Identifier¶
The Identifier asset type in the OWASP Open Asset Model (OAM) represents a structured, time-aware label used to uniquely reference an asset, entity, or object within or across systems.
- Definition: An
Identifierincludes a unique string (unique_id) and a human-readable or system-specific ID value (id), along with metadata about its type, lifecycle, and status. It is defined by the following attributes: unique_id: A globally unique string representing the identifier instance (e.g., a UUID).id: The actual identifier value, such as a hostname, domain name, serial number, or object ID.id_type: A label describing the type of identifier (e.g.,arin,duns,email,lei, etc.).creation_date(optional): When the identifier was created.update_date(optional): The most recent update timestamp.expiration_date(optional): When the identifier is expected to expire or become invalid.-
status(optional): The current state of the identifier (e.g.,active,expired,revoked). -
Purpose: This asset type provides a standardized way to model references to assets or entities that exist in external systems, databases, or registries. It supports use cases such as identity tracking, configuration management, compliance audits, and historical analysis.
-
Design Choice: By separating the identifier’s core value (
id) from its metadata (such as timestamps and status), the model allows flexible and time-sensitive tracking of identifiers. This enables better integration with asset registries, IAM systems, and third-party feeds while preserving clarity in asset relationships.
In summary, the Identifier asset type captures structured, versioned references to external or internal identifiers, enabling the OAM to model asset identity and traceability across systems and time.
Identifier Attributes¶
| Attributes | Type | Required | Description |
|---|---|---|---|
unique_id |
string | A globally unique string representing the identifier | |
id |
string | The actual identifier value, such as a serial number | |
id_type |
string | A label describing the type of identifier | |
creation_date |
string | When the identifier was created | |
update_date |
string | The most recent update timestamp | |
expiration_date |
string | When the identifier is expected to become invalid | |
status |
string | The current state of the identifier |
Identifier Properties¶
| Property Type | Property Name | Description |
|---|---|---|
SimpleProperty |
last_monitored |
Tracks when a data source was last queried regarding this Identifier |
SourceProperty |
Source Plugin Name | Indicates that the specified data source discovered this Identifier |
Identifier Outgoing Relations¶
graph TD
ident["Identifier"]
contact["ContactRecord"]
allrel@{ shape: braces, label: "issuing_agent
issuing_authority
registration_agency" }
ident --o allrel
allrel --> contact| Relation Type | Relation Label | Target Assets | Description |
|---|---|---|---|
SimpleRelation |
registration_agency |
ContactRecord |
Links a registration ID with the registering agency |
SimpleRelation |
issuing_authority |
ContactRecord |
Links an identifier with its issuing authority |
SimpleRelation |
issuing_agent |
ContactRecord |
Links an identifier with its issuing agent |
© 2025 Jeff Foley — Licensed under Apache 2.0.