Report
[Report] View
1. System Performance Statistics
System performance statistics is a feature that allows you to visually monitor the overall performance metrics of the SHIELDEX system.
This screen provides the usage status of key resources such as CPU, memory, disk usage, and network transmission and reception amounts in average values and graphs.
Through this, administrators can quickly grasp the resource load status of the system and detect performance anomalies early.
⚠️ This menu appears when logged in with a "System Administrator" account.
Administrator permission settings can be configured in [Administrator Settings] > [Account and Permission Management].
Query Conditions
- Query Unit TimeYou can select to view in units of 10 minutes / 1 hour / 1 day.
- Query Time Zone: You can select the start and end times of the time zone you want to query.
- Query Date: You can set a start date and end date to filter by period.
ⓘ All retrieved data is calculated and displayed as an average based on the selected time unit.
Average System Performance Statistics
The average resource usage of the system during the queried period is provided in the form of a summary card:
- CPU Usage: Average CPU Usage (%)
- Memory Usage: Average usage (%) compared to total memory
- Disk Usage: Average usage rate (%) of storage devices (C drive, E drive, etc.)
ⓘ Each item is displayed as a percentage (%), and a higher usage indicates a state of burden on the resources.
Network Traffic Statistics
The network usage of the system is displayed in the following two items:
- Network Reception Volume: Total data volume received from external sources during the queried period (MB)
- Network Transmission Volume: Total data volume transmitted externally during the queried period (MB)
System Performance Overview Chart
-
Chart Configuration:
- X-axis: Time interval of the selected time unit (e.g., 10-minute intervals)
- Y-axis: Usage and Transmission Volume by Performance Indicator
-
Indicator Display Items:
- CPU (%)
- MEMORY (%)
- DISK (C:, E:)
- Network Reception (MB)
- Network Transmission Volume (MB)
-
You can check detailed figures for each point in time when you hover over the mouse.
-
You can explore the chart in detail using the zoom/pan/move features in the upper right corner.
-
You can download the visualization chart by clicking the menu bar icon. (SVG, PNG, CSV)
Report Utilization Guide
- Check System Resource LoadIf the CPU or memory usage is consistently high, you should check for excessive service usage or the possibility of errors.
- Disk Space MonitoringIt may be time to clean up logs/files when there is a sudden increase in disk usage.
- Anomaly Detection in Network TrafficA sudden fluctuation in transmission and reception volume can be analyzed as a potential indication of malicious activity or service anomalies.
2. Inflow and Processing Statistics - Comprehensive Statistics
The inflow and processing statistics provide a statistical analysis of the processing results of files received through the SHIELDEX CDR system, and you can set the query period in the upper right corner to view the statistics.
This feature is used for the following purposes:
- Check CDR Result Distribution (Success/Exception/Blocked)
- Traffic Timing, Statistical Analysis by File Extension
- Understanding Inflow and Blocking Status by Channel
⚠️ This menu is displayed when logged in with a "System Administrator" account to access a specific channel page, or when logged in with a "Channel Administrator" account.
Administrator permission settings can be configured in [Administrator Settings] > [Account and Permission Management].
CDR Result Statistics and Status of Incoming Files
Distinguish the CDR processing results against the total number of incoming files in the form of a pie chart and summary list:
- success: Decontamination (CDR) processing completed and reconstructed file
- exception: Exceptionally imported files based on policy settings
- Block: Files blocked from entry due to security policies
ⓘ Each processing result can be checked in detail by clicking the “View Details >” button.
Overall Inflow Statistics by Period (Inflow Increase)
- Bar ChartVisualize the number of incoming files by date.
- It is useful for detecting whether there is an increase in inflow on a specific date and for identifying abnormal inflows.
Traffic Statistics by Extension
- Distribution of file extensions that were imported during the queried periodBar Graphis expressed as.
- By analyzing the file flow by major extensions, it is possible to identify usage patterns.
3. Inflow and Processing Statistics - Statistics by Channel
The channel statistics tab is a screen designed to aggregate and compare the inflow, import, and blocking results of files based on various inflow channels within the organization.
You can analyze the results of the application of the decontamination security policy by channel and comprehensively evaluate the operational status.
⚠️ This menu is displayed when logged in with a "System Administrator" account and accessing a specific channel page.
Administrator permission settings can be configured in [Administrator Settings] > [Account and Permission Management].
Inbound Channel Statistics Status
Bar Cumulative ChartVisualize the processing results of files imported through each channel.
| division | Description |
|---|---|
| Number of Inflows | Total number of files imported through the channel during the selected period |
| Import Count | Number of files imported into the system after CDR success or exception handling |
| Blocked Count | Number of files not imported due to policy restrictions |
Channel-specific Inflow Blocking Status
By each channelThe reason why the file was blockedA table that shows in detail will be provided.
ⓘ Various blocking reasons such as encrypted files, unsupported extensions, and tampered extensions may appear in this item.
If the reason for blocking is repeated, it is necessary to review the security policy settings of the channel.
4. Content Risk Statistics
The content risk statistics is a statistical screen that classifies the security risk levels of various content elements included in the incoming files by grade.
Administrators can use this screen to check what types of threat elements are being introduced and how much, and can use it as a reference for policy settings or exception handling.
⚠️ This menu is displayed when logged in with a "System Administrator" account to access a specific channel page, or when logged in with a "Channel Administrator" account.
Administrator permission settings can be configured in [Administrator Settings] > [Account and Permission Management].
Risk Level Statistics and Status
- Risk Level Classification: Content is classified into the following 6 levels of risk based on the analysis results.
| 안전 | 의심되는 위험요소 컨텐츠가 없는 경우입니다. |
| 의심 | 객체 및 하이퍼링크가 포함된 경우입니다. |
| 경고 | 매크로 및 액티브X가 포함된 경우입니다. |
| 위험 | 외부 데이터 연결이 가능한 요소가 포함된 경우입니다. |
| 심각 | 식별할 수 없는 컨텐츠(바이러스 등)가 포함된 경우입니다. |
| [위변조](/shieldex/Knowledge_Base/glossary#파일-관련-용어) | 포맷과 확장자가 일치하지 않은 경우입니다. |
- Visualization Configuration:
- Intuitively display the ratio of each risk level with a pie chart.
- Display representative content items and counts in card format by grade
- You can check the detailed list of related file decontamination processing by clicking "View Details".
Overall Content Element Inflow Statistics
- Bar Graph: Visually displays the number of detections by threat factor during the query period.
- Data Table: You can check the risk level, number of cases, and ratio by content item.
- Main Content Items
- Macro
- External Dynamic Data Exchange (DDE) Link
- ActiveX
- Virus
- hyperlink
- Extension Forgery
- OLE Object
- File Size Change
- External Link
- PDF Object
ⓘ You can compare the risk levels and the mapped content types at a glance to see which threat factors are being frequently introduced.