Information on Threat Risk Levels assigned to websites in Cloud SWG (formely WSS)
Article ID: 224102
Updated On:
Products
Cloud Secure Web Gateway - Cloud SWG
Issue/Introduction
You want to know how the Threat Risk levels for websites are determined.
These are used in rules under the "Threat Protection" (TP) policies in your Cloud SWG Portal.
Cause
Threat Risk Levels are dynamically managed by the Global Intelligence Network (GIN).
Resolution
The Symantec Global Intelligence Network (GIN) provides data feeds that contain category risk ratings to the Cloud SWG (formely WSS).
The risk rating ranks from 1 to 10, and has the following labels:
|
Score
|
Description
|
|---|---|
|
1-2
|
Content is Very Likely Safe. Sites have a proven history of proper behavior. |
|
3-4
|
Content is Likely Safe. Sites are beginning to establish a history of proper behavior. |
|
5-6
|
Content is Cautious. Possibilities exist that the sites might not be yet be proven to be safe. |
|
7-8
|
Content is Suspicious. Evidence exists that the sites are possibly malicious. |
|
9-10
|
Content is confirmed as Malicious. Solid evidence that the sites are malicious. |
For more information, please see: Cloud SWG Malware Policy From Risk Score
White Paper: The Need for Threat Risk Levels in Secure Web Gateways
Feedback
Yes
No
Powered by
