securityRecommendation
P11328
predicate
Indicates that one entity advises or prescribes specific security-related actions, settings, or measures for another entity.
All labels observed (10)
| Label | Occurrences |
|---|---|
| securityRecommendation canonical | 9 |
| recommendedMitigation | 4 |
| securityMitigation | 2 |
| securityRecommendationFromExperts | 2 |
| passwordStorageRecommendation | 1 |
| recommendationBySecurityCommunity | 1 |
| recommendedSecurityPractice | 1 |
| securityAdvice | 1 |
| securityBestPractice | 1 |
| updatesSecurityPracticesFor | 1 |
Description generation (PDg)
The one-sentence description above was generated by prompting gpt-5.1 with the predicate name and this instruction.
Instruction
Given a predicate that represents a relationship or action between entities, generate a one-sentence description explaining its meaning. # Instructions Focus on describing the relationship, not the entities themselves. # Response Format Begin the description with \' Indicates...\'
Input
Predicate: securityRecommendation
Generated description
Indicates that one entity advises or prescribes specific security-related actions, settings, or measures for another entity.
Sample triples (23)
| Subject | Object |
|---|---|
| HTTP/2 | use over TLS ⓘ |
| SMB | disable SMB1 ⓘ |
| SMB | restrict access to port 445 ⓘ |
| Remote Desktop Protocol | use of VPN for remote access via predicate surface "recommendedMitigation" ⓘ |
| Remote Desktop Protocol | enabling Network Level Authentication via predicate surface "recommendedMitigation" ⓘ |
| Remote Desktop Protocol | restricting access with firewalls via predicate surface "recommendedMitigation" ⓘ |
| Remote Desktop Protocol | using strong authentication via predicate surface "recommendedMitigation" ⓘ |
| RFC 8314 | email protocols via predicate surface "updatesSecurityPracticesFor" ⓘ |
| Virtual Network Computing | use with SSH or VPN tunneling ⓘ |
| plpython2u | avoid granting to untrusted users ⓘ |
| Wi‑Fi Protected Setup | use manual WPA2 or WPA3 configuration instead of WPS via predicate surface "securityAdvice" ⓘ |
| WPS | avoid using WPS PIN method via predicate surface "securityRecommendationFromExperts" ⓘ |
| WPS | prefer manual Wi‑Fi configuration over WPS via predicate surface "securityRecommendationFromExperts" ⓘ |
| Cisco Discovery Protocol | disable on untrusted interfaces via predicate surface "recommendedSecurityPractice" ⓘ |
|
TLS heartbeat extension (later deprecated)
surface form:
TLS heartbeat extension
|
disable heartbeat extension on servers ⓘ |
|
TLS heartbeat extension (later deprecated)
surface form:
TLS heartbeat extension
|
upgrade vulnerable TLS libraries ⓘ |
| LoadLibrary | use fully qualified paths to DLLs via predicate surface "securityMitigation" ⓘ |
| LoadLibrary | use SetDefaultDllDirectories or AddDllDirectory via predicate surface "securityMitigation" ⓘ |
| Basic | use only over secure transport such as HTTPS ⓘ |
| Basic | store password equivalents such as salted hashes via predicate surface "passwordStorageRecommendation" ⓘ |
| Basic | combine with HTTPS and strong password policies via predicate surface "securityBestPractice" ⓘ |
| MD4 | do not use for new designs ⓘ |
| Message-Digest Algorithm 5 | migrate to stronger hash functions via predicate surface "recommendationBySecurityCommunity" ⓘ |