210-255 · Question #104
Which of the following is not an example of the VERIS main schema categories?
The correct answer is D. Incident forensics ID. This question tests knowledge of the four main schema categories defined in the VERIS framework. 'Incident forensics ID' is not a recognized VERIS schema category.
Question
Which of the following is not an example of the VERIS main schema categories?
Options
- AIncident tracking
- BVictim demographics
- CIncident descriptions
- DIncident forensics ID
How the community answered
(43 responses)- A7% (3)
- B2% (1)
- C2% (1)
- D88% (38)
Why each option
This question tests knowledge of the four main schema categories defined in the VERIS framework. 'Incident forensics ID' is not a recognized VERIS schema category.
Incident tracking is one of the four main VERIS schema categories, covering metadata about the incident record such as identifiers, timelines, and source information.
Victim demographics is a legitimate VERIS schema category that captures attributes of the affected organization, including industry vertical and organizational size.
Incident description is a core VERIS schema category that details the threat actors, actions taken, assets affected, and attributes of the security incident.
The VERIS (Vocabulary for Event Recording and Incident Sharing) framework defines four main schema categories - incident tracking, victim demographics, incident description, and discovery and response - and 'Incident forensics ID' does not correspond to any of them. VERIS is designed for standardized incident vocabulary and reporting, not forensic artifact identifiers. No such category exists in the official VERIS schema.
Concept tested: VERIS framework main schema categories
Source: https://verisframework.org/veris.html
Topics
Community Discussion
No community discussion yet for this question.