Resource Details
The Resource Details object describes details about resources that were affected by the activity/event.
Attributes
| Caption | Name | Type | Description |
|---|---|---|---|
| Agent List | agent_list |
Agent[] |
A list of agent objects associated with a device, endpoint, or resource.
|
| API Details | api |
API[] | Describes details about a typical API (Application Programming Interface) call. |
| Cloud | cloud |
Cloud[] | Describes details about the Cloud environment where the event was originally created or logged. |
| Cloud Partition | cloud_partition |
String | The canonical cloud partition name to which the region is assigned (e.g. AWS Partitions: aws, aws-cn, aws-us-gov). |
| Criticality | criticality |
String | The criticality of the resource as defined by the event source. |
| Data | data |
JSON | Additional data describing the resource. |
| Data Classification | data_classification |
Data Classification[] | The Data Classification object includes information about data classification levels and data category types. |
| Group | group |
Group[] | The name of the related resource group. |
| Labels | labels |
String[] | The list of labels/tags associated to a resource. |
| Name | name |
String | The name of the resource. |
| Namespace | namespace |
String | The namespace is useful when similar entities exist that you need to keep separate. |
| Owner | owner |
User[] | The identity of the service or user account that owns the resource. |
| Raw Data | raw_data |
JSON | The event data as received from the event source. |
| Record ID | record_id |
String | Unique identifier for the object |
| Region | region |
String | The cloud region of the resource. |
| Type | type |
String | The resource type as defined by the event source. |
| Unique ID | uid |
String | The unique identifier of the resource. |
| Unmapped Data | unmapped |
Unmapped[] | The attributes that are not mapped to the event schema. The names and values of those attributes are specific to the event source. |
| Version | version |
String |
The version of the resource. For example 1.2.3.
|
Relationships
Inbound Relationships
These objects and events reference Resource Details in their attributes:
- API Activity
- Detection Finding
- Compliance Finding
- Data Security Finding
- User Access Management
- Vulnerability Finding
- Group Management
Outbound Relationships
Resource Details references the following objects and events in its attributes:
This page describes qdm-1.3.2+ocsf-1.3.0
Updated about 1 month ago