Resource Details
The Resource Details object describes details about resources that were affected by the activity/event.
Attributes
Caption | Name | Type | Description |
---|---|---|---|
Agent List | agent_list |
Agent[] |
A list of agent objects associated with a device, endpoint, or resource.
|
API Details | api |
API[] | Describes details about a typical API (Application Programming Interface) call. |
Cloud | cloud |
Cloud[] | Describes details about the Cloud environment where the event was originally created or logged. |
Cloud Partition | cloud_partition |
String | The canonical cloud partition name to which the region is assigned (e.g. AWS Partitions: aws, aws-cn, aws-us-gov). |
Criticality | criticality |
String | The criticality of the resource as defined by the event source. |
Data | data |
JSON | Additional data describing the resource. |
Data Classification | data_classification |
Data Classification[] | The Data Classification object includes information about data classification levels and data category types. |
Group | group |
Group[] | The name of the related resource group. |
Labels | labels |
String[] | The list of labels/tags associated to a resource. |
Name | name |
String | The name of the resource. |
Namespace | namespace |
String | The namespace is useful when similar entities exist that you need to keep separate. |
Owner | owner |
User[] | The identity of the service or user account that owns the resource. |
Raw Data | raw_data |
JSON | The event data as received from the event source. |
Record ID | record_id |
String | Unique identifier for the object |
Region | region |
String | The cloud region of the resource. |
Type | type |
String | The resource type as defined by the event source. |
Unique ID | uid |
String | The unique identifier of the resource. |
Unmapped Data | unmapped |
Unmapped[] | The attributes that are not mapped to the event schema. The names and values of those attributes are specific to the event source. |
Version | version |
String |
The version of the resource. For example 1.2.3 .
|
Relationships
Inbound Relationships
These objects and events reference Resource Details in their attributes:
- API Activity
- Detection Finding
- Compliance Finding
- Data Security Finding
- User Access Management
- Vulnerability Finding
- Group Management
Outbound Relationships
Resource Details references the following objects and events in its attributes:
This page describes qdm-1.3.2+ocsf-1.3.0
Updated about 2 months ago