XML-based language formats checklists for IT security

NISTとNSAがITセキュリティのチェックリストをXMLで公開。
XML-based language formats checklists for IT security

Public release date: 26-Jan-2005
[ Print Article | E-mail Article | Close Window ]

Contact: Jan Kosko
janice.kosko@nist.gov
301-975-2767
National Institute of Standards and Technology (NIST)

XML-based language formats checklists for IT security
To make it easier to measure the security of an information technology product or system, researchers at the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) have developed a common specification language--Extensible Configuration Checklist Description Format (XCCDF)--for writing security checklists and related documents.

The XCCDF specification document, Specification for the Extensible Configuration Checklist Description Format (XCCDF) (NISTIR 7188), is available at http://csrc.nist.gov/checklists/.