This section will guide you through the summary dashboard of Kiuwan Code Security.
The Code Security Summary page provides a comprehensive dashboard showcasing a high level overview of the securit of your application.
This dashboard shows the following:
The Kiuwan Security Rating is a discrete 5-star rating that tells you how secure your application is in terms of the likelihood and impact of the found vulnerabilities.
This rating concentrates all the security evidences found in the source.
5 stars = secure 1 star = very insecure |
Security vulnerabilities are grouped in a quadrant according to two major axes:
These two axes produce 4 quadrants. Kiuwan summarizes found vulnerabilities for each quadrant in the following way:
This impacts the security rating mentioned above:
Based on the analysis' results, Kiuwan also calculates the Effort you need to invest to reach different rating levels according to the remediation effort associated to fix each vulnerability.
Please note that Very Low vulnerabilites are discarded in the Security Rating algorithm and are not included in 4-quadrant image. That's the reason you could find that the total number of vulnerabilties in the 4-quadrant image is lower than the total vulnerabilities figure. |
The summary dashboard also provides a Top-10 ranking of vulnerability types and worst files.
This way, you can easily concentrate on major contributors to current security rating.
The Top-10 Vulnerabilities By Type graphic lets you to view which ones are the most frequent in your application, showing the total number of vulnerabilities for every type.
To view detailed info on all the vulnerabilites, please go to Vulnerabilities page.
Click on the vulnerability type to see associated defects in a new page.
The Top-10 Worst Files graphic displays a ranking of the worst (low-rated) files of your application, showing the security rating and the number of vulnerabilities found.
The Timeline section displays a historical evolution of your Security Rating and Total Effort (to reach 5-star rating) as well as the total LOC size of your application.
This section also displays information on: