Web Reputation Rules Parent topic

HTTP > Advanced Threat Protection > Policies | Web Reputation Rules
Web Reputation provides a reputation score to URLs. For each accessed URL, IWSVA queries this service for a reputation score and takes the necessary action based on the user-selected sensitivity level.
Because a Web Reputation query also returns URL category information, a pattern-size dependent local database for URL filtering is no longer necessary. URL category filtering source depends entirely on the Web Reputation and the URL local cache.
Settings
To use the Web Reputation rule in this policy, you must select the Use Web Reputation rule in this policy check box, then enable this feature at the global level (HTTP > Advanced Threat Protection > Policies | Enable Web reputation checkbox). Clear the checkbox to disable it.
Sensitivity Level
Upon receiving the Web Reputation score, IWSVA determines whether the score is above or below the threshold. The threshold is defined by the sensitivity level specified by the user. Medium is the default sensitivity setting. This setting is recommended because it blocks most Web threats while not creating many false positives.
Note
Note
If you believe the reputation of a URL is misclassified or you want to know the reputation of a URL, use the link that follows to notify Trend Micro:
http://reclassify.wrs.trendmicro.com/submit-files/wrsonlinequery.asp
You can also select to enable the following features:
  • Include anti-pharming detection—Enable this feature to prevent attempts to redirect you to an imposter Web site.
  • Include anti-phishing detection—Enable this feature to block access to a phishing Web site that attempts to obtain your private information.
  • Include C&C Callback Attempt Detection—Enable this feature to block communication between compromised hosts and callback addresses.