Subset: security_control_profile_subset
The attributes including disposition that represent the outcome of a security
control including but not limited to access control, malware or policy
violation, network proxy, intrusion detection, firewall, or data control. The
profile is intended to augment activities or findings with an outcome when a
security control has observed or intervened. If the control detected a security
violation, and the disposition_id or action_id is an
alertable outcome or action, the is_alert flag may be set to
true.
URI: security_control_profile_subset
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
Classes in subset
| Class | Description |
|---|---|
| SecurityControlProfile | The attributes including disposition that represent the outcome of a security |