STIX 2.x documentation is available here. This site contains archived STIX 1.x documentation. STIX is now maintained by the OASIS CTI TC.

Heads up! These docs are for STIX 1.0.1, which is not the latest version (1.2). View the latest!

SecurityCompromiseVocab-1.0STIX Vocabularies Schema

The SecurityCompromiseVocab is the default STIX vocabulary for expressing whether or not an incident resulted in a security compromise.

Vocabulary Items

Item	Description
Yes	It has been confirmed that this incident resulted in a security compromise.
Suspected	It is suspected that this incident resulted in a security compromise.
No	It has been confirmed that this incident did not result in a security compromise.
Unknown	It is not known whether this incident resulted in a security compromise.

Field Name	Type	Description
@vocab_nameoptional	string	The vocab_name field specifies the name of the controlled vocabulary.
@vocab_referenceoptional	anyURI	The vocab_reference field specifies the URI to the location of where the controlled vocabulary is defined, e.g., in an externally located XML schema file.