Risk profiles
The risk engine uses the active risk profile to calculate risk scores for incoming requests. The administrator can create risk profiles or use predefined risk profiles that are provided with Advanced Access Control. There are two types of risk profiles:
- Predefined risk profiles
- Default risk profiles that are pre-configured on an appliance that has Advanced Access Control.
- Each predefined risk profile is tailored to a specific scenario.
- Custom risk profiles
- Custom risk profiles the administrator creates.
Risk profiles include:
- Attributes the administrator specifies. The risk engine collects all of the attributes the administrator specifies in the risk profile from each incoming request device.
- Weight values for each attribute the administrator specifies in the risk profile. The weight that an administrator gives to each attribute in the risk profile depends on the importance of each attribute. As the attributes increase in importance, their weight values also increase. There is not a limit on the number of attributes the administrator can include in a risk profile. However, the risk engine uses one risk profile at a time.
Parent topic: Advanced Access Control administration
Related concepts