Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

NIST Releases Draft NISTIR 7511 Revision 5, Security Content Automation Protocol (SCAP) Version 1.3 Validation Program Test Requirements
January 16, 2018

NIST releases DRAFT NISTIR 7511, Revision 5: Security Content Automation Protocol (SCAP) Version 1.3 Validation Program Test Requirements. The National Institute of Standards and Technology (NIST) Security Content Automation Protocol (SCAP) Validation Program tests the ability of products and modules to use the features and functionality available through SCAP and its components.  SCAP 1.3 consists of a suite of specifications for standardizing the format and nomenclature by which security software communicates information about software flaws and security configurations. The standardization of security information facilitates interoperability and enables predictable results among disparate SCAP enabled security software. The SCAP Validation Program provides vendors an opportunity to have independent verification that security software correctly processes SCAP expressed security information and provides standardized output. NISTIR7511 revision 5 describes the test requirements for SCAP version 1.3.

Created January 16, 2018