Normalize: IT Security

This section provides Normalize: IT Security field descriptions for the following:

 

Inventory

Field

Description

INV Date

Inventory Date

INV Group

Inventory Group

INV ID

Inventory ID

INV Name

Inventory Name

INV Task ID

Inventory Task ID

INV Task

Task Name

INV Data Source

Task Data Source

INV Status

Task Status

INV Is Latest?

Is this the latest Inventory within its Inventory Group?

System

Field

Description

SYS Domain

System Computer Domain

SYS Is Virtual Machine?

Is the Operating System a virtual machine (guest)?

SYS Is Virtual Host?

Is the Operating System a virtual host (hypervisor)?

SYS Is Deduped?

Is this System de-duped accross all Data Sources within its Inventory?

SYS Is Active?

Does the discovery tool report this System to be active?

Operating System

Field

Description

OS Family

Operating System Family

OS Manufacturer

Operating System Manufacturer

OS Name

Operating System Name

OS Major Version

Operating System Major Version

OS Minor Version

Operating System Minor Version

OS Service Pack

Operating System Service Pack

OS Edition

Operating System Edition

Operating System Lifecycle (Calculated)

Field

Description

OS Is Supported? (calc.)

BDNA guideline to customers, as to the support status for a product

OS Supported Reason (calc.)

Reason determining the product support status. I.e. published date, calculated date, version sequence

OS EOL Year (calc.)

Calculated operating system version end-of-life date. Calculated year is based on Technopedia operating system published dates

OS EOL Quarter (calc.)

Calculated operating system version end-of-life date. Calculated quarter-in-year is based on Technopedia operating system published dates

OS EOL Month (calc.)

Calculated operating system version end-of-life date. Calculated month-in-year is based on Technopedia operating system published dates

OS EOL Date (calc.)

Calculated operating system version end-of-life date. Calculated date is based on Technopedia operating system published dates

OS Desupported? (calc.)

A flag that indicates whether the version has been discontinued/desupported

OS Version Order (calc.)

Number that indicates the sequential order by which this particular version was released during the history of the product

OS Max Versions (calc.)

The highest version order of all the versions that were released during the history of the operating system

OS Versions (calc.)

Number of versions between the particular version and the highest version of the operating system

Hardware

Field

Description

HW Category

Hardware Category (Taxonomy)

HW Subcategory

Hardware Subcategory (Taxonomy)

HW Vendor Category

Product category per vendor

HW Manufacturer

Hardware Manufacturer

HW Manufacturer ID

Hardware manufacturer identification number

HW Product

Hardware product name

HW Product ID

Hardware product identification number

HW Model

Device model name/number

HW Model ID

Hardware model identification number

HW Supported OS

List of supported operating systems that can be run on the device

HW Max CPU sockets

Maximum number of CPU sockets available in the machine

Hardware Lifecycle (Calculated)

Field

Description

HW Is Supported? (calc.)

BDNA guideline to customers, as to the support status for a product

HW Supported Reason (calc.)

Reason determining the product support status. I.e. published date, calculated date

HW EOL Year (calc.)

Calculated hardware end-of-life year. Calculated date is based on Technopedia hardware product published dates

HW EOL Quarter (calc.)

Calculated hardware end-of-life quarter-in-year. Calculated date is based on Technopedia hardware product published dates

HW EOL Month (calc.)

Calculated hardware end-of-life month-in-year. Calculated date is based on Technopedia hardware product published dates

HW EOL Date (calc.)

Calculated hardware end-of-life date. Calculated date is based on Technopedia hardware product published dates

Software

Field

Description

SW Category

Software category (first level of taxonomy)

SW Subcategory

Software subcategory (second level of taxonomy)

SW Vendor Category

Product category per vendor

SW Manufacturer

Software manufacturer name

SW Manufacturer ID

Software manufacturer identification number

SW Family

Brand/family the software product belongs to, if applicable

SW Name

Name of the software product

SW Name ID

Software name identification number

SW Component

Component of the software product, if applicable

SW Market Version

Software market version (version group)

SW Market Version ID

Software market version identification number

SW Version

Software version number/name associated with the release

SW Version ID

Software version identification number

SW Service Pack

Software patch, update, or service pack level, if applicable

SW Edition

Software product edition name

SW Edition ID

Software edition identification number

SW Release ID

Software release identification number

SW Is Licensable?

Indicates whether the software release is licensable or not

SW Is Suite?

Indicates whether the software product is a suite

SW Suite

Software suite

SW Is Suite Component?

Indicates whether the software product is a component of a suite

SW Suite Component

Software suite component

SW Cloud or On-Premise?

Identifies whether the product is 'Cloud Only', 'On-Premise-Only', or 'Cloud and On-Premise'

SW On-premise equivalent

Equivalent on-premise product for cloud product

SW Cloud equivalent

Equivalent cloud product for on-premise product

Software Lifecycle (Calculated)

Field

Description

SW Is Supported? (calc.)

BDNA guideline to customers, as to the support status for a product

SW Supported Reason (calc.)

Reason determining the product support status. I.e. published date, calculated date, version sequence

SW EOL Year (calc.)

Calculated software version end-of-life date. Calculated year is based on Technopedia software product published dates

SW EOL Quarter (calc.)

Calculated software version end-of-life date. Calculated quarter-in-year is based on Technopedia software product published dates

SW EOL Month (calc.)

Calculated software version end-of-life date. Calculated month-in-year is based on Technopedia software product published dates

SW EOL Date (calc.)

