• Home
• org.mitre
• stix
• 1.2.0.2
• source code
• Unix_Process_Object.xsd

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

schemas.v1.2.0.cybox.objects.Unix_Process_Object.xsd Maven / Gradle / Ivy

	
		This schema was originally developed by The MITRE Corporation. The CybOX XML Schema implementation is maintained by The MITRE Corporation and developed by the open CybOX Community. For more information, including how to get involved in the effort and how to submit change requests, please visit the CybOX website at http://cybox.mitre.org.
		
			Unix_Process_Object
			2.1
			01/22/2014			
			The following specifies the fields and types that compose this defined CybOX Object type. Each defined object is an extension of the abstract ObjectPropertiesType, defined in CybOX Common. For more information on this extension mechanism, please see the CybOX Specification. This document is intended for developers and assumes some familiarity with XML. 
			Copyright (c) 2012-2014, The MITRE Corporation. All rights reserved. The contents of this file are subject to the terms of the CybOX License located at http://cybox.mitre.org/about/termsofuse.html. See the CybOX License for the specific language governing permissions and limitations for use of this schema. When distributing copies of the CybOX Schema, this license header must be included.
		
	
	
	
	
		
			The Unix_Process object is intended to characterize Unix processes.
		
	
	
		
			The UnixProcessObjectType type is intended to characterize Unix processes.
		
		
			
				
					
						
							The Open_File_Descriptor_List field specifies a listing of the current file descriptors used by the Unix process.
						
					
					
						
							The Priority field specifies the priority of the Unix process.
						
					
					
						
							The RUID field specifies the real user ID, which represents the Unix user who created the process.
						
					
					
						
							The Session_ID field specifies the Unix Session ID of the process.
						
					
				
			
		
	
	
		
			The UnixProcessStatusType field specifies the current status of the running Unix process. It extends the abstract ProcessStatusType from the CybOX Process Object.
		
		
			
				
					
						
							Specifies the current state of the Unix process, using the UnixProcessStatusEnum enumeration.
						
					
					
						
							Specifies when the process started up.
						
					
				
			
		
	
	
		
			The FileDescriptorListType type specifies a list of Unix file descriptors.
		
		
			
				
					The File_Descriptor field specifies a particular Unix File Descriptor.
				
			
		
	
	
		
			UnixProcessStateType specifies Unix process states, via a union of the UnixProcessStateEnum type and the atomic xs:string type. Its base type is the CybOX Core BaseObjectPropertyType, for permitting complex (i.e. regular-expression based) specifications. See "man ps" for more information.
		
		
			
				
					
				
				
					
						This attribute is optional and specifies the expected type for the value of the specified property.
					
				
			
		
	
	
		
			The UnixProcessStateEnum is an enumeration of Unix process states.
		
		
			
				
					Specifies a running process or runnable [on run queue] (R).
				
			
			
				
					Specifies a process in uninterruptable sleep [usually IO] (D).
				
			
			
				
					Specifies a process in interruptable sleep [waiting for an event to complete] (S).
				
			
			
				
					Specifies a stopped process, either by a job control signal or because it is being traced (T).
				
			
			
				
					Specifies a paging process [not valid since the 2.6.xx kernel] (W).
				
			
			
				
					Specifies a dead process [should never be seen] (X).
				
			
			
				
					Specifies a defunct, zombie process [terminated but not reaped by its parent] (Z).