You are here: How To > Assurance Report Cards

Assurance Report Cards

Assurance Report Cards (ARCs) are a way to get an overview on the overall security posture of the network. These configurable reports provide quick visible feedback on what is important to you. Once the criteria are entered to create a new card, they report on a pass/fail methodology. A green box with a checkmark indicates that all the criteria are being met. A red box with an X indicates that one or more of the criteria is under the acceptable threshold and needs to be addressed.

When the ARC is collapsed, the right side of the line displays a green check mark or red x to indicate a pass or fail for each of the Policy Statements that makes up the ARC. Clicking on the title of the ARC expands the ARC to display the individual Policy Statement titles and their information of percentage, ratio, or if the compliance/non-compliant state is a green (pass) or red (failure) state. Clicking on the Policy Statements displays an analysis page of the underlying data for further analysis.

The ARCs may be reordered on the page by clicking the left indicator and dragging it to the new desired position.

SecurityCenter is configured with several default ARC templates installed and ready for use. These are examples of what customers have asked for in various locations and are designed with industry best practices in mind.

Adding ARCs

New ARCs may be added using templates or the Advanced Add link under the Options menu.

Templates

Templates offer a quick and easy way to add ARCs based on industry standards and may be edited for the local network. Clicking the Add button at the top of the ARC page, the templates page is displayed with the various categories displayed. The templates may be searched enmass by utilizing the Search Templates text box at the top right of the page. Once the search is entered, it may be further narrowed down by utilizing the drop-down menu that appears to the left of the box and categories may be selected.

If a category is selected directly, ARC templates will be listed by name and description with their last update dates. Clicking on a template will lead to a fully detailed page about the template and offer the ability to view the details of the policy statements that make up the ARC, add the required assets, set the targets to focus on, configure the schedule to evaluate the ARC, and other details.

Note: When selecting targets, if the same IP is in two different selected repositories, the results will become negatively skewed.

After the ARC has been configured for the local environment, click the Add button at the bottom of the template page to save and add the newly configured ARC to the list.

Advanced Add

To create a completely customized ARC, select the “Advanced Add” link from the Options menu. This will open a page to begin the process of creating a new ARC from scratch.

The following table describes the options to create an ARC from the advanced add page.

ARC Options

Chart Option Description

General

Name

ARC Name

Description

ARC description

Schedule

Frequency with which the ARC polls the data source(s) to obtain updates. Available frequency options include: daily (default) with a time of day, weekly repeating every 1-20 weeks and selection of the day(s) of week, and monthly repeating every 1-20 months (by day or date).

Policy Statements

Basic

Statement

This is the line describing what the Policy Statement is evaluating for its pass/fail criteria.

Display

A selection of Ratio, Percentage, and Compliant/Non-Compliant result to be displayed for the statement.

Advanced

Data Type

From the drop-down menu, select from Vulnerabilities or Events for the type of data to be analyzed.

Base Filters

The filters used by the ARC to use as the basis for the data analysis

Compliant Filters

The filters used by the ARC to determine the compliance conditions for the data analysis. See the Vulnerability or Event Analysis sections for details on the use of the filter options. Please note the filters set in the base filter are not present in the compliant filter, with exception of the Assets and Plugin IDs. All filters set in the base filter are carried over into the compliant filter.

Compliant Condition

Determines the conditions to match for determining compliance. Settings include All, No, Any, greater than, less than, greater than or equal to, and less than or equal to. The conditions to match against are Hosts, Vulnerabilities/Events, and Ports. See the Vulnerability or Event Analysis sections for details on the use of the filter options.

DrillDown Filters

These are the filters used when clicking on the ARC Policy Statement for more details. See the Vulnerability or Event Analysis sections for details on the use of the filter options.

Focus

Targets

This drop-down offers the option to set the target hosts for the ARC to analyze. The options are All Systems, Assets, IPs, and Repositories.

 

Assets may be selected using AND/OR/NOT logic when selecting multiple lists. Repositories to match against may be selected using the checkbox next to the repository name.

 

IPs may be entered using single addresses, CIDR, and range notation with multiple selections on separate lines. Repositories to match against may be selected using the checkbox next to the repository name.

 

Repositories to match against may be selected using the checkbox next to the repository name.

Note: When selecting targets, if the same IP is in two different selected repositories, the results will become negatively skewed.

Options Menu

The following options are available under the Options drop-down menu in the upper right-hand corner of the ARC screen:

Expand All/Collapse All

These options will expand or collapse all of the ARCs displayed on the page.

Manage ARCs

This link displays a list of all the available ARCs for ease of management.

From this list, the ARCs may, at a glance, show the name, schedule, group, owner, and last modified time of the ARC. The pin icon on the left column indicates if the ARC is active (teal and straight) or not (grey and at an angle) for the current user. By utilizing the filters, a large list may be reduced to key attributes of the ARCs being looked for. The filters include name, activation state, owner, group, and access to the user.

Clicking on an ARC in the list displays the details of the ARC. These include the Name, Description, Schedule, Policy Statement names, focus, and other information.

Clicking on the gear icon drop-down menu offers options to view, export, or copy the selected ARC.

When viewing the manage ARCs page, the Options menu adds a link to View ARCs to return to the main view of the ARCs page.

Advanced Add

For details of this option, see the above Advance Add section under Adding ARCs.

Copyright © 2016. Tenable Network Security, Inc. All rights reserved. Tenable Network Security and Nessus are registered trademarks of Tenable Network Security, Inc. SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.