Slot: is_suspected_breach
A determination based on analytics as to whether a potential breach was found.
URI: ocsf:is_suspected_breach
Alias: is_suspected_breach
Applicable Classes
| Name |
Description |
Modifies Slot |
| IncidentProfile |
The attributes that add incident handling semantics to a Finding |
yes |
| DataSecurityFinding |
A Data Security Finding describes detections or alerts generated by various |
no |
| ApplicationSecurityPostureFinding |
The Application Security Posture Finding event is a notification about any bu... |
no |
| DetectionFinding |
A Detection Finding describes detections or alerts generated by security |
no |
| VulnerabilityFinding |
The Vulnerability Finding event is a notification about weakness in an |
no |
| ComplianceFinding |
Compliance Finding events describe results of evaluations performed against |
no |
| IncidentFinding |
An Incident Finding reports the creation, update, or closure of security |
yes |
| IamAnalysisFinding |
This finding represents an IAM analysis result, which evaluates IAM policies, |
no |
| Finding |
The Finding event is a generic event that defines a set of attributes availab... |
no |
Properties
Type and Range
Cardinality and Requirements
Aliases
Schema Source
Mappings
| Mapping Type |
Mapped Value |
| self |
ocsf:is_suspected_breach |
| native |
ocsf:is_suspected_breach |
LinkML Source
name: is_suspected_breach
description: A determination based on analytics as to whether a potential breach was
found.
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Suspected Breach
rank: 1000
alias: is_suspected_breach
domain_of:
- IncidentProfile
- IncidentFinding
range: boolean