Open Protection Index
v1.0.0 · Apache 2.0

Open Protection Index

A vendor-neutral, open standard for measuring DDoS resilience. One score, six components, fully transparent methodology.

Read the Spec Try the Calculator opi-standard opi-calculator opi-badges
79 Grade C 
OPI = Defense Coverage × 0.20 + L7 Resilience × 0.25 + L3/L4 Resilience × 0.15
    + Protocol Resilience × 0.15 + Operational Resilience × 0.15 + Evasion Resistance × 0.10

Six Components

Each component is scored 0-100 independently, then combined using fixed weights.

20% weight

Defense Coverage

CDN deployment, WAF presence, origin protection, rate limiting, and vendor automation capability.

25% weight

L7 Attack Resilience

HTTP floods, Slowloris, cache bypass, API abuse resistance. Penalized for exposed GraphQL introspection, missing rate limiting, XMLRPC amplification vectors, and large uncacheable API surfaces. v1.1: L7 Attack Surface Assessment

15% weight

L3/L4 Resilience

SYN/UDP floods, amplification attacks, scrubbing center quality, and pipeline capacity.

15% weight

Protocol Resilience

HTTP/2 Rapid Reset, CONTINUATION Flood, QUIC Initial Flood, and protocol-specific CVEs.

15% weight

Operational Resilience

Availability under attack, latency degradation, false positive rate, and recovery time.

10% weight

Evasion Resistance

JA3/JA4 fingerprint detection, slow-rate attacks, IP rotation handling, and behavioral analysis.

Assessment Tiers v1.4

OPI accuracy depends on available data. Each tier is clearly labeled in reports.

OPI Passive DNS + HTTP headers only. Infrastructure coverage estimate. No active testing.
OPI Estimated Passive + L7 recon (API surface, GraphQL, rate limiting detection) + client data. Pre-test estimate with L7 attack surface penalties.
OPI Validated Post active test. Measured availability, latency, error rates under real attack simulation. Authoritative score.

Calculator v1.4

Define your infrastructure to compute an OPI score using the same engine as DDactic scans.

Total Assets
Behind CDN count 7
Cloud WAF count 5
Origins Hidden count 0
Rate Limiting count 0
CDN Quality
On-Prem Appliance
Scrubbing Vendor
ISP DDoS Tier
Scaling Architecture
Pipeline Capacity
--
--
Defense Coverage--
L7 Resilience--
L3/L4 Resilience--
Protocol--
Operational--
Evasion--
Hardening Potential--

Grade Scale

ScoreGradeClassification
90 - 100 A Excellent - Enterprise-grade protection
80 - 89 B Good - Solid defenses with minor gaps
70 - 79 C Adequate - Basic protection, some risks
60 - 69 D Poor - Major vulnerabilities present
0 - 59 F Critical - Minimal to no protection

Badges

Display your OPI score in READMEs, reports, and dashboards.

OPI A Grade A
OPI B Grade B
OPI C Grade C
OPI D Grade D
OPI F Grade F

Markdown

![OPI Score](https://img.shields.io/badge/OPI-85%20(B)-2563eb)

HTML

<img src="https://img.shields.io/badge/OPI-85%20(B)-2563eb" alt="OPI Score">