IMPact Index

What is the IMPact Index?

IMPact Index is a single metric (number) that enables security and messaging professionals to quickly and easily assess the aggregate, "point-in-time" risk posed by viruses, worms and other malware propagating thru real-time communication channels like IM, P2P, IRC, etc.

Why do you need the IMPact Index?

Security professionals are being inundated with alerts and bulletins on vulnerabilities and malware on a daily basis. The vast majority of these alerts are a low-risk nuisance rather than serious threats making it tedious for managers to distinguish between real attacks and minor annoyances. This barrage of alerts run the risk of engendering a "crying wolf" effect where security managers start ignoring alerts altogether. The IMPact Index indicates when an IT manager should pay attention to the threat environment.

How is the IMPact Index calculated?

The IMPact Index is carefully designed to reflect both the frequency and severity of current outstanding threats. It is calculated daily and normalized to ensure that large numbers of low level threats will not result in a high index reading. (Any number of headaches can not equal a heart attack).

The IMPact Index ranges from 1 to 9. A reading of three or less indicates that there are only low level threats in the environment. A reading between 4 and 6 indicates the presence of low and medium risks and a reading of 7 or greater indicates the presence of high level threats.

How should security managers respond to various index readings?

IMPact Index of 1-3:
Run all normal precautions including channeling all IM traffic through your FaceTime message proxy services. Appropriate P2P policies should be enforced with RTGuardian. Content filtering, SpIM protection, and anti-virus for all IM file transfers should be enabled. Be sure all anti-virus definitions are up to date and all updates to your FaceTime solution suite are current.

IMPact Index of 4-6:
New medium risk exploits have been discovered. Be on active alert and ready to shut down access to public IM and P2P networks. Be sure all anti-virus definitions are up to date and all updates to your FaceTime solution suite are current by the end of the business day. Depending on the nature of the threat, consider blocking file transfers via IM as an added precaution.

IMPact Index of 7-9:
High risk IM and P2P borne malware is in the wild. Within the hour, be sure all anti-virus definitions are up to date and all updates to your FaceTime solution suite are current. Generate usage reports to identify which users' PCs were active on IM and/or P2P prior to making the updates. Consider shutting down access to all unnecessary IM and P2P use until the IMPact Index goes down.