Version 5.11 (Archived)
OVAL Version 5.11 has been archived. OVAL Version 5.11.1 and further Core/Platform releases will reside on the OVALProject Language GitHub repository. Please review the change log wiki for a full list of updates, or visit the latest release wiki for links to the latest official Core and platform extension versions.
This page provides information on the proposed changes to the OVAL Language. All information about the new version is included in this centralized location. The major highlights of the release so far are listed below:
- Added mobile platform schemas for Android and Apple iOS.
- Added networking device platform schemas for Cisco IOS-XE, Cisco ASA, Juniper JunOS and NETCONF.
- Included new tests in Windows, Linux, and Solaris platforms.
- Deprecated two entities in the linux-def:rpmverifypackage_test. Deprecated the win-def:accesstoken_test, win-def:user_test and win-def:group_test.
- Made several documentation improvements in the OVAL Language Schemas and Specifications including the ipv4_address and ipv6_address datatypes and operations.
All of the above items remain open for discussion and any comments or feedback is greatly appreciated. For a complete listing of the release contents see the New in Version 5.11 section. More information about the OVAL Language review process can be found on the OVAL Language Review Process page.
Test Listing
A complete listing of the tests available in this release can be found on the Version 5.11 — Test Listing page.
Specifications
Please submit any comments or questions about the current versions of the OVAL Language Specification document(s) to oval-developer-list@lists.mitre.org. Along with any comments please specify the exact version of the document that is being commented on. Track changes has been enabled in the document and annotated documents are appreciated. If you would like to submit an annotated document please simply attach it to your email to the oval-developer-list. You may also submit comments directly to oval@mitre.org.
OVAL Language Specification:
- OVAL Language Specification 12-18-2014 (Word, 586 KB)
- OVAL Language Specification 12-18-2014 (PDF, 3.22 MB)
OVAL Language Component Model Specifications:
- OVAL Language Windows Component Data Model Specification 12-18-2014 (Word, 3.88 MB)
- OVAL Language Windows Component Data Model Specification 12-18-2014 (PDF, 2.28 MB)
- OVAL Language UNIX Component Data Model Specification 12-18-2014 (Word, 1.40 MB)
- OVAL Language UNIX Component Data Model Specification 12-18-2014 (PDF, 1.33 KB)
In addition, all currently available specifications associated with a particular schema are posted in the Specifications columns in the Downloads section, below.
Downloads
Includes downloads for the Version 5.11 Schemas, Specifications, Schematron Rules, Element Dictionaries, and Deprecation Listings.
KEY
Complete Schema — has all documentation embedded and the Schematron mark-up.
Minimal Schema — includes the raw xml schema only.
Schematron — a schema that can provide additional validation of OVAL V5 documents.
Documentation html — element dictionaries, which users can elect to view in a browser or save.
All files zip — all files zipped together to allow for one simple download.
xsd/sch — a user can either right click to download the file or left click to open the file in their default viewer.
Deprecation Listing — a list of all deprecated language constructs.
