SecurityVulnerabilityFixAction

: Public <<TMF_BusinessEntity>> Business Entity

Created:	1/10/2022 12:01:58 PM
Modified:	4/15/2022 10:30:22 AM

Project:
Author:	Giu Platania
Version:	22.0
Phase:	prop
Status:	Implemented
Complexity:	Easy
Difficulty:
Priority:
Multiplicity:
Advanced:
UUID:	{6F28030C-4161-493c-937D-A3D612B5E83E}
Appears In:	Figure SE.16 - Security Vulnerability, Figure SE.17 - Security Vulnerability Association With Other Business Entities

A single patch application, software update, configuration change, or external fix. Dependencies are documented by using the nextFixAction association

Attributes
Associations To
Associations From
Tagged Values
Advanced

Attribute

Public String
description

Details:

Alias:
Initial:
Stereotype:
Ordered:
Range:
Transient:	False
Derived:	False
IsID:	False

Notes:

A general description of the fix action

Public String
effectiveness

Details:

Alias:
Initial:
Stereotype:
Ordered:
Range:
Transient:	False
Derived:	False
IsID:	False

Notes:

States whether the fix action fully avoids the risk associated with the vulnerability or reduces risk to some extent.

Public String
fixActionType

Details:

Alias:
Initial:
Stereotype:
Ordered:
Range:
Transient:	False
Derived:	False
IsID:	False

Notes:

An enumeration of to describe the type of fix action. Enumeration values: Mitigation - mitigates the potential impact from an exploit of the vulnerability Remediation - removes the vulnerability from the affected resource.

Public String
ID

Details:

Alias:
Initial:
Stereotype:
Ordered:
Range:
Transient:	False
Derived:	False
IsID:	False

Notes:

Unique value within the source. Will be used with the source element to serve as a global unique identifier.

Public String
notes

Details:

Alias:
Initial:
Stereotype:
Ordered:
Range:	Range:0 to *
Transient:	False
Derived:	False
IsID:	False

Notes:

General notes on the SecurityVulnerabilityFixAction

Element	Source Role	Target Role
«TMF_BusinessEntity» Patch Business Entity	Name: _securityVulnerabilityFixAction	Name: _patch
Details:
«TMF_BusinessEntity» SecurityVulnerabilitySoftware Business Entity	Name: _securityVulnerabilityFixAction	Name: _securityVulnerabilitySoftware
Details:
«TMF_BusinessEntity» SecurityEntity Business Entity	Name: _securityVulnerabilityFixAction	Name: _securityEntity
Details:
«TMF_BusinessEntity» SecurityVulnerabilityFixAction Business Entity	Name:	Name:
Details:
«TMF_ABE» Security Vulnerability ABE ABE «TMF_ABEIsComposedByEntity»	Name:	Name:
Details:
«TMF_BusinessEntity» PartySecurityEntity Business Entity	Name: _securityVulnerabilityFixAction2	Name: _partySecurityEntity
Details: Association to the party that defined the fix action<br/>
«TMF_BusinessEntity» SecurityVulnerabilityTool Business Entity	Name: _securityVulnerabilityFixAction	Name: _securityVulnerabilityToolConfiguration
Details:

Element	Source Role	Target Role
«TMF_BusinessEntity» SecurityVulnerabilityFixAction Business Entity	Name:	Name:
Details:
«TMF_BusinessEntity» SecurityVulnerability Business Entity	Name: _securityVulnerability	Name: _securityVulnerabilityFixAction
Details:

Tag	Value
IsCoreEntity	False
Details: Values: true,false Default: False
rsa_guid	_DUBhYG9kEd-YIudmhftTlg
Details:

Property	Value
isActive:	0
isFinalSpecialization:	0