- November 4, 2022: Redirected infrastructure management resource to up-to-date content.
- February 3, 2020: Published.
Security ratings and the associated findings (events and records) are affected by changes to a company’s infrastructure (owned assets (IP/CIDR/domain). There may be changes to security ratings and reports, depending on how a company’s infrastructure is managed.
Refer to the following change types:
| Change Type | Change Description | Attribution |
|---|---|---|
| Addition | Infrastructure that has never been attributed to the company in the past is now attributed to the company. | The findings are attributed to the company from the moment of discovery and attribution. The security rating will be impacted going forward. |
| Expiration | An end date was added for a piece of infrastructure that previously had no end date set. | The findings are no longer attributed to the company upon the date of expiration and onwards. |
| Removal | Infrastructure that was present in the prior day is no longer present. This can occur if the infrastructure has been identified as never having belonged to the company. | The findings are completely and historically removed. The security rating is adjusted. |
| Ownership Change | The infrastructure has moved from one report to another within the Ratings Tree of the organization. | The findings will no longer be attributed to the previous owner and will start being associated with the new owner of the report within the Ratings Tree. |
| Renewal | Infrastructure that had been previously end-dated has been re-attributed to the company as of the start date. | The findings on this infrastructure are attributed to the company again as of the shown start date. |