FAIR Quantification

FAIR Risk Quantification Calculator

Estimate cyber breach costs in euros using the FAIR model. Get Single Loss Expectancy, Annualized Loss Expectancy, and percentile ranges — built for cyber insurance underwriters and risk engineers.

Euro-Denominated
FAIR-Compliant
100% Private
Export Brief

Loading calculator…

About the FAIR Model

What is FAIR?

FAIR (Factor Analysis of Information Risk) is the international standard for quantitative cyber risk analysis. Unlike qualitative heat maps, FAIR expresses risk financially — in euros — enabling direct comparison with insurance coverage limits and business decisions.

Key Metrics

  • Loss Event Frequency (LEF): How often a loss event is expected to occur per year
  • Single Loss Expectancy (SLE): The financial impact of a single breach event
  • Annualized Loss Expectancy (ALE): SLE × LEF — expected annual financial exposure
  • Percentile Ranges: p25, p75, and p95 values reflecting loss distribution uncertainty

Calculation Inputs

  • Exposed ports: High-risk ports (SSH, databases, RDP, Telnet, SMB, etc.) increase attack surface
  • Services: Database services directly increase loss magnitude
  • Vulnerabilities: Critical (CVSS ≥ 9.0) and High (CVSS ≥ 7.0) CVEs drive frequency up
  • Industry: Healthcare, finance, and energy face higher threat rates and regulatory impact
  • Company size: Larger organizations are more frequently targeted

Risk Levels

  • Low SLE < €50k
  • Medium €50k – €200k
  • High €200k – €500k
  • Critical SLE > €500k

Important Disclaimer

This tool provides estimates based on a simplified FAIR model and industry benchmarks. Actual breach costs vary significantly based on specific circumstances, organizational response capabilities, and regulatory environment. These estimates are for informational purposes and should not be considered as insurance advice or a guarantee of coverage adequacy.

100% Private

All calculations happen in your browser. No data leaves your device.

FAIR-Compliant

Based on the Factor Analysis of Information Risk methodology.

Export Brief

Print or save a PDF risk brief for client discussions.

Free Risk Intelligence

Get your detailed PDF risk report

We'll send you a comprehensive FAIR risk breakdown with actionable recommendations for reducing exposure. Plus weekly threat intelligence for European cyber insurance professionals.

Monitor this domain hourly

Continuous attack surface monitoring with automated FAIR risk recalculation. Get alerts when your risk level changes — essential for underwriters tracking a portfolio of insured domains.

€49/month

How It Works

1

Enter Domain

Domain, industry, company size

2

Simulated Scan

2-second exposure analysis

3

FAIR Calculation

LEF, SLE, ALE, percentiles

4

Risk Brief

Export, share, or subscribe for monitoring

Perfect for Cyber Insurance Professionals

  • Quantify client risk in euros during prospect meetings and renewal reviews
  • Justify coverage limits and premium pricing with defensible FAIR estimates
  • Compare client risk against industry benchmarks to identify coverage gaps
  • Export risk briefs for underwriting memos and board-level presentations