Halaman ini belum tersedia dalam bahasa lokal Anda. Kami berusaha keras untuk menambahkan lebih banyak versi bahasa. Terima kasih atas dukungan Anda.

SecMaster
SecMaster

    All results for "" in this service

    Compute
    Elastic Cloud Server
    Huawei Cloud Flexus
    Bare Metal Server
    Auto Scaling
    Image Management Service
    Dedicated Host
    FunctionGraph
    Cloud Phone Host
    Huawei Cloud EulerOS
    Management & Governance
    Cloud Eye
    Identity and Access Management
    Cloud Trace Service
    Resource Formation Service
    Tag Management Service
    Log Tank Service
    Config
    OneAccess
    Resource Access Manager
    Simple Message Notification
    Application Performance Management
    Application Operations Management
    Organizations
    Optimization Advisor
    IAM Identity Center
    Cloud Operations Center
    Resource Governance Center
    Cloud Ecosystem
    KooGallery
    Partner Center
    Analytics
    MapReduce Service
    Data Lake Insight
    CloudTable Service
    Cloud Search Service
    Data Lake Visualization
    Data Ingestion Service
    GaussDB(DWS)
    DataArts Studio
    Data Lake Factory
    DataArts Lake Formation
    Others
    Product Pricing Details
    System Permissions
    Console Quick Start
    Common FAQs
    Instructions for Associating with a HUAWEI CLOUD Partner
    Message Center
    Blockchain
    Blockchain Service
    Web3 Node Engine Service
    Storage
    Object Storage Service
    Elastic Volume Service
    Cloud Backup and Recovery
    Storage Disaster Recovery Service
    Scalable File Service Turbo
    Scalable File Service
    Volume Backup Service
    Cloud Server Backup Service
    Data Express Service
    Dedicated Distributed Storage Service
    Databases
    Relational Database Service
    Document Database Service
    Data Admin Service
    Data Replication Service
    GeminiDB
    GaussDB
    Distributed Database Middleware
    Database and Application Migration UGO
    TaurusDB
    Dedicated Cloud
    Dedicated Computing Cluster
    AI
    Face Recognition Service
    Graph Engine Service
    Content Moderation
    Image Recognition
    Optical Character Recognition
    ModelArts
    ImageSearch
    Conversational Bot Service
    Speech Interaction Service
    Huawei HiLens
    Video Intelligent Analysis Service
    Content Delivery & Edge Computing
    Content Delivery Network
    Intelligent EdgeFabric
    CloudPond
    Intelligent EdgeCloud
    Developer Services
    ServiceStage
    CodeArts
    CodeArts PerfTest
    CodeArts Req
    CodeArts Pipeline
    CodeArts Build
    CodeArts Deploy
    CodeArts Artifact
    CodeArts TestPlan
    CodeArts Check
    CodeArts Repo
    Cloud Application Engine
    Networking
    Virtual Private Cloud
    Elastic IP
    Elastic Load Balance
    NAT Gateway
    Direct Connect
    Virtual Private Network
    VPC Endpoint
    Cloud Connect
    Enterprise Router
    Enterprise Switch
    Global Accelerator
    Migration
    Server Migration Service
    Object Storage Migration Service
    Cloud Data Migration
    Migration Center
    User Support
    My Account
    Billing Center
    Cost Center
    Resource Center
    Enterprise Management
    Service Tickets
    HUAWEI CLOUD (International) FAQs
    ICP Filing
    Support Plans
    My Credentials
    Customer Operation Capabilities
    Partner Support Plans
    Professional Services
    IoT
    IoT Device Access
    Security & Compliance
    Security Technologies and Applications
    Web Application Firewall
    Host Security Service
    Cloud Firewall
    SecMaster
    Anti-DDoS Service
    Data Encryption Workshop
    Database Security Service
    Cloud Bastion Host
    Data Security Center
    Cloud Certificate Manager
    Edge Security
    Media Services
    Media Processing Center
    Video On Demand
    Live
    SparkRTC
    MetaStudio
    Containers
    Cloud Container Engine
    SoftWare Repository for Container
    Application Service Mesh
    Ubiquitous Cloud Native Service
    Cloud Container Instance
    Middleware
    Distributed Cache Service
    API Gateway
    Distributed Message Service for Kafka
    Distributed Message Service for RabbitMQ
    Distributed Message Service for RocketMQ
    Cloud Service Engine
    Multi-Site High Availability Service
    EventGrid
    Business Applications
    Workspace
    ROMA Connect
    Message & SMS
    Domain Name Service
    Edge Data Center Management
    Meeting
    Developer Tools
    SDK Developer Guide
    API Request Signing Guide
    Terraform
    Koo Command Line Interface
    Solutions
