This document outlines the items of the OVAL System Characteristics XML schema that are independent of any specific family or platform. Each iten is an extention of a basic System Characteristics item defined in the core System Characteristics XML schema.
The OVAL Schema is maintained by The MITRE Corporation and developed by the public OVAL Community. For more information, including how to get involved in the project and how to submit change requests, please visit the OVAL website at http://oval.mitre.org.
This element stores high level system OS type, otherwise known as the family.
Child Elements Type MinOccurs MaxOccurs family ind-sc:EntityItemFamilyType 0 1
This element stores the different hash values associated with a specific file.
Child Elements Type MinOccurs MaxOccurs filepath oval-sc:EntityItemStringType 0 1 path oval-sc:EntityItemStringType 0 1 filename oval-sc:EntityItemStringType 0 1 md5 oval-sc:EntityItemStringType 0 1 sha1 oval-sc:EntityItemStringType 0 1
This item stores information about environment variables and their values.
Child Elements Type MinOccurs MaxOccurs name oval-sc:EntityItemStringType 0 1 value oval-sc:EntityItemAnySimpleType 0 1
| Deprecated As Of Version: 5.7 Reason: Replaced by the ldap57_item. This item allows for single fields to be selected from a ldap. A new item was created to allow more than one field to be selected in one statement. See the ldap57_item. Comment: This object has been deprecated and may be removed in a future version of the language. |
This element holds information about specific entries in the LDAP directory. It extends the standard ItemType as defined in the oval-system-characteristics schema and one should refer to the ItemType description for more information.
Child Elements Type MinOccurs MaxOccurs suffix oval-sc:EntityItemStringType 0 1 relative_dn oval-sc:EntityItemStringType 0 1 attribute oval-sc:EntityItemStringType 0 1 object_class oval-sc:EntityItemStringType 0 1 ldaptype ind-sc:EntityItemLdaptypeType 0 1 value oval-sc:EntityItemAnySimpleType 0 unbounded
This element holds information about specific entries in the LDAP directory. It extends the standard ItemType as defined in the oval-system-characteristics schema and one should refer to the ItemType description for more information.
Child Elements Type MinOccurs MaxOccurs suffix oval-sc:EntityItemStringType 0 1 relative_dn oval-sc:EntityItemStringType 0 1 attribute oval-sc:EntityItemStringType 0 1 object_class oval-sc:EntityItemStringType 0 1 ldaptype ind-sc:EntityItemLdaptypeType 0 1 value oval-sc:EntityItemRecordType 0 unbounded
| Deprecated As Of Version: 5.7 Reason: Replaced by the sql57_item. This item allows for single fields to be selected from a database. A new item was created to allow more than one field to be selected in one statement. See the sql57_item. Comment: This object has been deprecated and may be removed in a future version of the language. |
The sql_item outlines information collected from a database via an SQL query.
Child Elements Type MinOccurs MaxOccurs engine oval-sc:EntityItemStringType 0 1 version oval-sc:EntityItemStringType 0 1 connection_string oval-sc:EntityItemStringType 0 1 sql oval-sc:EntityItemStringType 0 1 result oval-sc:EntityItemAnySimpleType 0 unbounded
The sql57_item outlines information collected from a database via an SQL query.
Child Elements Type MinOccurs MaxOccurs engine oval-sc:EntityItemStringType 0 1 version oval-sc:EntityItemStringType 0 1 connection_string oval-sc:EntityItemStringType 0 1 sql oval-sc:EntityItemStringType 0 1 result oval-sc:EntityItemRecordType 0 unbounded
The textfilecontent_item looks at the contents of a text file (aka a configuration file) by looking at individual lines.
Child Elements Type MinOccurs MaxOccurs filepath oval-sc:EntityItemStringType 0 1 path oval-sc:EntityItemStringType 0 1 filename oval-sc:EntityItemStringType 0 1 pattern oval-sc:EntityItemStringType 0 1 instance oval-sc:EntityItemIntType 0 1 line oval-sc:EntityItemStringType 0 1 text oval-sc:EntityItemStringType 0 1 subexpression oval-sc:EntityItemAnySimpleType 0 unbounded
This item stores information about OVAL Variables and their values.
