Deep Discovery Advisor Risk Levels and IMSS Security Level Settings

IMSS takes action on ATSE-detected messages based on the risk level returned by Deep Discovery Advisor and the security level that you select on the IMSS management console.

Note

IMSS does not delete suspicious attachments from messages detected by ATSE.

The following table contains the security levels and the corresponding Deep Discovery Advisor risk levels that trigger an action from IMSS.

Tip

Trend Micro recommends setting the security level to Low.

Security Level	Description	Risk Level
High	Apply action on all messages exhibiting any suspicious behavior	High risk Medium risk Low risk
Medium	Apply action on messages with a moderate to high probability if being malicious	High risk Medium risk
Low	Apply action only on messages with a high probability of being malicious	High risk

Note

If you select the Quarantine action in a virus rule and IMSS receives a valid risk level from Deep Discovery Advisor, the risk level and security level determine if IMSS intercepts and reprocesses the message. If you select any other action, IMSS processes the message according to the rule configuration and logs the Deep Discovery Advisor risk level.

$('#title').html($('meta[name=description]').attr('content'));