Security Content Automation Protocol (SCAP) - Build Security In

21.01.2015 • Views

Share Embed Flag

Security Content Automation Protocol (SCAP) - Build Security In

ePAPER READ

DOWNLOAD ePAPER

buildsecurityin.us.cert.gov

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

SCAP Validation Capabilities

Currently being validated

Currently on list, not yet being validated

FDCC Scanner

Intrusion Detection and Prevention Systems (IDPS)*

Authenticated Vulnerability and Patch Scanner Patch Remediation*

Authenticated Configuration Scanner

Malware Tool*

Unauthenticated ti t Vulnerability Scanner

Asset Scanner*

Mis-configuration Remediation

Vulnerability Database

Mis-configuration Database

SCAP Component Standards

Common Vulnerabilities and Exposures (CVE)

http://cve.mitre.org

Common Configuration Enumeration (CCE) http://cce.mitre.org

Common Platform Enumeration (CPE)*

http://cpe.mitre.org

Common Vulnerability Scoring System (CVSS)

http://www.first.org/cvss/index.html

t / /i eXtensible Configuration Checklist Document

Format (XCCDF)

http://nvd.nist.gov/xccdf.cfm

Open Vulnerability Assessment Language (OVAL)

http://oval.mitre.org

* Not currently available for validation

Software Assurance Forum for Excellence in Code - Build Security In

Enabling Enterprise Resilience through Security Automation ...

Threat Modeling: Diving into the Deep End - Build Security In

The Hyperion System: CompuZng Software ... - Build Security In

04 Shakeel Tufail OpenSAMM ... - Build Security In

Software Assurance in Acquisition and Contract Language

Secure Coding SwA Pocket Guide - Build Security In - US-CERT

Requirements and Analysis for Secure Software - Build Security In ...

Deloitte's Cloud Computing Risk Intelligence Map - Build Security In

Planning the Implementation of Attack-aware ... - Build Security In

Risked Based Software Security Testing - Build Security In - US-CERT

Architecture and Design Considerations - Build Security In - US-CERT

Michele Moss, Booz Allen Hamilton - Build Security In

SCAP Validation Capabilities Currently being validated Currently on list, not yet being validated FDCC Scanner Intrusion Detection and Prevention Systems (IDPS)* Authenticated Vulnerability and Patch Scanner Patch Remediation* Authenticated Configuration Scanner Malware Tool* Unauthenticated ti t Vulnerability Scanner Asset Scanner* Mis-configuration Remediation Vulnerability Database Mis-configuration Database SCAP Component Standards Common Vulnerabilities and Exposures (CVE) http://cve.mitre.org Common Configuration Enumeration (CCE) http://cce.mitre.org Common Platform Enumeration (CPE)* http://cpe.mitre.org Common Vulnerability Scoring System (CVSS) http://www.first.org/cvss/index.html t / /i eXtensible Configuration Checklist Document Format (XCCDF) http://nvd.nist.gov/xccdf.cfm Open Vulnerability Assessment Language (OVAL) http://oval.mitre.org * Not currently available for validation

19 SCAP Validated Products from 13 Vendors SCAP Validation Program was started February 2008

Page 1 and 2: Security Content Automation Protoco
Page 3 and 4: SCAP is about Communication and Mea
Page 5 and 6: Security Content Automation Protoco
Page 7 and 8: eXtensible Checklist Configuration
Page 9: SCAP Validation Program • Provide
Page 13 and 14: National Checklist Program Hosted a

Security Content Automation Protocol (SCAP) - Build Security In

Create successful ePaper yourself

Delete template?

Save as template?