OVAL Definitions Schema Downloads |
||||||
|---|---|---|---|---|---|---|
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| All Files | zip | zip | zip | - | zip | sch | - |
| Core | xsd | xsd | html | Word | PDF | - | - |
| Common | xsd | xsd | html | Word | PDF | - | html |
OVAL Definitions Schema Extensions Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| Independent | xsd | xsd | html | - | - | html |
| Android | xsd | xsd | html | - | - | - |
| Apache | xsd | xsd | html | - | - | html |
| Apple iOS | xsd | xsd | html | - | - | - |
| Apple Macintosh | xsd | xsd | html | - | - | - |
| Cisco ASA | xsd | xsd | html | - | - | - |
| Cisco CatOS | xsd | xsd | html | - | - | html |
| Cisco IOS | xsd | xsd | html | - | - | html |
| Cisco IOS XE | xsd | xsd | html | - | - | - |
| Cisco PixOS | xsd | xsd | html | - | - | - |
| FreeBSD | xsd | xsd | html | - | - | - |
| HP-UX | xsd | xsd | html | - | - | html |
| IBM AIX | xsd | xsd | html | - | - | - |
| Juniper JunOS | xsd | xsd | html | - | - | - |
| Linux | xsd | xsd | html | - | - | html |
| Microsoft Windows | xsd | xsd | html | Word | PDF | - | html |
| NETCONF | xsd | xsd | html | - | - | - |
| SharePoint | xsd | xsd | html | - | - | - |
| Sun Solaris | xsd | xsd | html | - | - | html |
| UNIX | xsd | xsd | html | Word | PDF | - | html |
| Vmware ESX | xsd | xsd | html | - | - | html |
OVAL System Characteristics Schema Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| All Files | zip | zip | zip | - | zip | sch | - |
| Core | xsd | xsd | html | Word | PDF | - | - |
| Common | xsd | xsd | html | Word | PDF | - | html |
OVAL System Characteristics Schema Extensions Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| Independent | xsd | xsd | html | - | - | html |
| Android | xsd | xsd | html | - | - | - |
| Apache | xsd | xsd | html | - | - | html |
| Apple Macintosh | xsd | xsd | html | - | - | - |
| Apple iOS | xsd | xsd | html | - | - | - |
| Cisco ASA | xsd | xsd | html | - | - | - |
| Cisco CatOS | xsd | xsd | html | - | - | html |
| Cisco IOS | xsd | xsd | html | - | - | html |
| Cisco IOS XE | xsd | xsd | html | - | - | - |
| Cisco PixOS | xsd | xsd | html | - | - | - |
| FreeBSD | xsd | xsd | html | - | - | - |
| HP-UX | xsd | xsd | html | - | - | - |
| IBM AIX | xsd | xsd | html | - | - | - |
| Juniper JunOS | xsd | xsd | html | - | - | - |
| Linux | xsd | xsd | html | - | - | html |
| Microsoft Windows | xsd | xsd | html | Word | PDF | - | html |
| NETCONF | xsd | xsd | html | - | - | - |
| SharePoint | xsd | xsd | html | - | - | - |
| Sun Solaris | xsd | xsd | html | - | - | - |
| UNIX | xsd | xsd | html | Word | PDF | - | - |
| Vmware ESX | xsd | xsd | html | - | - | html |
OVAL Results Schema Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| All Files | zip | zip | zip | - | zip | sch | - |
| Core | xsd | xsd | html | Word | PDF | - | - |
| Common | xsd | xsd | html | Word | PDF | - | html |
| Definitions | xsd | xsd | html | Word | PDF | - | - |
| System Characteristics | xsd | xsd | html | Word | PDF | - | - |
OVAL Variables Schema Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| All Files | zip | zip | zip | - | zip | sch | - |
| Core | xsd | xsd | html | Word | PDF | - | - |
| Common | xsd | xsd | html | Word | PDF | - | html |
OVAL Directives Schema Downloads |
||||||
| File Name | Complete Schema | Minimal Schema | Documentation | Specification | Schematron | Deprecation Listing |
| All Files | zip | zip | zip | - | zip | sch | - |
| Core | xsd | xsd | html | Word | PDF | - | - |
| Common | xsd | xsd | html | Word | PDF | - | html |
| Results | xsd | xsd | html | Word | PDF | - | - |
Example XML Stylesheets |
||||||
| File Name | Description | |||||
| results_to_html.xsl | The results_to_html stylesheet converts an OVAL Results document into a more readable html format. | |||||
| minimal_schema.xsl | The minimal_schema stylesheet removes all annotation elements from the OVAL Schema leaving only the minimal schema. | |||||
| element_dictionary.xsl | The element_dictionary stylesheet creates documentation files from the OVAL Schema. | |||||
| reference_mapping.xsl | The reference_mapping stylesheet creates a map between each OVAL Definition in a document and a specified reference source. | |||||
New in Version 5.11
Version 5.11 of the Official OVAL Schema is a direct result of feedback from the OVAL Community. This will be a minor version change and may require some new development by tools that support earlier versions of the Language.
