Current ThreatQ Version Filter
About Data Controls
When you click the Threat Library option on the Main Navigation menu, the Data Controls section of the dropdown list allows you to access Indicator Expiration, Data Retention Policy, Scoring, TLP, and Whitelisting options.
These Data Control options allow you to configure:
| Section | Details |
|---|---|
| Indicator Expiration Policies | Configure expiration policies to automatically deprecate stale intelligence as it becomes less relevant. |
| Data Retention Policy | Automate the deletion of system objects based on the parameters defined in a Data Collection. |
| Scoring Algorithms | Configure scoring to filter through the millions of indicators your platform has ingested to focus on the data that really applies to your environment while retaining all other indicators and context for threat research. |
| Traffic Light Protocol (TLP) | Configure your Traffic Light Protocol (TLP) schema to provide a set of designations to ensure that sensitive information is shared with the appropriate audience. |
| Whitelisted Indicators | Identify non-malicious indicators using the Whitelisting feature. |