    SAP Cloud
    High Performance Computing
    MacroVerse aPaaS
    KooMessage
    KooPhone
    KooDrive
    Compute
    Elastic Cloud Server
    Huawei Cloud Flexus
    Bare Metal Server
    Auto Scaling
    Image Management Service
    Dedicated Host
    FunctionGraph
    Cloud Phone Host
    Huawei Cloud EulerOS
    Networking
    Virtual Private Cloud
    Elastic IP
    Elastic Load Balance
    NAT Gateway
    Direct Connect
    Virtual Private Network
    VPC Endpoint
    Cloud Connect
    Enterprise Router
    Enterprise Switch
    Global Accelerator
    Management & Governance
    Cloud Eye
    Identity and Access Management
    Cloud Trace Service
    Resource Formation Service
    Tag Management Service
    Log Tank Service
    Config
    OneAccess
    Resource Access Manager
    Simple Message Notification
    Application Performance Management
    Application Operations Management
    Organizations
    Optimization Advisor
    IAM Identity Center
    Cloud Operations Center
    Resource Governance Center
    Migration
    Server Migration Service
    Object Storage Migration Service
    Cloud Data Migration
    Migration Center
    Cloud Ecosystem
    KooGallery
    Partner Center
    User Support
    My Account
    Billing Center
    Cost Center
    Resource Center
    Enterprise Management
    Service Tickets
    HUAWEI CLOUD (International) FAQs
    ICP Filing
    Support Plans
    My Credentials
    Customer Operation Capabilities
    Partner Support Plans
    Professional Services
    Analytics
    MapReduce Service
    Data Lake Insight
    CloudTable Service
    Cloud Search Service
    Data Lake Visualization
    Data Ingestion Service
    GaussDB(DWS)
    DataArts Studio
    Data Lake Factory
    DataArts Lake Formation
    IoT
    IoT Device Access
    Others
    Product Pricing Details
    System Permissions
    Console Quick Start
    Common FAQs
    Instructions for Associating with a HUAWEI CLOUD Partner
    Message Center
    Security & Compliance
    Security Technologies and Applications
    Web Application Firewall
    Host Security Service
    Cloud Firewall
    SecMaster
    Anti-DDoS Service
    Data Encryption Workshop
    Database Security Service
    Cloud Bastion Host
    Data Security Center
    Cloud Certificate Manager
    Edge Security
    Blockchain
    Blockchain Service
    Web3 Node Engine Service
    Media Services
    Media Processing Center
    Video On Demand
    Live
    SparkRTC
    MetaStudio
    Storage
    Object Storage Service
    Elastic Volume Service
    Cloud Backup and Recovery
    Storage Disaster Recovery Service
    Scalable File Service Turbo
    Scalable File Service
    Volume Backup Service
    Cloud Server Backup Service
    Data Express Service
    Dedicated Distributed Storage Service
    Containers
    Cloud Container Engine
    SoftWare Repository for Container
    Application Service Mesh
    Ubiquitous Cloud Native Service
    Cloud Container Instance
    Databases
    Relational Database Service
    Document Database Service
    Data Admin Service
    Data Replication Service
    GeminiDB
    GaussDB
    Distributed Database Middleware
    Database and Application Migration UGO
    TaurusDB
    Middleware
    Distributed Cache Service
    API Gateway
    Distributed Message Service for Kafka
    Distributed Message Service for RabbitMQ
    Distributed Message Service for RocketMQ
    Cloud Service Engine
    Multi-Site High Availability Service
    EventGrid
    Dedicated Cloud
    Dedicated Computing Cluster
    Business Applications
    Workspace
    ROMA Connect
    Message & SMS
    Domain Name Service
    Edge Data Center Management
    Meeting
    AI
    Face Recognition Service
    Graph Engine Service
    Content Moderation
    Image Recognition
    Optical Character Recognition
    ModelArts
    ImageSearch
    Conversational Bot Service
    Speech Interaction Service
    Huawei HiLens
    Video Intelligent Analysis Service
    Developer Tools
    SDK Developer Guide
    API Request Signing Guide
    Terraform
    Koo Command Line Interface
    Content Delivery & Edge Computing
    Content Delivery Network
    Intelligent EdgeFabric
    CloudPond
    Intelligent EdgeCloud
    Solutions
    SAP Cloud
    High Performance Computing
    Developer Services
    ServiceStage
    CodeArts
    CodeArts PerfTest
    CodeArts Req
    CodeArts Pipeline
    CodeArts Build
    CodeArts Deploy
    CodeArts Artifact
    CodeArts TestPlan
    CodeArts Check
    CodeArts Repo
    Cloud Application Engine
    MacroVerse aPaaS
    KooMessage
    KooPhone
    KooDrive