Child Elements Type MinOccurs MaxOccurs var_ref ind-sc:EntityItemVariableRefType 0 1 value oval-sc:EntityItemStringType 0 unbounded
This item stores results from checking the contents of an xml file.
Child Elements Type MinOccurs MaxOccurs filepath oval-sc:EntityItemStringType 0 1 path oval-sc:EntityItemStringType 0 1 filename oval-sc:EntityItemStringType 0 1 xpath oval-sc:EntityItemStringType 0 1 value_of oval-sc:EntityItemStringType 0 unbounded
The EntityItemEngineType complex type defines a string entity value that is restricted to an enumeration. Each valid entry in the enumeration is a valid database engine.
Value Description access
The access value describes the Microsoft Access database engine.
db2
The db2 value describes the IBM DB2 database engine.
cache
The cache value describes the InterSystems Cache database engine.
firebird
The firebird value describes the Firebird database engine.
firstsql
The firstsql value describes the FirstSQL database engine.
foxpro
The foxpro value describes the Microsoft FoxPro database engine.
informix
The informix value describes the IBM Informix database engine.
ingres
The ingres value describes the Ingres database engine.
interbase
The interbase value describes the Embarcadero Technologies InterBase database engine.
lightbase
The lightbase value describes the Light Infocon LightBase database engine.
maxdb
The maxdb value describes the SAP MaxDB database engine.
monetdb
The monetdb value describes the MonetDB SQL database engine.
mimer
The mimer value describes the Mimer SQL database engine.
oracle
The oracle value describes the Oracle database engine.
paradox
The paradox value describes the Paradox database engine.
pervasive
The pervasive value describes the Pervasive PSQL database engine.
postgre
The postgre value describes the PostgreSQL database engine.
sqlbase
The sqlbase value describes the Unify SQLBase database engine.
sqlite
The sqlite value describes the SQLite database engine.
sqlserver
The sqlserver value describes the Microsoft SQL database engine.
sybase
The sybase value describes the Sybase database engine.
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemFamilyType complex type defines a string entity value that is restricted to a set of enumerations. Each valid enumeration is a high-level family of system operating system.
Value Description ios
The ios value describes the Cisco IOS operating system.
macos
The macos value describes the Mac operating system.
unix
The unix value describes the UNIX operating system.
windows
The windows value describes the Windows operating system.
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemVariableRefType complex type defines a string item entity that has a valid OVAL variable id as the value.
The EntityItemLdaptypeType complex type restricts a string value to a specific set of values that specify the different types of information that an ldap attribute can represent. The empty string value is permitted here to allow for detailed error reporting.
Value Description LDAPTYPE_ATTRIBUTE_TYPE_DESCRIP_STRING
The data type is the attribute type description.
LDAPTYPE_DN_STRING
The string is of Distinguished Name (path) of a directory service object.
LDAPTYPE_BIT_STRING
The bit string type.
LDAPTYPE_PRINTABLE_STRING
The string is displayable on screen or in print.
LDAPTYPE_NUMERIC_STRING
The string is of a numeral to be interpreted as text.
LDAPTYPE_BOOLEAN
The data is of a Boolean value.
LDAPTYPE_INTEGER
The data is of an integer value.
LDAPTYPE_UTC_TIME
The data is of the universal time as expressed in Universal Time Coordinate (UTC).
LDAPTYPE_GENERALIZED_TIME
The data is of generalized time.
LDAPTYPE_DIRECTORY_STRING
The directory string.
LDAPTYPE_OBJECT_CLASS_DESCRIP_STRING
The object class description type.
LDAPTYPE_BINARY
The data is binary.
LDAPTYPE_TIMESTAMP
The data is of a time stamp in seconds.
Deprecated As Of Version: 5.7
Reason: This value was accidently carried over from the win-sc:EntityItemAdstypeType as it was used as a template for the ind-sc:EntityItemLdaptypeType.
Comment: This value has been deprecated and will be removed in version 6.0 of the language.LDAPTYPE_EMAIL
The data is of an e-mail message.
Deprecated As Of Version: 5.7
Reason: This value was accidently carried over from the win-sc:EntityItemAdstypeType as it was used as a template for the ind-sc:EntityItemLdaptypeType.
Comment: This value has been deprecated and will be removed in version 6.0 of the language.
The empty string value is permitted here to allow for detailed error reporting.