This is a potential security issue, you are being redirected to https://csrc.nist.gov
Draft Pubs
Final Pubs
FIPS
Special Publications (SPs)
NISTIRs
ITL Bulletins
White Papers
Journal Articles
Conference Papers
Books
Security & Privacy
Applications
Technologies
Sectors
Laws & Regulations
Activities & Products
Computer Security Division
Applied Cybersecurity Division
Contact Us
Release CycleSCAP ContentSCAP ReleasesSCAP 1.3SCAP 1.2SCAP 1.1SCAP 1.0SCAP SpecificationsAsset IdentificationAsset Reporting Format (ARF)Common Configuration Enumeration (CCE)Common Platform Enumeration (CPE)Applicability LanguageDictionaryName MatchingNamingOpen Vulnerability Assessment Language (OVAL)Open Checklist Interactive Language (OCIL)Trust Model for Security Automation Data (TMSAD)Extensible Configuration Checklist Description Format (XCCDF)Software Identification (SWID)Emerging SpecificationsEmerging Specification ListingAsset Summary Reporting (ASR)SCAP Community
SCAP Inquiries scap@nist.gov
Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management