      All results for "" in this service

      On this page

      Show all

      Help Center/ SecMaster/ User Guide (Kuala Lumpur Region)/ Security Situation/ Situation Overview

      Situation Overview

      Updated on 2024-10-29 GMT+08:00
      View PDF
      Share

      The Situation Overview page displays the overall security assessment status of resources in the current workspace in real time. You will view the security assessment results, security monitoring details, and security trend of your assets.

      Procedure

      1. Log in to the management console.
      2. Click in the upper part of the page and choose Security > SecMaster.
      3. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.
      4. In the navigation pane on the left, choose Security Situation > Situation Overview.
      5. On the Security Overview page, you can view the security overview of your assets and perform related operations. The Situation Overview page consists of the following modules:

        The following table describes the reference periods and update frequency of the modules.
        Table 1 Situation Overview

        Parameter

        Reference Period

        Update Frequency

        Description

        Security Score

        Real-time
        • Automatic update at 02:00 every day
        • Updated every time you click Check Again

        The score is calculated based on what security services are enabled, and the levels and numbers of unhandled configuration issues, vulnerabilities, and threats. For details, see Security Scores and Unscored Items.

        Threat Alarms

        Last 7 days

        Every 5 minutes

        Total number of alerts on the Threat Operations > Alerts page in a workspace.

        Vulnerabilities

        Last 7 days

        Every 5 minutes

        Total number of vulnerabilities on the Risk Prevention > Vulnerabilities in a workspace.

        Abnormal Baseline Settings

        Real-time

        Every 5 minutes

        Total number of issues on the Risk Prevention > Baseline Inspection page in a workspace.

        Your Security Score over Time

        Last 7 days

        Every 5 minutes

        Security scores in the last seven days.

      Security Score

      The security score shows the overall health status of your workloads on the cloud so you can quickly learn of unhandled risks and their threats to your assets.

      • The security score is automatically updated at 02:00 every day. You can also click Check Again to update it immediately.
      • The score ranges from 0 to 100. The higher the security score, the more secure your assets. For details, see Security Scores and Unscored Items.
      • Different color blocks in the security score ring chart indicate different severity levels. For example, yellow indicates that your security is medium.
      • Click Handle Now. The Risks pane is displayed on the right. You can handle risks by referring to the corresponding guidance.
        • The Risks slide-out panel lists all threats that you should handle in a timely manner. These threats are included in the Threat Alarms, Vulnerabilities, and Abnormal Baseline Settings areas.
        • The Risks pane displays the latest check results of the last scan. The Alerts, Vulnerabilities, and Abnormal Baseline Settings pages show check results of all previous scans. So, you will find the threat number on the Risks pane is less than that on those pages. You can click Handle for an alert on the Risks pane to go to the corresponding page quickly.
        • Handling detected security risks:
          1. In the Security Score area, click Handle Now.
          2. On the Risks slide-out panel displayed, click Handle.
          3. On the page displayed, handle risk alerts, vulnerabilities, or baseline inspection items.
      • The security score is updated when you refresh status of the alert incident after risk handling. After you fix the risks, you can click Check Again so that SecMaster can check and score your system again.
        NOTE:

        After risks are fixed, manually ignore or handle alert incidents and update the alert incident status in the alert list. The risk severity can be down to a proper level accordingly.

      • The security score reflects the security situation of your system last time you let SecMaster check the system. To obtain the latest score, click Check Again.

      Security Scores and Unscored Items

      SecMaster assesses the overall security situation of your assets in real time and scores your assets based on the SecMaster edition and features you are using.

      This section describes how your security score is calculated.

      • Security Score

        SecMaster evaluates the overall security situation of your assets.

        • There are six risk severity levels, Secure, Informational, Low, Medium, High, and Critical.
        • The score ranges from 0 to 100. The higher the security score, the lower the risk severity level.
        • The security score starts from 0 and the risk severity level is escalated up from Secure to the next level every 20 points. For example, for scores ranging from 40 to 60, the risk severity is Medium.
        • The color keys listed on the right of the chart show the names of donut slices. Different color represents different risk severity levels. For example, the yellow slice indicates that your asset risk severity is Medium.
        • If you have fixed asset risks and refreshed the alert status, you can click Check Again to update the security score.
          NOTE:

          After risks are fixed, manually ignore or handle alert incidents and update the alert incident status in the alert list. The risk severity can be down to a proper level accordingly.

        Table 2 Security score table

        Severity

        Security Score

        Description

        Secure

        100

        Congratulations. Your assets are secure.

        Informational

        80 ≤ Security Score < 100

        Your system should be hardened as several security risks have been detected.

        Low

        60 ≤ Security Score < 80

        Your system should be hardened in a timely manner as too many security risks have been detected.

        Medium

        40 ≤ Security Score < 60

        Your system should be hardened, or your assets will be vulnerable to attacks.

        High

        20 ≤ Security Score < 40

        Detected risks should be handled immediately, or your assets will be vulnerable to attacks.

        Critical

        0≤ Security Score <20

        Detected risks should be handled immediately, or your assets may be attacked.
      • Unscored Check Items

        Table 3 lists the security check items and corresponding points.

        Table 3 Unscored check items

        Category

        Unscored Item

        Unsocred Point

        Suggestion

        Maximum Unscored Point

        Enabling of security services

        Security-related services not enabled

        -

        Enable security-related services.

        30

        Compliance Check

        Critical non-compliance items not fixed

        10

        Fix compliance violations by referring recommended fixes and start a scan again. The security score will be updated.

        20

        High-risk non-compliance items not fixed

        5

        Medium-risk non-compliance items not fixed

        2

        Low-risk non-compliance items not fixed

        0.1

        Vulnerabilities

        Critical vulnerabilities not fixed

        10

        Fix vulnerabilities by referring corresponding suggestions and start a scan again. The security score will be updated.

        20

        High-risk vulnerabilities not fixed

        5

        Medium-risk vulnerabilities not fixed

        2

        Low-risk vulnerabilities not fixed

        0.1

        Threat Alerts

        Critical alerts not fixed

        10

        Fix the threats by referring to the suggestions. The security score will be updated accordingly.

        30

        High-risk alerts not fixed

        5

        Medium-risk alerts not fixed

        2

        Low-risk alerts not fixed

        0.1

      Security Monitoring

      The Security Monitoring area includes Threat Alarms, Vulnerabilities, and Abnormal Baseline Settings, which sort risks that have not been handled.

