Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

We are building a provable archive!
A lock ( Dot gov ) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Security Content Automation Protocol SCAP

Project Links

Overview FAQs News & Updates Events Publications

CCE Working Group

CCE is industry-endorsed through the CCE Working Group, which includes members from industry, academia, and government.

IMPORTANT: Activity on the CCE effort has been suspended

Send comments or concerns to cce@nist.gov.

Participants

American International Group, Inc.

Application Security Inc.

Bentley College

BlackStratus, Inc.

Booz Allen Hamilton

Center for Internet Security

CERIAS/Purdue University

Cisco Systems, Inc.

Defense Information Systems Agency (DISA)

Department of Homeland Security (DHS)

Depository Trust & Clearing Corporation (DTCC)

eEye Digital Security

Electronic Warfare Associates-Canada, Ltd.

Enterprise Consulting Group, LLC

Environmental Protection Agency (EPA)

GuardSight, Inc.

Honeywell International Inc.

IBM Corporation

Information-technology Promotion Agency, Japan (IPA)

Internal Revenue Service (IRS)

Lassesen Consulting, LLC

Lumension Security

Microsoft Corporation

MITRE Corporation

Modulo Security

National Aeronautics and Space Administration (NASA)

National Institute of Standards and Technology (NIST)

National Security Agency (NSA)

nCircle Network Security, Inc.

netVigilance, Inc.

SecPod Technologies

Secure Elements, Inc.

Shaw Communications Inc.

Specialized Security Solutions

Symantec Corporation

Tapestry Technologies, LLC

Tenable Network Security

ThreatGuard, Inc.

Unified Compliance

U.S. Department of Justice (USDOJ)

U.S. Department of State

University of Nebraska at Omaha

Project Links

Overview FAQs News & Updates Events Publications

Additional Pages

Contacts

SCAP Inquiries
scap@nist.gov

Topics

Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management

Related Projects

DevSecOps
macOS Security
National Checklist Program
Open Security Controls Assessment Language
SCAP v2
SCAP Validation Program
Software Identification Tagging
Testing Laboratories
U.S. Government Configuration Baseline

Contacts

SCAP Inquiries
scap@nist.gov

Topics

Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management

Related Projects

DevSecOps
macOS Security
National Checklist Program
Open Security Controls Assessment Language
SCAP v2
SCAP Validation Program
Software Identification Tagging
Testing Laboratories
U.S. Government Configuration Baseline

Created December 07, 2016, Updated January 10, 2022