This article describes how Delve defines what type of “asset” scans are counted in the license consumption model.
The Delve Vulnerability Management platform breaks down assets into type categories: Servers and Websites.
Server Assets represents endpoints that expose a service and are reachable either within a local network or on the Internet. Both local and internet servers are assigned and defined by a unique IP and are tracked through advanced fingerprinting as the IP could change over time. The IP address points to a specific computer, whether physical hardware or virtual. When Delve completes a scan, each new unique Server IP address is counted as a license consumed. Once a unique IP address is counted, it does not matter how many more times it is scanned during the scan period, it will only consume one license.
Websites or web applications use a URL as the unique identifier which contains the protocol to be used (HTTP(s)) and a fully qualified domain name. A website on the internet has an IP address, but there can be a one to many relationship between a single IP address and multiple websites. Every domain name is unique and therefore the URL which contains a single domain is a reliable identifier for websites. When Delve scans each new unique Web URL it is counted as a license consumed. Once a unique URL is counted, it does not matter how many more times it is scanned during the scan period, it will only consume one license.
Delve’s scan period is typically 365 days and commensurate with an annual contract term. For more information about Manages Security Service Providers (MSSPs) scan period options, please contact us.