OverviewTopPackageElement
Security Event ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes
Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE
Class NetFlowSecurityEvent

A NetFlowSecurityEvent is a capture of IP traffic between two end hosts. The number of packets, number of bytes, and other characteristics about the flow are captured, so further analysis can be performed with other inputs to determine malicious activity.

Attributes
SecurityEventEndpoint _securityEventEndpoint _securityEventEndpoint
String flags flags

Flags set in packet headers
Integer numberOfBytes numberOfBytes

Total number of bytes captured in a network flow
Integer numberOfPackets numberOfPackets

Total number of packets in the network flow
Integer protocol protocol

Integer number of the protocol used in the network flow.

Attributes inherited from SID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SecurityEvent SID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SecurityEvent
_securityEvent _securityEvent, _securityEvent1 _securityEvent1, _eventSpecification _eventSpecification, _securityEventCollectionMethod _securityEventCollectionMethod, _securityVulnerability _securityVulnerability, _securityIncident _securityIncident, comments comments, validFor validFor

Attributes inherited from SID Models::Common Domain::Root Business Entities ABE::Entity SID Models::Common Domain::Root Business Entities ABE::Entity
_entityIdentification _entityIdentification, _entityRole _entityRole, managedEntity managedEntity, characteristicValue characteristicValue

Attributes inherited from SID Models::Common Domain::Root Business Entities ABE::RootEntity SID Models::Common Domain::Root Business Entities ABE::RootEntity
_rootEntityType _rootEntityType, _revenueAssuranceParmValue _revenueAssuranceParmValue, _characteristicValue _characteristicValue, name name, description description, ID ID, metric metric, _monitoredMetricInstancesCriteria _monitoredMetricInstancesCriteria, directedEdge directedEdge, vertex vertex, entityCatalogItem entityCatalogItem, rootEntityGroupMember rootEntityGroupMember, rootEntityGroup rootEntityGroup, rootEntityRelationship rootEntityRelationship, rootEntityRelationship2 rootEntityRelationship2, associationRole associationRole, entitySpecificationAttachment entitySpecificationAttachment, interactionUseCase interactionUseCase, interactionResult interactionResult

Properties:
Alias
Classifier Behavior
Is Abstractfalse
Is Activefalse
Is Leaffalse
Keywords
NameNetFlowSecurityEvent
Name Expression
NamespaceSecurity Event ABE
Owned Template Signature
OwnerSecurity Event ABE
Owning Template Parameter
PackageSecurity Event ABE
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent
Representation
Stereotype
Template Parameter
VisibilityPublic

Attribute Details

 _securityEventEndpoint 
Public SecurityEventEndpoint _securityEventEndpoint
Constraints:
Properties:

AggregationNone
Alias
AssociationSecurityEventEndpointsInvolvedInNetFlowSecurityEvent
Association End
ClassNetFlowSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..2
Name_securityEventEndpoint
Name Expression
NamespaceNetFlowSecurityEvent
Opposite_netFlowSecurityEvent
OwnerNetFlowSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent::_securityEventEndpoint
Stereotype
Template Parameter
TypeSecurityEventEndpoint
Upper2
Upper Value(2)
VisibilityPublic

 flags 
Public String flags

Flags set in packet headers

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassNetFlowSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
Nameflags
Name Expression
NamespaceNetFlowSecurityEvent
Opposite
OwnerNetFlowSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent::flags
Stereotyperequired
Template Parameter
TypeString
Upper1
Upper Value(1)
VisibilityPublic

 numberOfBytes 
Public Integer numberOfBytes

Total number of bytes captured in a network flow

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassNetFlowSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
NamenumberOfBytes
Name Expression
NamespaceNetFlowSecurityEvent
Opposite
OwnerNetFlowSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent::numberOfBytes
Stereotype
Template Parameter
TypeInteger
Upper1
Upper Value(1)
VisibilityPublic

 numberOfPackets 
Public Integer numberOfPackets

Total number of packets in the network flow

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassNetFlowSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
NamenumberOfPackets
Name Expression
NamespaceNetFlowSecurityEvent
Opposite
OwnerNetFlowSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent::numberOfPackets
Stereotype
Template Parameter
TypeInteger
Upper1
Upper Value(1)
VisibilityPublic

 protocol 
Public Integer protocol

Integer number of the protocol used in the network flow.

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassNetFlowSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
Nameprotocol
Name Expression
NamespaceNetFlowSecurityEvent
Opposite
OwnerNetFlowSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::NetFlowSecurityEvent::protocol
Stereotype
Template Parameter
TypeInteger
Upper1
Upper Value(1)
VisibilityPublic

OverviewTopPackageElement
Security Event ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes