Slot: permission_analysis_results
Describes analysis results of permissions, policies directly associated with an
identity (user, role, or service account). This evaluates what permissions an
identity has been granted through attached policies, which privileges are
actively used versus unused, and identifies potential over-privileged access.
Use this for identity-centric security assessments such as privilege audits,
dormant permission discovery, and least-privilege compliance analysis.
URI: ocsf:permission_analysis_results Alias: permission_analysis_results
Applicable Classes
| Name | Description | Modifies Slot |
|---|---|---|
| IamAnalysisFinding | This finding represents an IAM analysis result, which evaluates IAM policies, | yes |
Properties
Type and Range
| Property | Value |
|---|---|
| Range | PermissionAnalysisResult |
| Domain Of | IamAnalysisFinding |
Cardinality and Requirements
| Property | Value |
|---|---|
| Multivalued | Yes |
Aliases
- Permission Analysis Results
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | ocsf:permission_analysis_results |
| native | ocsf:permission_analysis_results |
LinkML Source
name: permission_analysis_results
description: 'Describes analysis results of permissions, policies directly associated
with an
identity (user, role, or service account). This evaluates what permissions an
identity has been granted through attached policies, which privileges are
actively used versus unused, and identifies potential over-privileged access.
Use this for identity-centric security assessments such as privilege audits,
dormant permission discovery, and least-privilege compliance analysis.'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Permission Analysis Results
rank: 1000
alias: permission_analysis_results
domain_of:
- IamAnalysisFinding
range: PermissionAnalysisResult
multivalued: true