Description
The Security fabric score is calculated when a security rating check is run, based on the severity level of the checks that are passed or failed.
A higher score represents a more secure network.
Points are added for passed checks and removed for failed checks.
This article discusses about security fabric score.
Solution
The Security fabric score is calculated when a security rating check is run, based on the severity level of the checks that are passed or failed.
A higher score represents a more secure network.
Points are added for passed checks and removed for failed checks.
This article discusses about security fabric score.
Solution
To calculate the number of points awarded to a unit for a passed check, the following equation is used:
Score = <severity level weight> × <secure FortiGate multiplier>
<# of FortiGates>
The secure FortiGate multiplier is determined using logarithms and the number of FortiGate in the security fabric.
For example, if there are four FortiGates in the security fabric that all pass the compatible firmware check, the score for each FortiGate is calculated with the following equation:
50 × 1.292 = 16.15 points.
4
All of the FortiGates in the security fabric has to pass the check in order to receive the points.
If any one of the FortiGates fail a check, the units that passed are not awarded any points.
For the units that failed the check, the following equation is used to calculated the number of points that are lost:
Score = <severity level weight> x <secure FortiGate multiplier>
For example, if the check finds two critical FortiClient vulnerabilities, the score is calculated with the following equation:
-50 × 2 = -100 points.
Scores are not affected by checks that do not apply to the network.
For example, if there are no FortiAP units in the security fabric, no points will be added or subtracted for the FortiAP firmware version check.
