Class: Remediation
The Remediation object describes the recommended remediation steps to address
identified issue(s).
URI: ocsf:Remediation
classDiagram
class Remediation
click Remediation href "../Remediation/"
Object <|-- Remediation
click Object href "../Object/"
Remediation : cis_controls
Remediation --> "*" CisControl : cis_controls
click CisControl href "../CisControl/"
Remediation : desc
Remediation : kb_article_list
Remediation --> "*" KbArticle : kb_article_list
click KbArticle href "../KbArticle/"
Remediation : kb_articles
Remediation : references
Inheritance
- OcsfObject
- Object
- Remediation
- Object
Slots
| Name | Cardinality and Range | Description | Inheritance |
|---|---|---|---|
| cis_controls | * CisControl |
An array of Center for Internet Security (CIS) Controls that can be optionall... | direct |
| desc | 1 String |
The description of the remediation strategy | direct |
| kb_article_list | * KbArticle |
A list of KB articles or patches related to an endpoint | direct |
| kb_articles | * String |
The KB article/s related to the entity | direct |
| references | * String |
A list of supporting URL/s, references that help describe the remediation | direct |
Usages
| used by | used in | type | used |
|---|---|---|---|
| Vulnerability | remediation | range | Remediation |
| AffectedCode | remediation | range | Remediation |
| AffectedPackage | remediation | range | Remediation |
| CisBenchmarkResult | remediation | range | Remediation |
| FindingObject | remediation | range | Remediation |
| ApplicationSecurityPostureFinding | remediation | range | Remediation |
| ComplianceFinding | remediation | range | Remediation |
| DetectionFinding | remediation | range | Remediation |
| IamAnalysisFinding | remediation | range | Remediation |
| FileRemediationActivity | remediation | range | Remediation |
| NetworkRemediationActivity | remediation | range | Remediation |
| ProcessRemediationActivity | remediation | range | Remediation |
| RemediationActivity | remediation | range | Remediation |
In Subsets
Aliases
- Remediation
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | ocsf:Remediation |
| native | ocsf:Remediation |
| related | kev_catalog:KevEntry, core:Configuration |
| close | iso27001:RiskTreatmentPlan |
LinkML Source
Direct
name: Remediation
description: 'The Remediation object describes the recommended remediation steps to
address
identified issue(s).'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Remediation
close_mappings:
- iso27001:RiskTreatmentPlan
related_mappings:
- kev_catalog:KevEntry
- core:Configuration
is_a: Object
slots:
- cis_controls
- desc
- kb_article_list
- kb_articles
- references
slot_usage:
cis_controls:
name: cis_controls
description: 'An array of Center for Internet Security (CIS) Controls that can
be optionally
mapped to provide additional remediation details.'
desc:
name: desc
description: The description of the remediation strategy.
required: true
references:
name: references
description: 'A list of supporting URL/s, references that help describe the remediation
strategy.'
Induced
name: Remediation
description: 'The Remediation object describes the recommended remediation steps to
address
identified issue(s).'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Remediation
close_mappings:
- iso27001:RiskTreatmentPlan
related_mappings:
- kev_catalog:KevEntry
- core:Configuration
is_a: Object
slot_usage:
cis_controls:
name: cis_controls
description: 'An array of Center for Internet Security (CIS) Controls that can
be optionally
mapped to provide additional remediation details.'
desc:
name: desc
description: The description of the remediation strategy.
required: true
references:
name: references
description: 'A list of supporting URL/s, references that help describe the remediation
strategy.'
attributes:
cis_controls:
name: cis_controls
description: 'An array of Center for Internet Security (CIS) Controls that can
be optionally
mapped to provide additional remediation details.'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- CIS Controls
rank: 1000
alias: cis_controls
owner: Remediation
domain_of:
- Remediation
- CisBenchmark
range: CisControl
multivalued: true
desc:
name: desc
description: The description of the remediation strategy.
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Description
rank: 1000
alias: desc
owner: Remediation
domain_of:
- Osint
- RelatedEvent
- Remediation
- Vulnerability
- Advisory
- Analytic
- ApplicationObject
- Assessment
- Check
- CisBenchmark
- CisBenchmarkResult
- CisControl
- Compliance
- Cve
- Database
- Databucket
- Enrichment
- File
- FindingObject
- FindingInfo
- Graph
- Group
- Job
- Location
- Node
- Policy
- Rule
- Table
- WebResource
- Device
- IncidentFinding
range: string
required: true
kb_article_list:
name: kb_article_list
description: 'A list of KB articles or patches related to an endpoint. A KB Article
contains
metadata that describes the patch or an update.'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Knowledgebase Articles
rank: 1000
alias: kb_article_list
owner: Remediation
domain_of:
- Remediation
- Vulnerability
- PatchState
range: KbArticle
multivalued: true
kb_articles:
name: kb_articles
description: 'The KB article/s related to the entity. A KB Article contains metadata
that
describes the patch or an update.'
deprecated: Use the <code>kb_article_list</code> attribute instead. (since 1.1.0)
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Knowledgebase Articles
rank: 1000
alias: kb_articles
owner: Remediation
domain_of:
- Remediation
- Vulnerability
range: string
multivalued: true
references:
name: references
description: 'A list of supporting URL/s, references that help describe the remediation
strategy.'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- References
rank: 1000
alias: references
owner: Remediation
domain_of:
- Osint
- Remediation
- Vulnerability
- Advisory
- Cve
range: string
multivalued: true