You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

Governance Summary is a comprehensive aggregated view of your applications portfolio.
It provides global analytics data that will help you to gain insights about your applications and let you inspect global values and trends based on data collected from your analysis.

Basically, and dependindg on the selected data range, it summarizes application data providing global values for the most important Kiuwan indicators:

  • Number of Applications and Global Size
  • Risk Index (a measure on how far you are to get an acceptable security and quality level, based on Global Indicator, Effor to Target and Applications Size)
  • Security Rating (a 5-start grade that indicates how secure your applications are)
  • Global Indicator (a general index based on software characteristics such as security, efficiency, maintainability , reliability and portability)
  • Technical Debt (a global effort measure to correct all the detected defects)

 

Please, visit https://www.kiuwan.com/blog/kiuwan-indicators/ for more information on Kiuwan Indicators.



 

Global Summarized Data

Governance Summary page displays following summarized data

 

 

 

Please note that summarized data is based on calendar's selected dates (it will consider available data up to selected data raange).

 

Applications

Total number of Applications and Size (in LOCs)

It's calculated as how many application exists up to the selected data range (an app "exists" if there are analysis on it up to the selected date)

Size is calulated as the sum of the last analysis's LOC for selected applications.

 

Risk Index

Kiuwan’s Risk Index (RI) is a summary indicator that provides a measure of the implicit risk associated to the security and quality aspects of your application, according to your defined requirements (targets). It provides a measure on how far you are to get an acceptable security and quality level ( remember that the exact meaning of “acceptable” is defined by you - the “target”).

Risk Index calculation concentrates all the evidence found in the source code of your application, and its calulated combining Global Indicator (GI), Effort to Target (E2T) and Application Size.

Summarized Risk Index is calculated as a average of Risk Indexes (weighted by App`s Size) of selected apps.

 

Security Rating

Security Rating, a 5-star grade that indicates how secure your applications are in terms of the likelihood and impact of found security vulnerabilities.

A security rating of 5 stars is considered to be secure, whereas 1 star are considered to be very insecure.

Please visit Kiuwan Code Security for further info on Kiuwan Security Rating and Vulnerability types.

Summarized Security Rating is not an average !! It's calculated based on a greatest common divisor (gcd) approach of the security ratings of the selected applications.

For example, If you have 3 apps with 5-, 4- and 1-star respectively, you Global Sec Rating will be 1-star.

 

Global Indicator

Global Indicator is a a general index based on Software characteristics (ISO-25000 based), such as: Security, Efficiency, Maintainability, Reliability and Portability. It's a weighted average of those software characteristics, providing an accurate global metric for the whole application. Global Indicator is calculated through a complex algorithm that takes into account the severity of the defects, the weight of the category, the analyzed code volume and the criticality of the different programming languages.

Summarized Global Indicator is calculated as a average of Global Indicators (weighted by App`s Size) of selected apps.

 

 

  • No labels