Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( Dot gov ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Security Content Automation Protocol SCAP

Project Links

Overview FAQs News & Updates Events Publications

SCAP Specifications

Project Links

Overview FAQs News & Updates Events Publications

Additional Pages

Contacts

SCAP Inquiries
scap@nist.gov

Topics

Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management

Related Projects

DevSecOps
macOS Security
National Checklist Program
Open Security Controls Assessment Language
SCAP v2
SCAP Validation Program
Software Identification Tagging
Testing Laboratories
U.S. Government Configuration Baseline

Contacts

SCAP Inquiries
scap@nist.gov

Topics

Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management

Related Projects

DevSecOps
macOS Security
National Checklist Program
Open Security Controls Assessment Language
SCAP v2
SCAP Validation Program
Software Identification Tagging
Testing Laboratories
U.S. Government Configuration Baseline

Created December 07, 2016, Updated January 10, 2022