IG 3.5 has only a single set of rules to determine application risk. There is, for instance, only a single configuration item for "number of permissions". However, applications can be very different in size ! This should be taken into account.

It might be worth considering to move some of these parameters into the application source itself.

by: Klaus S. | over a year ago | Configuration