OverviewTopPackageElement
Security Event ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes
Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE
Class SignatureSecurityEvent

A SignatureSecurityEvent is an event detected by a signature-based sensor (e.g. an Intrusion Detection System (IDS) or anti-virus software)

Attributes
SecurityEventEndpoint _securityEventEndpoint _securityEventEndpoint
SecuritySignature _securitySignature _securitySignature
String dataFlowDirection dataFlowDirection

This indicates the overall flow of data for the connection - inbound implies that more data (bytes) was received by the destination than by the source. Enumeration values:

inbound

outbound

Integer numberOfBytes numberOfBytes

Total bytes collected by the sensor for the event.
Integer numberOfPackets numberOfPackets

Total packets collected by the sensor for the event
String packetCaptureData packetCaptureData

Text field to capture PCAP (packet capture) data (i.e. full packets involved in the SecurityEvent)

Attributes inherited from SID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SecurityEvent SID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SecurityEvent
_securityEvent _securityEvent, _securityEvent1 _securityEvent1, _eventSpecification _eventSpecification, _securityEventCollectionMethod _securityEventCollectionMethod, _securityVulnerability _securityVulnerability, _securityIncident _securityIncident, comments comments, validFor validFor

Attributes inherited from SID Models::Common Domain::Root Business Entities ABE::Entity SID Models::Common Domain::Root Business Entities ABE::Entity
_entityIdentification _entityIdentification, _entityRole _entityRole, managedEntity managedEntity, characteristicValue characteristicValue

Attributes inherited from SID Models::Common Domain::Root Business Entities ABE::RootEntity SID Models::Common Domain::Root Business Entities ABE::RootEntity
_rootEntityType _rootEntityType, _revenueAssuranceParmValue _revenueAssuranceParmValue, _characteristicValue _characteristicValue, name name, description description, ID ID, metric metric, _monitoredMetricInstancesCriteria _monitoredMetricInstancesCriteria, directedEdge directedEdge, vertex vertex, entityCatalogItem entityCatalogItem, rootEntityGroupMember rootEntityGroupMember, rootEntityGroup rootEntityGroup, rootEntityRelationship rootEntityRelationship, rootEntityRelationship2 rootEntityRelationship2, associationRole associationRole, entitySpecificationAttachment entitySpecificationAttachment, interactionUseCase interactionUseCase, interactionResult interactionResult

Properties:
Alias
Classifier Behavior
Is Abstractfalse
Is Activefalse
Is Leaffalse
Keywords
NameSignatureSecurityEvent
Name Expression
NamespaceSecurity Event ABE
Owned Template Signature
OwnerSecurity Event ABE
Owning Template Parameter
PackageSecurity Event ABE
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent
Representation
Stereotype
Template Parameter
VisibilityPublic

Attribute Details

 _securityEventEndpoint 
Public SecurityEventEndpoint _securityEventEndpoint
Constraints:
Properties:

AggregationNone
Alias
AssociationSecurityEventEndpointInvolvedInSignatureEvent
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..2
Name_securityEventEndpoint
Name Expression
NamespaceSignatureSecurityEvent
Opposite_signatureSecurityEvent
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::_securityEventEndpoint
Stereotype
Template Parameter
TypeSecurityEventEndpoint
Upper2
Upper Value(2)
VisibilityPublic

 _securitySignature 
Public SecuritySignature _securitySignature
Constraints:
Properties:

AggregationNone
Alias
AssociationSecuritySignatureDetectedBy
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
Name_securitySignature
Name Expression
NamespaceSignatureSecurityEvent
Opposite_signatureSecurityEvent
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::_securitySignature
Stereotype
Template Parameter
TypeSecuritySignature
Upper1
Upper Value(1)
VisibilityPublic

 dataFlowDirection 
Public String dataFlowDirection

This indicates the overall flow of data for the connection - inbound implies that more data (bytes) was received by the destination than by the source. Enumeration values:

inbound

outbound

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
NamedataFlowDirection
Name Expression
NamespaceSignatureSecurityEvent
Opposite
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::dataFlowDirection
Stereotyperequired
Template Parameter
TypeString
Upper1
Upper Value(1)
VisibilityPublic

 numberOfBytes 
Public Integer numberOfBytes

Total bytes collected by the sensor for the event.

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
NamenumberOfBytes
Name Expression
NamespaceSignatureSecurityEvent
Opposite
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::numberOfBytes
Stereotyperequired
Template Parameter
TypeInteger
Upper1
Upper Value(1)
VisibilityPublic

 numberOfPackets 
Public Integer numberOfPackets

Total packets collected by the sensor for the event

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity0..1
NamenumberOfPackets
Name Expression
NamespaceSignatureSecurityEvent
Opposite
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::numberOfPackets
Stereotyperequired
Template Parameter
TypeInteger
Upper1
Upper Value(1)
VisibilityPublic

 packetCaptureData 
Public String packetCaptureData

Text field to capture PCAP (packet capture) data (i.e. full packets involved in the SecurityEvent)

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSignatureSecurityEvent
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity*
NamepacketCaptureData
Name Expression
NamespaceSignatureSecurityEvent
Opposite
OwnerSignatureSecurityEvent
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Event ABE::SignatureSecurityEvent::packetCaptureData
Stereotyperequired
Template Parameter
TypeString
Upper*
Upper Value(*)
VisibilityPublic

OverviewTopPackageElement
Security Event ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes