https://cacontology.projectvic.org/law-enforcement-corruption/shapes#InsiderThreatDetectionShape
Enhanced shape for insider threat detection with complexity and evidence integrity assessments.
Instances of cacontology-corruption:InsiderThreatDetection can have the following properties:
PROPERTY |
MIN COUNT |
MAX COUNT |
TYPE |
|
|---|---|---|---|---|
| cacontology-corruption:InsiderThreatDetection | ||||
| cacontology-corruption:hasEvidenceIntegrity | 1 |
xsd:double
|
||
| cacontology-corruption:hasInvestigationComplexity | 1 |
xsd:string
|
||
| 1 | ||||
@prefix cacontology-corruption: <https://cacontology.projectvic.org/law-enforcement-corruption#> .
@prefix cacontology-corruption-shapes: <https://cacontology.projectvic.org/law-enforcement-corruption/shapes#> .
@prefix gufo: <http://purl.org/nemo/gufo#> .
@prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
@prefix sh: <http://www.w3.org/ns/shacl#> .
@prefix xsd: <http://www.w3.org/2001/XMLSchema#> .
cacontology-corruption-shapes:InsiderThreatDetectionShape a sh:NodeShape ;
rdfs:label "Insider Threat Detection Shape"@en ;
rdfs:comment "Enhanced shape for insider threat detection with complexity and evidence integrity assessments."@en ;
sh:property [ sh:hasValue gufo:EventType ;
sh:message "Must be classified as gUFO EventType"@en ;
sh:minCount 1 ;
sh:path rdf:type ;
sh:severity sh:Violation ],
[ sh:datatype xsd:string ;
sh:in ( "simple" "moderate" "complex" "highly_complex" "extremely_complex" ) ;
sh:maxCount 1 ;
sh:message "Investigation complexity should be assessed"@en ;
sh:path cacontology-corruption:hasInvestigationComplexity ;
sh:severity sh:Warning ],
[ sh:datatype xsd:double ;
sh:maxCount 1 ;
sh:maxInclusive 1.0 ;
sh:message "Evidence integrity should be measured"@en ;
sh:minInclusive 0.0 ;
sh:path cacontology-corruption:hasEvidenceIntegrity ;
sh:severity sh:Info ] ;
sh:targetClass cacontology-corruption:InsiderThreatDetection .