Config Inspection

Diagnosing Security Settings Vulnerabilities in the Cloud Console

Config Inspection is a service that diagnoses security settings such as account management, resource and network diagnostics, monitoring and logging within the console to maintain a secure cloud environment. Using a security diagnostic checklist tailored for each cloud service, Config Inspection assesses the security settings of the console and posts its findings on the report. A guideline provides information on how to improve each vulnerability type and any potential failure and security risk can be addressed by taking preemptive measures against vulnerabilities.

Overview

  • Diagnosis Checklist by Domain and Product

    With Samsung Security Index(SSI), which reflects the extensive experience of Samsung SDS in security inspection, and the best practices on cloud security proposed by Samsung Cloud Platform, it is easy to assess and manage user’s security status. They help identify various types of cloud security vulnerabilities related to IAM, authentication key management and network settings.

  • Various Cloud Diagnostics

    Config Inspection offers a diagnosis service for Samsung Cloud Platform as well as other clouds such as AWS and Azure. As for Samsung Cloud Platform, regular diagnosis is made automatically by setting a cycle for diagnosis, and as for other clouds, creating and executing diagnosis when needed is possible.

  • Easy-to-access Analysis Results

    A report is provided to make it simple to check the analysis result, whether it is conducted as scheduled or requested. Also, a dashboard displays security score, diagnostic status, and vulnerabilities detected within a specific time period. An analysis result provides details of a checklist including an analysis specified by item, diagnostic criteria, and action guides.

01

04

Service Architecture

Samsung Cloud Platform

Config Inspection → API Calls → Compute, Container, Network, DB, Storage, Logging

Admin → Create/Request Assessment → Config Inspection → API Calls → AWS, Azure

Key Features

  • Diagnostic target management
    1. Diagnostic target units : SCP-Project, AWS-Linked Account, Azure-Subscription
    2. Diagnostic scope : IAM, Network, Compute, Container, Database, Storage, Monitoring, Logging
    3. Diagnostic cycle : Scheduled or as-needed(on user’s request)
        ※ The scheduled diagnosis only available for SCP
  • Providing a dashboard
    1. Showing a target-specific security level and diagnostic status and the recent diagnostic result over time
    2. Monitoring the target-specific vulnerability status
  • Viewing a diagnostic result
    1. Viewing a diagnostic history(completed/failed)
    2. Providing details including checklist item-specific result, action guides, etc.

Pricing

    • Billing
    • Charged monthly based on the pricing plans of diagnostic targets
    • Basic plan : Charged based on the number of successfully-conducted diagnosis
    • Fixed monthly rate plan : Charged a fixed rate regardless of the number of diagnosis
        ※It is not allowed to change the plan once a diagnostic target is created.
Let’s talk

Whether you’re looking for a specific business solution or just need some questions answered, we’re here to help

Get in Touch
Share