Security
The [Security] page allows you to check security status within your cloud environment, analyze vulnerabilities, and respond to them.
SpaceONE uses Prowler (an open-source cloud security tool) to collect and analyze security check data for various cloud resources.
When you select a specific item from the security resource list, you can view detailed information about it in the section below.
Security Details
The Details tab on the [Security] page shows detailed information about specific security check items.
Each tab provides information about the check item’s status, results, and related data to help analyze and respond to security issues.
Basic Information
You can check the ID, name, collection status, service provider, and check criteria of the selected security check item.
Checks
Shows the security criteria applied to the check item.
| Item | Description |
|---|---|
| Check Title | Name of the check item |
| Status | Check result status (PASS or FAIL) |
| Findings | Number of vulnerabilities found |
| Severity | Severity of vulnerability (CRITICAL, HIGH, MEDIUM, LOW) |
| Service | Type of cloud service being checked |
| Risk | Description of expected security risks if vulnerability occurs |
Findings
Provides a list of vulnerabilities found in the selected check item.
| Item | Description |
|---|---|
| Status | Individual item check status (PASS or FAIL) |
| Resource Type | Type of resource the check was applied to (e.g., AwsS3Bucket) |
| Resource | Name of the specific resource checked |
| Region | Cloud region where the check was performed |
| Status Extended | Additional description of the check item |
Raw Data
You can view the unprocessed JSON data collected by security check tools like Prowler.
Security Change History
The [Change History] tab shows chronological changes to the selected security item.
- You can view change history by selecting a specific month or the entire period.
- Changed attribute values are displayed in tag format to clearly show which items were modified.
- You can quickly filter specific changes using the search function.
This feature is useful for tracking when and how security settings were changed, and for audit purposes to ensure security compliance.
Security Alerts
The [Alerts] tab shows alert history related to specific security items.
Security Tickets
The [Tickets] tab shows tickets related to specific security items.
