U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST IR 7502

The Common Configuration Scoring System (CCSS): Metrics for Software Security Configuration Vulnerabilities

Date Published: December 2010

Author(s)

Peter Mell (NIST), Karen Scarfone (G2)

Abstract

Keywords

security configuration; security measurement; vulnerability measurement; vulnerability scoring
Control Families

Configuration Management; Risk Assessment

Documentation

Publication:
https://doi.org/10.6028/NIST.IR.7502
Download URL

Supplemental Material:
None available

Document History:
12/27/10: IR 7502 (Final)