Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

If snapshot data for only one Application is present, you will be presented with the Application landing page - the Application name is displayed at the top as highlighted below.

Multiple Applications - Portfolio view

If snapshot data for multiple Applications is present, you will be presented with the Multi-application landing page - the number of Applications is displayed at the top as highlighted below:

Image Removed

To view data for an individual Application, click the "+" button underneath Application Analytics Dashboard and select the one you require. You will then be taken to the Application landing page:

Image Removed

Info
Note that this is known as filtering and is explained in more detail below.

Clickable tiles

Data is displayed in the CAST Application Analytics Dashboard in the form of clickable "tiles". The data in the tiles is divided into various sections:

Overview

Info
This section is visible in both the Multi-application and Application landing pages.

Data in these tiles represents the most recent "score" of your Application or Applications for a specific Quality or Quantity measurement (i.e. the information from the most recent snapshot generated by the CAST AI Administrator) in the most recent snapshot. Each tile contains a specific type of data, for example Robustness, Security, Number of Critical Violations, Number of Lines of Code. Where you have more than one Application (by default data from all Applications is displayed when you first load the CAST Application Analytics Dashboard), the data in these tiles is either a sum of all the Applications (for example the Size tile) or is an average of all the Applications (the TQI tile):

Image Removed

Evolution

left. The Health Factor scores represent the full portfolio, and the trending graphs are at the portfolio level as well. Specific tiles can be configured, such as the CISQ Security standard, for viewing, tracking and drilldown. The view will show an Application Heatmap and a list of the riskiest applications. Some of the tiles can be configured to show persistence from prior snapshots. At the portfolio level, that persistence data shows the difference over the selected period of analysis. In the dashboard below, the Technical Debt was increased by $9.3m and 27 applications were added to the portfolio in the last 12 months.

Click to enlarge:

Image Added

To view data for an individual Application, click the "+" button underneath Application Analytics Dashboard and select the one you require. You will then be taken to the Application landing page:

Image Added

Info
Note that this is known as filtering and is explained in more detail below.

Clickable tiles

Data is displayed in the CAST Application Analytics Dashboard in the form of clickable "tiles". The data in the tiles is divided into various sections:

Overview

Info
This section is visible in both the Multi-application and Application landing pages.

Data in these tiles represents the evolution over time of the snapshot values for all Applications (multiple Applications) or Application (single Application) in the current scope. The Time Span selection and Filter selection determines the scope - see below for more information about this. If no data is present, this means that you only have one snapshot, therefore there is no evolution to display.Image Removedmost recent "score" of your Application or Applications for a specific Quality or Quantity measurement (i.e. the information from the most recent snapshot generated by the CAST AI Administrator) in the most recent snapshot. Each tile contains a specific type of data, for example Robustness, Security, Number of Critical Violations, Number of Lines of Code. Where you have more than one Application (by default data from all Applications is displayed when you first load the CAST Application Analytics Dashboard), the data in these tiles is either a sum of all the Applications (for example the Size tile) or is an average of all the Applications (the TQI tile):

Image Added

Evolution

Info
This section is visible in both the Multi-application and Application landing pages

Data in these tiles represents the evolution over time of the snapshot values for all Applications (multiple Applications) or Application (single Application) in the current scope. The Time Span selection and Filter selection determines the scope - see below for more information about this. If no data is present, this means that you only have one snapshot, therefore there is no evolution to display.

Image Added

You can also view the evolution of specific measures over time by clicking any tile in the Evolutions section. Note that by default, the most recent results of the 10 worst Applications for the selected measure in the selected time period will be displayed. You can select and unselect Applications as required:

Image Added

Rule-specific Trending

Trending can also be viewed by individual rules by application, or specific rulesets. For security analyses, rules are typically grouped into rulesets such as CWE Top-25, OWASP Top-10 and CISQ-22. In the example below, the CWE Top-25 ruleset is being explored, with a trendline shown per rule based on the findings across multiple snapshots (click to enlarge):

Image Added

Automated Enhancement Point

...

In addition, you can drill down to find out why you have received a particular grade for a Health Factor by viewing the rationale behind the Quality Rule/Distribution/Measure (roll the mouse over the Quality Rule/Distribution/Measure):

You can also view the evolution of specific measures over time by clicking any tile in the Evolutions section. Note that by default, the most recent results of the 10 worst Applications for the selected measure in the selected time period will be displayed. You can select and unselect Applications as required:

Image Removed 

Enhanced and Automated Function Point

...