Asset Mapping
      Back to home
      1. Security Rating® Knowledge Base
      2. Security Rating
      3. Asset Mapping

      Understanding how the asset mapping works

      Learn how the assets mapping write down the list of your accessible assets from the internet to be submitted for notation.

      Based on at least one root domain name, and thanks to resolutions on the DNS map and web applicativen the mapping identify a part of the public asset accessible from internet linked to the root domain name.

      Periodically, in accordance with the rating frequency of the concerned company, the mapping tool will look for changes within your asset mapping. It will recommend to update and include them in your next rating.

      The result of this identification is displayed on a dedicated interface.

      Assets identified are listed and classified automatically using differents categories :

      Type notion

      The asset are classified by type : domain name, IPs, or URLs.

      Tag Notion

      The system automatically detect different elements relating to assets.

      Tags Description
      Disabled
      Indicate that the asset should not be taken into account by the system. It will not be evaluated or measured. 
      Excluded
      Designate the asset as excluded from the overall assessment.
      Mail
      		 Identify a domain name that has MX records..
      Shared / Hosted
      Indicates that the asset does not belong to the client, is not under their control, and therefore should not impact their rating. It will not be evaluated or measured. 
      MX
      Identifies an asset that is referenced in an MX record.
      NS
      Identifies a domain that is referenced by an NS record.
      Privé (non évalué)
      Identifies a private IP address (172.16.xxx, 192.168.xxx, 10.xxx).
      RPLB
      Identifies recurring oscillations of open/closed ports. The asset does not impact the score. It's a status that can change over time.
      SCOPE
      Identifies the initial assets or manually added assets that serve as the root for the mapping.
      WEB
      Marks a domain name that has WEB services (http or https).
      Zone DNS
      IIdentifies a domain that has NS records.

      Asset group Notion

      Every asset is attributed to one of the three following groups :

       

      Groupe
      Description
      UC (Under Control)
      Proprietary assets
      ODC (Out of Direct Control)
      Third-party assets 
      OC (Out of Control)
      External assets

      Assets Under Control (UC) have been directly discovered due to the link with one or more assets of the scope. These can be FQDN from the scope or IPs. They are assets under the direct responsibility of the rated company.

      Assets Out of Direct Control have been discovered per rebound of scope assets, for example alias (MX or CNAME) that redirect to an FQDN. They can also be from web application (redirect). They are assets under the indirect responsibility of the rated company.

      Assets Out of Control (OC) are assets out of the DNS Zone of the root assets indicated in the scope. 

      Only assets included in the UC & ODC groups are taken into account for the rating.