Device Trust Scoring
Banyan applies Trust Scoring to devices. We’re actively working to extend the Trust Scoring framework to users and services.
- Updated on Oct 11, 2022
- Overview of Device Trust Scoring
Overview of Device Trust Scoring
Trust Scoring helps admins understand the health of devices in their organization. The Trust Scoring process aggregates device signals (derived from Banyan or one of our integration partners) and evaluates these signals against admin-defined criteria. Based on the result of these evaluated signals, the device is assigned a Trust Level. Trust Levels are used within Banyan policies to determine the minimum required Trust Level for access to Banyan-protected services.
Trust Scoring Calculation
Banyan’s Trust Scoring calculation takes into account all Trust Factors applied to a device and the Trust Effect assigned to each of these Trust Factors. The result of this aggregated information is a single Trust Level, which describes the device’s overall security posture.
A device’s Trust Level can be used as input to zero-trust Policies. An organization’s admin configures Policies in terms of Trust Levels (and Roles) needed to access a service. If a device meets an organization’s Policy requirements, then it may continue accessing Banyan-secured resources. If a device does not satisfy key enabled Trust Factors (sufficient to meet the Trust Level threshold), then it cannot access Banyan-secured resources.
A device can have four different Trust Levels:
Always Deny: This is the lowest level of trust, representing devices that should not be trusted. Low: This is the second lowest level of trust, representing devices that only have access to basic support tools and general intranet home pages. Medium: This is the second highest level of trust, representing devices that admins can cautiously provide access to select protected resources. High: This is the highest level of trust, representing devices that are not compromised.
A Trust Factor is an attribute (visible to end users on their devices) that is evaluated against admin-defined criteria, used as input in the device Trust Scoring calculation. There are two types of Trust Factors: Banyan-sourced factors and externally sourced factors. Banyan-sourced factors are available when the Banyan app is deployed onto a device; Externally sourced factors, on the other hand, require a Trust Integration to be configured.
The Trust Effect is the impact of a Trust Factor on a device’s Trust Level when the evaluated device does not satisfy the Trust Factor requirements. The impact of each Trust Factor is determined by the admin.