Calculated software version end-of-life date. Calculated date is based on Technopedia software product published dates

SW Desupported? (calc.)

A flag that indicates whether the version has been discontinued/desupported

SW Version Order (calc.)

Number that indicates the sequential order by which this particular version was released during the history of the product

SW Max Versions (calc.)

The highest version order of all the versions that were released during the history of the product

SW Versions (calc.)

Number of versions between the particular version and the highest version of the product

Common Platform Enumeration

Field

Description

HW CPE Definition

The title/name of the hardware product for which the CPE URI is assigned. This refers to 'ns1:title’ column in CPE Dictionary (which is published by the U.S. National Institute for Standards and Technology, NIST)

HW CPE Part

Part component of CPE URI

HW CPE Vendor

Vendor component of CPE URI

HW CPE Product

Product component of CPE URI

HW CPE Edition

Edition component of CPE URI

HW CPE URI

The generic syntax for Uniform Resource Identifiers (URI) for Common Platform Enumeration (CPE), which includes a formal name format, a method for checking names against a system, and a description format for binding

HW CPE Max CVSS Score

Maximum Common Vulnerability Scoring System (CVSS) value amongst all CVE entries that are associated with this CPE

HW CPE Max CVSS Severity

Maximum Common Vulnerability Scoring System (CVSS) Severity amongst all CVE entries that are associated with this CPE

SW CPE Definition

The title/name of the software product for which the CPE URI is assigned. This refers to 'ns1:title’ column in CPE Dictionary (which is published by the U.S. National Institute for Standards and Technology, NIST)

SW CPE Part

Part component of CPE URI

SW CPE Vendor

Vendor component of CPE URI

SW CPE Product

Product component of CPE URI

SW CPE Edition

Edition component of CPE URI

SW CPE URI

The generic syntax for Uniform Resource Identifiers (URI) for Common Platform Enumeration (CPE), which includes a formal name format, a method for checking names against a system, and a description format for binding

SW CPE Max CVSS Score

Maximum Common Vulnerability Scoring System (CVSS) value amongst all CVE entries that are associated with this CPE

SW CPE Max CVSS Severity

Maximum Common Vulnerability Scoring System (CVSS) Severity amongst all CVE entries that are associated with this CPE

SW CPE Definition

The title/name of the software product for which the CPE URI is assigned. This refers to 'ns1:title’ column in CPE Dictionary (which is published by the U.S. National Institute for Standards and Technology, NIST)

OS CPE Part

Part component of CPE URI

OS CPE Vendor

Vendor component of CPE URI

OS CPE Product

Product component of CPE URI

OS CPE Edition

Edition component of CPE URI

OS CPE URI

The generic syntax for Uniform Resource Identifiers (URI) for Common Platform Enumeration (CPE), which includes a formal name format, a method for checking names against a system, and a description format for binding

OS CPE Max CVSS Score

Maximum Common Vulnerability Scoring System (CVSS) value amongst all CVE entries that are associated with this CPE

OS CPE Max CVSS Severity

Maximum Common Vulnerability Scoring System (CVSS) Severity amongst all CVE entries that are associated with this CPE

Private Indicators

Field

Description

PRI Is Private?

Indicates whether the data being analyzed is private or not

PRI Type

Indicates the type of private data, options are: Proprietary item or Modified item

PRI Object

Name of the object that has private data. Hardware or Software

PRI Table

Name of the table that has private data.

PRI Attribute

Name of the attribute that has been edited.

Measures

Field

Description

SYS Count Distinct Count of Systems

 

OS Distinct Release Count

Count of Distinct Operationg Systems

OS Instance CVE Count

Count of Operating System CVE Vulnerability (product level)

OS High Severity Instance CVE Count

Count of OS CVE Vulnerabilities with High Severity (CVSS score of 7.0 - 10.0)

OS Medium Severity Instance CVE Count

Count of OS CVE Vulnerabilities with Medium Severity (CVSS score of 4.0 - 6.9)

OS Low Severity Instance CVE Count

Count of OS CVE Vulnerabilities with Low Severity (CVSS score of 0.0 - 3.9)

HW Distinct Product Count

Count of Distinct Hardware Products

HW Distinct Model Count

Count of Distinct Hardware Models

HW Instance CVE Count

Count of Hardware CVE Vulnerability (product level)

HW High Severity Instance CVE Count

Count of Hardware CVE Vulnerabilities with High Severity (CVSS score of 7.0 - 10.0)

HW Medium Severity Instance CVE Count

Count of Hardware CVE Vulnerabilities with Medium Severity (CVSS score of 4.0 - 6.9)

HW Low Severity Instance CVE Count

Count of Hardware CVE Vulnerabilities with Low Severity (CVSS score of 0.0 - 3.9)

SW Distinct Product Count

Count of Distinct Software Products

SW Distinct Version Count

Count of Distinct Software Versions

SW Distinct Edition Count

Count of Distinct Software Editions

SW Distinct Release Count

Count of Distinct Software Releases

SW Install Count

Count of Software Installations

SW Use Count

Count of Used Software Installations

SW Instance CVE Count

Count of Software CVE Vulnerability (product level)

SW High Severity Instance CVE Count

Count of Software CVE Vulnerabilities with High Severity (CVSS score of 7.0 - 10.0)

SW Medium Severity Instance CVE Count

Count of Software CVE Vulnerabilities with Medium Severity (CVSS score of 4.0 - 6.9)

SW Low Severity Instance CVE Count

Count of Software CVE Vulnerabilities with Low Severity (CVSS score of 0.0 - 3.9)