      Table 4 Security Monitoring parameters

      Parameter

      Description

      Threat Alarms

      This panel displays the unhandled threat alerts in a workspace for the last 7 days. You can quickly learn of the total number of unhandled threat alerts and the number of vulnerabilities at each severity level. The statistics are updated every 5 minutes.

      • Risk severity levels:
        • Critical: There are intrusions to your workloads, and you should view alert details and handle the alert in a timely manner.
        • High: There are abnormal incidents on your workloads, and you should view alert details and handle the alert in a timely manner.
        • Others: There are risky incidents that are marked as medium-risk, low-risk, and informational alerts detected in your systems, and you should view alert details and take necessary actions.
      • To quickly view details of top 5 threat alerts for the last 7 days, click the Threat Alarms panel.
        • You can view details of those threats, including the threat alert name, severity, asset name, and discovery time.
        • If no data is available here, no threat alerts are generated for the last 7 days.
        • You can click View More to go to the Alerts page and view more alerts. You can also customize filter criteria to query alert information.

      Vulnerabilities

      This panel displays the top five vulnerability types and the total number of unfixed vulnerabilities in your assets in a workspace for the last 7 days. You can quickly learn of the total number of unfixed vulnerabilities and the number of vulnerabilities at each severity level. The statistics are updated every 5 minutes.

      • Risk severity levels:
        • High: There are vulnerabilities on your workloads, and you should view vulnerability details and handle them in a timely manner.
        • Medium: There are abnormal incidents on your workloads, and you should view vulnerability details and handle the vulnerability in a timely manner.
        • Others: There are risky incidents that are marked as low-risk or informational in your systems, and you should view vulnerability details and take necessary actions.
      • When you click the Top 5 Vulnerability Types tab, the system displays the five vulnerability types with the most affected servers.
        • Vulnerability rankings are based on the number of hosts a vulnerability affects. The vulnerability ranked the first affects the most hosts.
        • The data is displayed in Top 5 Vulnerability Types only when the hosts have Host Security Service (HSS) Agent version 2.0 installed. If no data is displayed or you want to view top 5 vulnerability types, upgrade Agent from 1.0 to 2.0.
      • Click Top 5 Real-Time Vulnerabilities tab. The system displays the top 5 vulnerability incidents for the last 7 days. You can quickly view vulnerability details.
        • You can view details such as the vulnerability name, severity, asset name, and discovery time.
        • If no data is available here, no vulnerabilities are detected on the current day.
        • You can click View More to go to the Vulnerabilities page and view more vulnerabilities. You can also customize filter criteria to query vulnerability information.

      Abnormal Baseline Settings

      This panel displays the total number of compliance violations detected in a workspace. You can quickly learn of total number of violations and the number of violations at each severity level. The statistics are updated every 5 minutes.

      • Risk severity levels:
        • Critical: There are intrusions to your workloads, and you should view details about compliance risks and handle them in a timely manner.
        • High: There are abnormal incidents on your workloads, and you should view details about compliance risks and handle them in a timely manner.
        • Others: There are risky incidents that are marked as medium-risk, low-risk, and informational alerts detected in your systems, and you should view details about compliance risks and take necessary actions.
      • To quickly view details of top 5 abnormal compliance risks discovered, click the Abnormal Baseline Settings panel.
        • You can view details of the top compliance risks discovered in the latest check, such as check item name, severity, asset name, and discovery time.
        • If no data is available, no compliance violations are detected.
        • You can click View More to go to the Baseline Inspection page and view more compliance risks. You can also customize filter criteria to make an advanced search.

      Your Security Score over Time

      SecMaster displays your security scores over the last 7 days. The statistics are updated every 5 minutes.

      Parent topic: Security Situation

      Kami menggunakan cookie untuk meningkatkan kualitas situs kami dan pengalaman Anda. Dengan melanjutkan penelusuran di situs kami berarti Anda menerima kebijakan cookie kami. Cari tahu selengkapnya

      Feedback

      Feedback

      Feedback

      0/500

      Selected Content

      Submit selected content with the feedback