diff --git a/docs/vendor/security-center-about.mdx b/docs/vendor/security-center-about.mdx new file mode 100644 index 0000000000..49ee05f8e6 --- /dev/null +++ b/docs/vendor/security-center-about.mdx @@ -0,0 +1,57 @@ +# About the Security Center (Alpha) + +This topic provides an overview of the Replicated Security Center. + +:::note +The Security Center is Alpha. To access the Security Center, a feature flag must be enabled for your team. See [Limitations](/vendor/security-center-about#limitations) below. +::: + +## Overview + +The Security Center helps you strengthen security enablement in your application delivery process by making it easier for both you and your enterprise customers to monitor security risks, assess known vulnerabilities, and view security information for each application release. + +The Security Center is powered by Replicated’s [SecureBuild](https://securebuild.com/) technology. Every image is scanned continuously, not just at release time. Customers can see the same application version security information that you do, driving customer transparency, reduced security questionnaire burden, and adoption of newer, more secure versions of your application. + +## Limitations +* The Security Center is Alpha. The features and functionality of the Security Center are subject to change. +* Access to the Security Center Alpha requires a feature flag be turned on for your team. For more information, reach out to your Replicated account representative. +* Security Center reporting is available only for Embedded Cluster and Helm CLI installations. It is not available for kURL installations or for KOTS installations in an existing cluster. + +## Security Center Interfaces + +The Security Center is accessible through the following interfaces: +* Vendor-facing dashboard available in the Replicated Vendor Portal. See [Vendor Portal](#vendor-portal) below. +* Enterprise customer-facing dashboard available in the Replicated Enterprise Portal (optionally enabled per customer license). See [Enterprise Portal](#enterprise-portal) below. + +### Vendor Portal + +The Vendor Portal Security Center gives you access to the following key security insights for your releases: +* Known vulnerabilities in container images +* CVE details +* A summary of top secuirty risks based on the assessed severity of the vulnerability + +The following shows an example of the vendor-facing Security Center dashboard in the Vendor Portal: + +![Security Center dashboard](/images/security-center-dashboard.png) + +[View a larger version of this image](/images/security-center-dashboard.png) + +### Enterprise Portal + +The Enterprise Portal Security Center allows you to provide key security information to your enterprise customers alongside your application releases. + +On the **Security Center** tab of the Enterprise Portal, for each available release version, customers can: +* View a detailed report of known CVEs +* Download the Software Bill of Materials (SBOM) + +The following shows an example of the Security Center dashboard in the Enterprise Portal: + +![Enterprise Portal Security Center dashboard](/images/ep-security-center-dashboard.png) + +[View a larger version of this image](/images/ep-security-center-dashboard.png) + +#### Enable the Enterprise Portal Security Center + +The **Security Center** tab in the Enterprise Portal is not enabled by default. If the Security Center feature flag is enabled for your Vendor Portal team, you can optionally enable the Enterprise Portal **Security Center** tab on a per-customer basis. + +To enable the **Security Center** tab in a customer's Enterprise Portal, go to **Customers > [Customer] > Enterprise Portal access**. diff --git a/sidebars.js b/sidebars.js index 750672e064..068164d807 100644 --- a/sidebars.js +++ b/sidebars.js @@ -184,6 +184,13 @@ const sidebars = { 'vendor/enterprise-portal-use', ], }, + { + type: 'category', + label: 'Security Center (Alpha)', + items: [ + 'vendor/security-center-about' + ], + }, { type: 'category', label: 'Compatibility Matrix', @@ -877,4 +884,4 @@ const sidebars = { ], }; -module.exports = sidebars; \ No newline at end of file +module.exports = sidebars; diff --git a/static/images/ep-security-center-dashboard.png b/static/images/ep-security-center-dashboard.png new file mode 100644 index 0000000000..2dc45dcced Binary files /dev/null and b/static/images/ep-security-center-dashboard.png differ diff --git a/static/images/security-center-dashboard.png b/static/images/security-center-dashboard.png new file mode 100644 index 0000000000..3e1287d7a7 Binary files /dev/null and b/static/images/security-center-dashboard.png differ