Skip to content
This repository has been archived by the owner on Jan 24, 2025. It is now read-only.

Asset Linking

Jump to bottom
Austin Songer, CISSP edited this page Dec 23, 2024 · 2 revisions

Asset linking is the process of associating a specific asset (e.g., server, application, database) with a POA&M item to provide context for the vulnerability or compliance finding. This relationship helps track which assets are affected by specific issues and ensures accurate remediation and accountability.

Why Asset Linking is Important

  1. Contextual Understanding:
    • Knowing which assets are affected by a vulnerability helps prioritize remediation based on the criticality of the asset.
  2. Remediation Planning:
    • Enables teams to assign resources and develop specific remediation plans for each affected asset.
  3. Audit and Compliance:
    • Demonstrates a clear relationship between findings and the assets in scope for compliance audits.
  4. Accountability:
    • Facilitates assigning responsibility to asset owners or teams for resolving issues.

How Asset Linking Works in the POA&M App

  1. Data Model:

    • The POAM and Asset models have a many-to-many relationship.
    • A poam_assets association table is used to store links between POA&M items and assets.

    Example models:

    poam_assets = db.Table(
    'poam_assets',
    db.Column('poam_id', db.Integer, db.ForeignKey('poam.id'), primary_key=True),
    db.Column('asset_id', db.Integer, db.ForeignKey('assets.id'), primary_key=True)
)

class POAM(db.Model):
    __tablename__ = 'poam'
    id = db.Column(db.Integer, primary_key=True)
    # Other fields...
    assets = db.relationship('Asset', secondary='poam_assets', back_populates='poam_items')

class Asset(db.Model):
    __tablename__ = 'assets'
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(255), nullable=False)
    poam_items = db.relationship('POAM', secondary='poam_assets', back_populates='assets')

  2. Asset Linking Logic:

    • When a POA&M item is created or updated, you can link it to one or more assets.

    Example code for linking an asset:

    def link_asset_to_poam(poam_id, asset_data):
    poam_item = POAM.query.get(poam_id)
    if not poam_item:
        return None

    # Check if the asset already exists
    asset = Asset.query.filter_by(name=asset_data['name']).first()
    if not asset:
        # Create a new asset if it doesn't exist
        asset = Asset(name=asset_data['name'], description=asset_data.get('description'))
        db.session.add(asset)

    # Link the asset to the POA&M item
    poam_item.assets.append(asset)
    db.session.commit()
    return asset

  3. Fetching Linked Assets:

    • Retrieve all assets linked to a specific POA&M item:
    def get_assets_for_poam(poam_id):
    poam_item = POAM.query.get(poam_id)
    return poam_item.assets if poam_item else []

  4. UI Integration:

    • Users can view and manage linked assets through the app’s interface:
      • A list of linked assets is displayed for each POA&M item.
      • Options to add, update, or remove linked assets are provided.

  5. Database Representation:

    • In the database, the poam_assets table links poam.id and assets.id to establish the many-to-many relationship.

    Example poam_assets entry:

    poam_id | asset_id
--------|---------
   1    |    10
   1    |    11
   2    |    12

  6. Use Case Example:

    • Suppose you have a POA&M item for a vulnerability affecting multiple servers.
    • Assets "Server A" and "Server B" are linked to the POA&M item to indicate which systems require remediation.
Clone this wiki locally