SPHINX User Interface Functional Requirements & Guidelines: Main Dashboard

The SPHINX System interacts with the user in order to develop cyber awareness concerning risks, vulnerabilities and incidents within the  IT  network and connected devices. Moreover,  it allows the user to perform vulnerability assessment and certification of devices.  In this regard,  the user interface needs to be designed according to the user’s needs and expectations to ensure the utility of SPHINX.

This series of blog posts presents the user interface requirements for the  SPHINX  system,  with the aim to guide detailed implementation of the applicable  SPHINX  components. Actual screenshots related to SPHINX components are being presented to reflect its latest developments and compliance with the defined user interface requirements.

Access to the SPHINX system is restricted to authorised users.  A user needs to successfully insert its credentials using the login screen, as depicted next.

The SPHINX component aggregating the most relevant information and cybersecurity status is the Interactive Dashboard (ID). From the users’ perspective, the Interactive Dashboard is the main screen of the SPHINX System. ID is a component that centralises and converts data (web traffic, alerts) obtained from other components in different types of graphical representations (tables, graphs, diagrams and custom plugins) to offer IT staff a faster and more compact interpretation of the IT system.  The image below illustrates the main dashboard. Based on the provided mock-up, the Interactive Dashboard is detailed and implemented as part of WP5 of the SPHINX Workplan (Analysis and Decision Making) under Task 5.2 – Advanced Visualisation Dashboards.

ID’s general dashboard comprises the following main sections:

  • A menu bar including at least 3 fields: number of critical alerts (Alerts); statistical data (Statistics); and access to visualisation options (including user customisation area) (Dashboard Settings).
  • A top and left area with action buttons providing quick access to ID pages.
  • In the central part, an area allowing users to visualise data using various graphs, such as time-series, alert statistics.
  • In the right part, a list of all the SPHINX tools and services, allowing users to be redirected to the selected tool or service.

Regarding alerts, ID contains functionalities for preventing problems in the IT system, such as a table with detailed alerts detected by other components (see image above), as well as alerts defined by IT staff for certain graphics, being informed by e-mail or even by other means of communication, depending on the established preferences.

ID is fully customisable.  Users can customise ID’s views, thus being able to choose what information to display and from which component. As illustrated in following image, a user selects “New Dashboard” (arrow (1)) and is redirected to a page where it can select a SPHINX component, visualisation component (e.g., chart type, arrow (5)) and data source (e.g., PostgreSQL, arrow (6)).

ID helps users to see details about certain components by selecting the specific component from the list of SPHINX tools on the right side of the main dashboard, thus accessing a component’s specific set of functionalities and data.

More information about the Functional Requirements and Guidelines of SPHINX can be found in Deliverable 2.10 that is publicly available here.