Targeted Threat Protection User Awareness

Document created by user.oxriBaJeN4 Employee on Apr 11, 2016Last modified by user.oxriBaJeN4 Employee on Oct 9, 2017
Version 6Show Document
  • View in full screen mode

ttp_ua.pngIf User Awareness settings are enabled as part of a Targeted Threat Protection - URL Protect definition, users can be redirected to a page providing information

about the destination of the link they've clicked. Here the user can decide if they want to proceed to the destination site, or abort the request.

 

What happens next depends on:

  • Whether the URL is considered safe.
  • What action the user takes when presented with the user awareness page.

 

User Awareness Check Frequency

 

The frequency users are redirected to a user awareness page is controlled by the settings in the Targeted Threat Protection - URL Protect definition. The default value is 5%, but can be set to a value of between 1% and 100%, with the percentage value controlling the percentage of clicks that the user is shown the user awareness page. For example a value of 25% means the user is displayed the user awareness page every forth URL click. The frequency of the challenge is configurable using the Dynamic Challenge Adjustment setting, based on a percentage of links the user clicks. The feature becomes more or less aggressive on a per user basis, as the user clicks more and more links.

 

If the Disable User Awareness Dynamic Challenge Adjustment option is disabled in the definition, no changes to the user's personal challenge adjustment percentage are made. If the setting is enabled, the expected behavior is as follows:

 

ActionResult
The user clicks "Continue" on an unsafe link from a user awareness page.

25% is added to their personal challenge adjustment total.

The user clicks on a link blocked by Targeted Threat Protection - URL Protect when no user awareness page is displayed.

25% is added to their personal challenge adjustment total.

Automatically every Sunday

5% is taken off each user's personal challenge adjustment total.

User clicks "Exit" on an unsafe link from a user awareness page.5% is removed from their personal challenge adjustment total.
User clicks "Continue" on a safe link from a user awareness page.

No change is made to the personal challenge adjustment total.

User clicks "Exit" on a safe link from a user awareness page.

No change is made to the personal challenge adjustment total.

User clicks on a link in a message that has expired in the Mimecast archive.The user is not challenged for message links that have expired in the Mimecast archive.

The challenge percentage value cannot be lower than the value set by the administrator in the User Awareness Challenge Percentage field in the definition.

See Also...

 

2 people found this helpful

Attachments

    Outcomes