Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat: [#1069] - added signature state id into the Digital signature #1070

Merged
merged 7 commits into from
May 15, 2024
Merged

Feat: [#1069] - added signature state id into the Digital signature #1070

merged 7 commits into from
May 15, 2024

Conversation

PavelJurka
Copy link
Contributor

@PavelJurka PavelJurka commented May 2, 2024
edited

description

Map the signature state to signature state id (+signature state as usual)

Related Issue:

#1069

Description of changes:

signature_state_id: optional
0 Unknown
1 Valid
2 Expired
3 Revoked
9 Other
signature_state: optional String as a value of signature_state_id, custom in a case of 99 as usual.

@PavelJurka PavelJurka changed the title Feat: [#1069] - added signate state id into the Digital signature to … Feat: [#1069] - added signature state id into the Digital signature to … May 2, 2024
@PavelJurka PavelJurka changed the title Feat: [#1069] - added signature state id into the Digital signature to … Feat: [#1069] - added signature state id into the Digital signature May 2, 2024
@mikeradka
Copy link
Contributor

We discussed this a bit offline, and it looks like to avoid adding a new dictionary object, we could accomplish this by simply using the status_id and status attributes within the Digitial Signature object, and overwrite the default enums with the desired enums (revoked, expired, etc)

@mikeradka mikeradka added enhancement New feature or request non_breaking Non Breaking, backwards compatible changes v1.3.0 and later Changes marked for versions beyond v1.3.0 of OCSF labels May 3, 2024
floydtree
floydtree requested changes May 3, 2024
View reviewed changes
dictionary.json Outdated Show resolved Hide resolved
dictionary.json Outdated Show resolved Hide resolved
@PavelJurka
Copy link
Contributor Author

We discussed this a bit offline, and it looks like to avoid adding a new dictionary object, we could accomplish this by simply using the status_id and status attributes within the Digitial Signature object, and overwrite the default enums with the desired enums (revoked, expired, etc)

Thank you, that make sense.

@PavelJurka PavelJurka requested a review from floydtree May 6, 2024 12:07
mikeradka
mikeradka previously approved these changes May 8, 2024
View reviewed changes
Copy link
Contributor

@mikeradka mikeradka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks good to me

@PavelJurka
Merge branch 'main' into signature_state
6674d6b 
Signed-off-by: Pavel Jurka <pavel.jurka@sentinelone.com>
Aniak5
Aniak5 approved these changes May 15, 2024
View reviewed changes
Copy link
Contributor

@Aniak5 Aniak5 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@pagbabian-splunk pagbabian-splunk merged commit 58d418f into ocsf:main May 15, 2024
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Aniak5 Aniak5 Aniak5 approved these changes

@pagbabian-splunk pagbabian-splunk pagbabian-splunk approved these changes

@floydtree floydtree floydtree approved these changes

@zschmerber zschmerber Awaiting requested review from zschmerber zschmerber is a code owner

@mikeradka mikeradka Awaiting requested review from mikeradka mikeradka is a code owner

Assignees
No one assigned
Labels
enhancement New feature or request non_breaking Non Breaking, backwards compatible changes v1.3.0 and later Changes marked for versions beyond v1.3.0 of OCSF
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@PavelJurka @mikeradka @Aniak5 @pagbabian-splunk @floydtree