Security State
security_state
The Security State object describes the security related state of a managed entity.
Attributes
| Caption | Name | Type | Description |
|---|---|---|---|
| Raw Data | raw_data | JSON | Group:contextThe event data as received from the event source. |
| Record ID | record_id | String | Group:primaryUnique identifier for the object |
| Security State | state | String | The security state, normalized to the caption of the state_id value. In the case of 'Other', it is defined by the source. |
| Security State ID | state_id | Integer | The security state of the managed entity.
|
| Unmapped | unmapped | Unmapped[] | Data from the source that was not mapped into the schema. |
Relationships
Inbound Relationships
These objects and events reference Security State in their attributes:
Outbound Relationships
Security State references the following objects and events in its attributes:
This page describes qdm-1.5.1+ocsf-1.6.0