Correlation
When TMSP receives detection logs from Threat Discovery Appliance, it correlates the logs with the threat correlation rules to calculate the unique number of threat incidents in the network. Information about threat incidents is available in the reports.
Trend Micro updates threat correlation rules periodically to fine tune the metrics used for calculating threat incidents. This procedure is necessary because the nature, prevalence, and classification of threats change over time.
Your Trend Micro representative will contact you when updated threat correlation rules become available.
When you upload the file containing threat correlation rules, malware mapping settings are also updated. For details about malware mapping settings, see Updating Malware Mapping Settings.
To update threat correlation rules:
Administration > Threat Correlation Rules
Type the full path of the file or click Browse to locate the file.
Click Upload.