The OVAL Language issue tracker and download files are also now hosted on the OVALProject Language Repository on GitHub.com. Hosting the OVALProject Language Repository on GitHub better allows OVAL Community members to make open-source contributions and manage issue tracking for the OVAL schemas, specifications, and other supporting information and items.
Tracker Items
The changes pending to the different schemas and specifications are outlined in the OVAL Language Issue Tracker on GitHub.
An "Open" status means the item is under consideration or being worked upon and "Closed" status means that the item has been incorporated and work on it is completed. For full details on a particular item, please select the title of that issue.
Changelog
A changelog of all of the issues that have been addressed in this release can be found here.
Downloads Also Available on GitHub
All download files for the new release are also hosted in the OVALProject Language Repository on GitHub.
Timeline for Version 5.11
| PLANNING | DRAFT(S) | RELEASE CANDIDATE | OFFICIAL |
| 26 April 2012 | 25 September 2013 | 18 November 2014 | 18 December 2014 |
Status Reports
Status updates are included below. You may also review the OVAL Developer’s Forum Archives for discussions about Version 5.11.
- [2014-12-18]
Version 5.11 has been officially released. Many thanks to all in the community who helped with this update release. - [2014-12-01]
Version 5.11 Release Candidate 2 is now available for community review and comment. As a reminder a release candidate signifies that the proposed OVAL Language revision has reached a level of consensus within the OVAL Community, and the OVAL Moderator has verified that the language is valid. It is during this stage that vendors and tool developers should update their tools with the knowledge that the schema will remain stable. Subsequent release candidates may be released if a serious problem is discovered in the proposed language. This release candidate represents a complete implementation of all planned changes for Version 5.11 and includes the following updates since the last release candidate: - Added authorizationdb_test, gatekeeper_test, keychain_test, launchd_test, rlimit_test, softwareupdate_test, systemprofiler_test, and systemsetup_test to Mac platform.
- Added the unix-def:symlink_test.
- Improved documentation on audit subcategory GUID mapping values.
- Added the glob_to_regex core function.
- [2014-11-18]
Version 5.11 Release Candidate 1 is now available for community review and comment. As a reminder a release candidate signifies that the proposed OVAL Language revision has reached a level of consensus within the OVAL Community, and the OVAL Moderator has verified that the language is valid. It is during this stage that vendors and tool developers should update their tools with the knowledge that the schema will remain stable. Subsequent release candidates may be released if a serious problem is discovered in the proposed language. This release candidate does not include open ballots to the OVAL Board for other planned changes for Version 5.11. - [2014-05-22]
- All proposals for suggested changes for the upcoming release of OVAL Version 5.11 must be submitted to the
OVAL Community no later than 2014-05-31. Please send any comments or concerns to the
OVAL Community or directly to
oval@mitre.org.
- [2013-09-25]
Version 5.11 Draft 2 is now available for community review and comment. This second draft includes support for the last login time in the win-def:user_sid55_test, four new registry value types in the win-def:registry_test, and the operator attribute on the oval-def:PossibleRestrictionType. It also includes updated documentation for the ipv4_address and ipv6_address datatypes and operations among many other improvements.
Please note that we have not yet pulled in any changes from the OVAL Language Sandbox into the official OVAL release as we are still working to finalize the migration process. Once finalized, all OVAL Language Sandbox changes targeted for the OVAL 5.11 release will be considered for inclusion in the official release.
If you have any suggestions for changes that should be included, please send them to the OVAL Community. - [2013-02-20]
Version 5.11 Draft 1 is now available for community review and comment. This first draft includes support for notes in variables, the collection of hive values in the win-def:registry_test, and several documentation improvements. It also includes the deprecation of the digest_check_passed and signature_check_passed entities in the linux-def:rpmverifypackage_test. If you have any suggestions for changes that should be included, please send them to the OVAL Community. - [2012-04-26]
Version 5.11 is currently in the planning stage. If you have any suggestions for changes that should be included, please send them to the OVAL Community.
Page Last Updated: April 22, 2015
