Risk profiles

The risk engine uses the active risk profile to calculate risk scores for incoming requests. The administrator can create risk profiles or use predefined risk profiles that are provided on IBM® Security Access Manager for Mobile.

There are two types of risk profiles:
Predefined risk profiles
Default risk profiles that are pre-configured on IBM Security Access Manager for Mobile.
Each predefined risk profile is tailored to a specific scenario.
Risk profiles
Custom risk profiles that the administrator creates.
Risk profiles include:
  • Attributes that the administrator specifies. The risk engine collects all of the attributes that the administrator specifies in the risk profile from each incoming request device.
  • Weight values for each attribute that the administrator specifies in the risk profile. The weight that an administrator gives to each attribute in the risk profile depends on the importance of each attribute. As the attributes increase in importance, their weight values also increase.
    Note: There is not a limit on the number of attributes that the administrator can include in a risk profile. However, the risk engine uses one risk profile at a time.
Parent topic: Administering Access Manager for Mobile
Related concepts:
Risk score calculation
Related reference:
Predefined risk profiles