Documentation for Open Vulnerability and Assessment Language (OVAL®)
Definition Type: Element
Name: data
Namespace: http://oval.mitre.org/XMLSchema/oval#windows
Type: oval:dataType
Containing Schema: windows-schema.xsd
MinOccurs 0
MaxOccurs 1
Abstract
Collapse XSD Schema Diagram:
Drilldown into system in schema windows-schema_xsd Drilldown into privilege_use in schema windows-schema_xsd Drilldown into policy_change in schema windows-schema_xsd Drilldown into object_access in schema windows-schema_xsd Drilldown into logon in schema windows-schema_xsd Drilldown into directory_service_access in schema windows-schema_xsd Drilldown into detailed_tracking in schema windows-schema_xsd Drilldown into account_management in schema windows-schema_xsd Drilldown into account_logon in schema windows-schema_xsd Drilldown into operation in schema oval-schema_xsd Drilldown into dataType in schema oval-schema_xsdXSD Diagram of data in schema windows-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))
Collapse XSD Schema Code: 
<xsd:element name="data" minOccurs="0" maxOccurs="1">
    <xsd:complexType>
        <xsd:complexContent>
            <xsd:extension base="oval:dataType">
                <xsd:sequence>
                    <xsd:element name="account_logon" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to log on to or log off of the system. Also, audit attempts to make a network connection.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="account_management" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to create, delete, or change user or group accounts. Also, audit password changes.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="detailed_tracking" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit specific events, such as program activation, some forms of handle duplication, indirect access to an object, and process exit. </xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="directory_service_access" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to access the directory service.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="logon" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to log on to or log off of the system. Also, audit attempts to make a network connection.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="object_access" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to access securable objects, such as files.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="policy_change" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to change Policy object rules. </xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="privilege_use" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to use privileges.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="system" type="windows:subtestAuditType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Audit attempts to shut down or restart the computer. Also, audit events that affect system security or the security log.</xsd:documentation>
                            <xsd:appinfo>
                                <parent_test>Audit Event Policy Test</parent_test>
                                <cardinality>0-1</cardinality>
                                <content>string</content>
                                <valid_datatypes>string</valid_datatypes>
                                <valid_operators>equals, not equal</valid_operators>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                </xsd:sequence>
            </xsd:extension>
        </xsd:complexContent>
    </xsd:complexType>
</xsd:element>
Collapse Child Elements:
Name Type Min Occurs Max Occurs
account_logon windows:account_logon 0 1
account_management windows:account_management 0 1
detailed_tracking windows:detailed_tracking 0 1
directory_service_access windows:directory_service_access 0 1
logon windows:logon 0 1
object_access windows:object_access 0 1
policy_change windows:policy_change 0 1
privilege_use windows:privilege_use 0 1
system windows:system 0 1
Collapse Child Attributes:
Name Type Default Value Use
operation oval:operation AND Optional
Collapse Derivation Tree:
Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0