IPAddress¶
The IPAddress asset type in the OWASP Open Asset Model (OAM) represents a concrete IP address and its associated protocol version, used to uniquely identify network endpoints in the model.
- Definition: An
IPAddressasset holds two primary attributes: address: The actual IP address in string format (e.g.,192.0.2.1or2001:db8::1).-
type: The IP protocol version, typically eitherIPv4orIPv6. -
Purpose: This asset type enables the explicit representation of individual IP addresses as first-class entities within the attack surface model. These can be linked to other assets (e.g., domains, ports, hosts) to show how infrastructure components are exposed or interconnected via the network.
-
Design Choice: By separating the address from its protocol type, the model supports clear differentiation between IPv4 and IPv6, even when similar address representations exist. This structure also improves compatibility with analysis tools and threat modeling processes that treat IPv4 and IPv6 differently due to their behavior and reachability characteristics.
In summary, the IPAddress asset provides a simple yet precise way to model network identity, supporting both IPv4 and IPv6, and serving as a foundational building block for visualizing and analyzing network-layer exposure in the OAM.
IPAddress Attributes¶
| Attributes | Type | Required | Description |
|---|---|---|---|
address |
string | Unique Internet Protocol address (e.g. 72.237.4.113) | |
type |
string | The IP protocol version, typically either IPv4 or IPv6 |
IPAddress Properties¶
| Property Type | Property Name | Description |
|---|---|---|
SimpleProperty |
last_monitored |
Tracks when a data source was last queried regarding this IPAddress |
SourceProperty |
Source Plugin Name | Indicates that the specified data source discovered this IPAddress |
IPAddress Outgoing Relations¶
graph TD
ipaddr["IPAddress"]
fqdn["FQDN (e.g. 113.4.237.72.in-addr.arpa)"]
ptr@{ shape: braces, label: "ptr_record"}
ipaddr --o ptr
ptr --> fqdn
service["Service"]
port@{ shape: braces, label: "port"}
ipaddr --o port
port --> service| Relation Type | Relation Label | Target Assets | Description |
|---|---|---|---|
SimpleRelation |
ptr_record |
FQDN |
Links an IPAddress to its DNS name used in PTR records |
PortRelation |
port |
Service |
Represents a port at the IPAddress with a responding service |
© 2025 Jeff Foley — Licensed under Apache 2.0.