Skip to content

Class: Asset

An information asset or associated asset requiring protection, per Annex A control 5.9.

URI: iso27001:Asset

 classDiagram
    class Asset
    click Asset href "../Asset/"
      NamedEntity <|-- Asset
        click NamedEntity href "../NamedEntity/"

      Asset : applicable_controls





        Asset --> "*" SecurityControl : applicable_controls
        click SecurityControl href "../SecurityControl/"



      Asset : asset_custodian

      Asset : asset_owner

      Asset : asset_type

      Asset : classification

      Asset : created_date

      Asset : criticality

      Asset : description

      Asset : id

      Asset : location

      Asset : modified_date

      Asset : name

      Asset : related_risks





        Asset --> "*" Risk : related_risks
        click Risk href "../Risk/"



      Asset : version

Inheritance

Slots

Name Cardinality and Range Description Inheritance
asset_type 0..1
String		 Type of asset direct
asset_owner 0..1
String		 Owner of the asset direct
asset_custodian 0..1
String		 Custodian responsible for day-to-day protection direct
classification 0..1
String		 Information classification level direct
location 0..1
String		 Physical or logical location direct
criticality 0..1
String		 Criticality rating of the asset direct
related_risks *
Risk		 Associated risks direct
applicable_controls *
SecurityControl		 Controls related to this policy direct
id 1
Uriorcurie		 Unique identifier for this entity instance NamedEntity
name 1
String		 Human-readable name or title NamedEntity
description 0..1
String		 Detailed description of the entity NamedEntity
created_date 0..1
Date		 Date when the entity was created NamedEntity
modified_date 0..1
Date		 Date when the entity was last modified NamedEntity
version 0..1
String		 Version identifier for the entity NamedEntity

Usages

used by used in type used
Risk affected_assets range Asset
InformationSecurityEvent affected_assets range Asset
InformationSecurityIncident affected_assets range Asset

In Subsets

Comments

  • Supports asset inventory, ownership, classification, and related controls
  • Reference: ISO/IEC 27001:2022 Annex A control 5.9; ISO/IEC 27002:2022 Clause 5.9. ISO/IEC standards text is copyright ISO - not reproduced here.

Identifier and Mapping Information

Annotations

property value
annex_a_control 5.9

Schema Source

  • from schema: https://w3id.org/lmodel/iso27001

Mappings

Mapping Type Mapped Value
self iso27001:Asset
native iso27001:Asset

LinkML Source

Direct

name: Asset
annotations:
  annex_a_control:
    tag: annex_a_control
    value: '5.9'
description: An information asset or associated asset requiring protection, per Annex
  A control 5.9.
comments:
- Supports asset inventory, ownership, classification, and related controls
- 'Reference: ISO/IEC 27001:2022 Annex A control 5.9; ISO/IEC 27002:2022 Clause 5.9.
  ISO/IEC standards text is copyright ISO - not reproduced here.'
in_subset:
- annex_a_controls
from_schema: https://w3id.org/lmodel/iso27001
is_a: NamedEntity
slots:
- asset_type
- asset_owner
- asset_custodian
- classification
- location
- criticality
- related_risks
- applicable_controls

Induced

name: Asset
annotations:
  annex_a_control:
    tag: annex_a_control
    value: '5.9'
description: An information asset or associated asset requiring protection, per Annex
  A control 5.9.
comments:
- Supports asset inventory, ownership, classification, and related controls
- 'Reference: ISO/IEC 27001:2022 Annex A control 5.9; ISO/IEC 27002:2022 Clause 5.9.
  ISO/IEC standards text is copyright ISO - not reproduced here.'
in_subset:
- annex_a_controls
from_schema: https://w3id.org/lmodel/iso27001
is_a: NamedEntity
attributes:
  asset_type:
    name: asset_type
    description: Type of asset.
    examples:
    - value: information
    - value: software
    - value: hardware
    - value: service
    - value: personnel
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: asset_type
    owner: Asset
    domain_of:
    - Asset
    range: string
  asset_owner:
    name: asset_owner
    annotations:
      annex_a_control:
        tag: annex_a_control
        value: '5.9'
    description: Owner of the asset.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: asset_owner
    owner: Asset
    domain_of:
    - Asset
    range: string
  asset_custodian:
    name: asset_custodian
    description: Custodian responsible for day-to-day protection.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: asset_custodian
    owner: Asset
    domain_of:
    - Asset
    range: string
  classification:
    name: classification
    description: Information classification level.
    comments:
    - Per A.5.12, classification based on confidentiality, integrity, availability
    examples:
    - value: confidential
    - value: internal
    - value: public
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: classification
    owner: Asset
    domain_of:
    - DocumentedInformation
    - Asset
    range: string
  location:
    name: location
    description: Physical or logical location.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: location
    owner: Asset
    domain_of:
    - Asset
    range: string
  criticality:
    name: criticality
    description: Criticality rating of the asset.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: criticality
    owner: Asset
    domain_of:
    - Asset
    range: string
  related_risks:
    name: related_risks
    description: Associated risks.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: related_risks
    owner: Asset
    domain_of:
    - InformationSecurityObjective
    - Asset
    range: Risk
    multivalued: true
  applicable_controls:
    name: applicable_controls
    description: Controls related to this policy.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: applicable_controls
    owner: Asset
    domain_of:
    - TopicSpecificPolicy
    - Asset
    range: SecurityControl
    multivalued: true
  id:
    name: id
    description: Unique identifier for this entity instance.
    comments:
    - Should use consistent URI/CURIE format across the dataset
    examples:
    - value: iso27001:risk-001
    - value: iso27001:control-5.1
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    identifier: true
    alias: id
    owner: Asset
    domain_of:
    - NamedEntity
    range: uriorcurie
    required: true
  name:
    name: name
    description: Human-readable name or title.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: name
    owner: Asset
    domain_of:
    - NamedEntity
    range: string
    required: true
  description:
    name: description
    description: Detailed description of the entity.
    comments:
    - Should provide sufficient detail for understanding without external reference
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: description
    owner: Asset
    domain_of:
    - NamedEntity
    range: string
  created_date:
    name: created_date
    description: Date when the entity was created.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: created_date
    owner: Asset
    domain_of:
    - NamedEntity
    range: date
  modified_date:
    name: modified_date
    description: Date when the entity was last modified.
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: modified_date
    owner: Asset
    domain_of:
    - NamedEntity
    range: date
  version:
    name: version
    description: Version identifier for the entity.
    comments:
    - Supports document control requirements per 7.5.3 e)
    examples:
    - value: '1.0'
    - value: 2.3.1
    from_schema: https://w3id.org/lmodel/iso27001
    rank: 1000
    alias: version
    owner: Asset
    domain_of:
    - NamedEntity
    range: string