distinguish signal from noise. Your alerting thresholds mean something.
Change management functions. Before/after comparisons are valid. Prompt updates have measurable effects. Regression testing actually tests for regressions.
None of this is possible with non-deterministic models. All of it becomes possible with determinism.
What Transparency Adds
Determinism solves the measurement problem. Transparency solves the documentation problem.
Open-weight models with disclosed training data let you answer the questions that SR 11-7 asks:
- What training data was used? You can document it, assess its relevance to your domain, identify potential biases and gaps.
- How was the model constructed? Training methodology, fine-tuning objectives, architectural choices—all documentable.
- Why should it generalize? You can make a defensible argument based on training data coverage and demonstrated domain performance.
- What are the limitations? With visibility into construction, you can identify where the model should and shouldn’t be trusted.
You can also control versioning. No silent updates. No dependency on vendor API stability. The model you validated is the model running in production because you control both.
Transparency doesn’t give you causal explanations for individual outputs. Neural networks don’t work that way. But it gives you a defensible theory of operation—which is what regulators actually need.
Determinism gives you stability. Transparency gives you defensibility. Together, they’re sufficient for traditional MRM frameworks.
The Use Cases That Move From “Absolutely Not” to “Governable”
Automated Credit Decisioning
Not “assist the analyst”—actual yes/no adjudication. Deterministic extraction from loan applications, deterministic scoring, deterministic narrative justification. The decision pipeline produces the same output for the same input, every time.
This is transformative for SME and commercial credit, where document analysis currently requires expensive human judgment. With deterministic, documentable LLMs, you can scale credit assessment while maintaining audit trails that satisfy examiners.
The key: every decision is reproducible. If a borrower challenges a decline, you can rerun the exact same process and get the exact same result with the exact same explanation.
KYC/AML/Fraud Classification
Stable risk signals that don’t change day-to-day. Run the same customer through the same classification system twice—same risk tier, same flags, same rationale.
This matters because KYC decisions get audited. When an examiner asks “why was this customer flagged?” you need an answer that’s consistent with your records. Non-deterministic systems can’t provide that. Deterministic systems can.
It also reduces false positives. When you can actually measure precision/recall and tune thresholds meaningfully, you can optimize the trade-off between risk coverage and operational burden.
Document Intelligence in Regulated Workflows
Extraction that feeds downstream scoring models. Income verification, employment confirmation, risk-relevant feature extraction from unstructured documents.
This isn’t a convenience tool—it’s pipeline automation. The extracted features go into credit models, compliance workflows, reporting systems. Those downstream consumers need stable inputs. Non-deterministic extraction introduces variance that propagates through the entire system.
With deterministic extraction, document intelligence becomes a reliable pipeline component rather than a source of instability.
Compliance and Supervisory Reporting
Regulatory interpretation that’s consistent across documents, across analysts, across time. If section 3.2 of a regulation means X today, it means X tomorrow.
Supervisory reporting has zero tolerance for variance. The numbers you report to regulators need to be reproducible and defensible. Deterministic extraction makes LLM-assisted reporting viable; non-deterministic extraction makes it impossible.
Wealth, Treasury, and Trading Operations
Predictability is non-negotiable in these domains. Research summarization, document analysis, client communication review—all become tractable when outputs are reproducible.
Trading desks won’t touch systems where “try running it again” is a valid debugging strategy. Deterministic outputs make LLMs palatable to functions that have traditionally rejected them entirely.
What’s Still Hard
Determinism and transparency don’t solve everything. Some challenges remain:
Hallucinations. Deterministic hallucinations are still hallucinations. You need output validation, retrieval grounding, and human review for high-stakes decisions.
Prompt injection. Adversarial inputs can manipulate outputs regardless of determinism. You need input sanitization and architectural defenses.
Defining operational domains. LLMs accept unbounded natural language inputs. Specifying where the model should and shouldn’t be trusted is harder than for traditional models with fixed feature sets.
Brittleness to linguistic variation. Small changes in phrasing can produce large changes in output—deterministically. This complicates boundary definition and user experience.
Lack of causal grounding. Even transparent models don’t provide mechanistic explanations for outputs. You can document what trained the model without explaining why it produces specific outputs.
These problems are real but tractable. They need guardrails, testing, monitoring, and operational controls—the standard toolkit for deploying any ML system responsibly.
The difference: with determinism and transparency, you can apply that toolkit effectively. Without them, the toolkit doesn’t work.
The Path Forward
The pieces are coming together:
Open-weight models with documented training data. Llama, Mistral, Qwen, and others provide the transparency that proprietary models can’t.
Deterministic inference under controlled conditions. Research has demonstrated feasibility; productization is underway.
Bank-controlled fine-tuning with known data lineage. When you train on your own documents, you can document your training data.
Infrastructure-layer governance for consistent policy enforcement. Centralized routing, guardrails, and monitoring that work regardless of the underlying model.
The big AI labs—OpenAI, Anthropic, Google—won’t get a look in for Tier 1 use cases without radical transparency changes. Their models might be better on benchmarks, but benchmarks don’t matter if you can’t deploy.
Banks aren’t waiting for permission. They’re waiting for technology that satisfies their existing requirements. That technology is emerging.
The Tier 3 ghetto isn’t permanent. The $920 billion in trapped operational efficiency isn’t trapped forever. The combination of determinism and transparency opens the door.
Agent Router Enterprise provides the control plane for deploying transparent, governable AI at scale. The LLM Gateway offers centralized model routing—including to open-weight models you control. AI Guardrails enforce consistent policies across your agent portfolio. Behavioral metrics help you gain confidence before graduating agents to production. Built on the battle-hardened Envoy AI Gateway with pre-built FINOS AI Governance Framework integration. Learn more here ›
Paul Merrison 
