Device browser risk scoring evaluates the security state of a device to determine whether an access request is permitted. It uses a combination of advanced device fingerprinting, cookie recognition, and sophisticated device/browser identification to provide access risk scores for devices that attempt to connect to applications and services. You can configure risk tiers and risk tags to classify devices, which are then used as criteria in application access control rules.

When an employee attempts to use their personal device to access a company resource, it undergoes a risk-scoring process. The access risk score is calculated by comparing the device to a list of a predefined set of criteria, which is defined by you. This enables you to balance the need for strict zero-trust security with the desire to enable employees to perform remote work.

Device Browser Risk Scoring

The device risk score for a device is determined by various factors, such as the device IP address, geolocation, and device ID, and the threat level of vulnerabilities (CVSS). The risk score for the machine is based on a combination of configurational and behavioral indicators, including a malicious software history, malware infections, or an insecure operating system.

For OT-classified monitored devices, the risk score is calculated by using a combination of digital footprinting, device fingerprinting, and cross-referencing with external databases to gather extra hidden data. This is then fed into the predictive rule engine, which calculates the score. The resulting machine risk score and device criticality are then retrieved from the Forescout Operational Technology (OT) plugin, eyeInspect Command Center, and stored in Assets view.