| Brazil |
ADTsys Software
|
ADTsys Cloud Security
|
Cloud Security |
|
Authoring Tool
|
Planned
|
|
Definition Evaluator
|
Planned
|
|
Definition Repository
|
Planned
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| France |
Security-Database
|
IT Dashboard
|
Web-Based IT Vulnerability and Threats Dashboard |
| Definition Repository |
Declaration
|
| Results Consumer |
Declaration
|
|
Authoring Tool
|
Planned
|
|
Definition Evaluator
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| France |
Security-Database
|
Security-Database OVAL Repository
|
Web-Based OVAL Repository Database |
| Definition Repository |
|
|
Definition Evaluator
|
|
Results Consumer
|
|
System Characteristics Producer
|
|
| France |
Security-Database
|
SSA - Security System Analyzer
|
Security Scanner and Compliance Assessment Software |
| Definition Repository |
Declaration
|
| Results Consumer |
Declaration
|
|
Authoring Tool
|
Planned
|
|
Definition Evaluator
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| France |
ToolsWatch
|
SSA - Security System Analyzer
|
Security Scanner and Compliance Assessment Software |
| Definition Repository |
|
| Results Consumer |
| Authoring Tool |
| Definition Evaluator |
| System Characteristics Producer |
|
| Germany |
Greenbone Networks GmbH
|
Greenbone Security Manager
|
Vulnerability Management |
| Definition Evaluator |
|
| Results Consumer |
| System Characteristics Producer |
|
| Germany |
OpenVAS
|
OpenVAS
|
Vulnerability Management |
| System Characteristics Producer |
|
|
Definition Evaluator
|
|
Results Consumer
|
|
| India |
SecPod Technologies
|
SecPod Saner
|
Vulnerability Management |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| India |
SecPod Technologies
|
SecPod SCAP Feed
|
OVAL Repository |
|
| Israel |
Beyond Security Ltd.
|
AVDS
|
Vulnerability and Configuration Assessment and Management |
| Definition Evaluator |
Declaration
|
| Results Consumer |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| Italy |
Inverse Path S.r.l.
|
TPOL - OVAL Security Compliance
|
Vulnerability, Patch, and Compliance Assessment |
| Authoring Tool |
|
| Definition Evaluator |
|
| Japan |
Information-technology Promotion Agency, Japan (IPA)
|
MyJVN API
|
Vulnerability Assessment and Configuration Management |
|
| Japan |
Information-technology Promotion Agency, Japan (IPA)
|
MyJVN Security Configuration Checker
|
Configuration Management |
|
| Japan |
Information-technology Promotion Agency, Japan (IPA)
|
MyJVN Version Checker
|
Vulnerability Assessment |
|
| Japan |
National Institute of Advanced Industrial Science and Technology
(AIST)
|
SIX OVAL
|
Enterprise Compliance/Vulnerability Management |
|
| Mexico |
GCP Global
|
ORCA
|
Governance, Risk, and Compliance (GRC) Solution |
| Definition Evaluator |
|
| Results Consumer |
|
| Poland |
ATM Software sp. z o.o.
|
ATM Information Security Workflow
|
Workflow for server/software lifecycle management with OVAL repository and
vulnerability assessment.
|
|
Authoring Tool
|
Planned
|
|
Definition Evaluator
|
Planned
|
|
Definition Repository
|
Planned
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| Russia |
Altex-Soft
|
Altex-Soft Ovaldb
|
Web-Based OVAL Repository Database |
|
| Russia |
Altex-Soft
|
RedCheck
|
Vulnerability, Patch, and Compliance Assessment |
|
| Russia |
Positive Technologies CJSC
|
Positive Technologies OVAL Repository
|
OVAL Definition Repository |
|
| Taiwan |
Institute for Information Industry - CyberTrust Technology Institute
|
Crystal Security Keeper (CSK)
|
Vulnerability Assessment, Configuration Management, Auditing and Centralized
Audit Validation
|
| Definition Evaluator |
|
| Definition Repository |
|
Results Consumer
|
|
| United Kingdom |
New Net Technologies, Ltd.
|
NNT Change Tracker Enterprise
|
Agent-Based and Agentless File Integrity Monitoring System for Continuous
Vulnerability Assessments and Breach Detection
|
| Definition Evaluator |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
Definition Repository
|
Planned
|
|
Results Consumer
|
Planned
|
|
| United States |
Agiliance
|
Agiliance RiskVision
|
Big Data Risk Management Software |
| Results Consumer |
Declaration
|
|
| United States |
Arellia Corporation
|
Arellia Security Analysis Solution
|
Security Configuration Management |
|
Definition Evaluator
|
Planned
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Beyond Trust
|
Retina Network Security Scanner
|
Vulnerability Assessment |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| United States |
Catbird Networks, Inc.
|
Catbird vSecurity
|
Vulnerability Scanner, IDS/IPS, and Firewall |
|
Authoring Tool
|
Planned
|
|
Definition Evaluator
|
Planned
|
|
Definition Repository
|
Planned
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Center for Internet Security
|
Center for Internet Security Configuration Assessment Tool
(CIS-CAT)
|
Host-Based Configuration Assessment Tool |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| United States |
Cisco Systems, Inc.
|
Cisco Product Security Incident Response Team (PSIRT) Security
Advisories and Vulnerability Disclosures
|
Cisco Repository of OVAL Content |
| Definition Repository |
Declaration
|
|
| United States |
Critical Watch
|
FusionVM Enterprise Vulnerability Management System
|
Enterprise Vulnerability Management System |
| Definition Evaluator |
Declaration
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Defense Information Systems Agency Field Security Operations (DISA
FSO)
|
DoD SCAP Content Repository
|
SCAP Content Repository |
| Definition Repository |
Declaration
|
|
| United States |
eIQnetworks, Inc.
|
SecureVue
|
Unified Situational Awareness Platform |
| Results Consumer |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
Definition Evaluator
|
Planned
|
|
Definition Repository
|
Planned
|
|
| United States |
G2, Inc.
|
eSCAPe - Enhanced SCAP Editor
|
OVAL Authoring Tool |
| Authoring Tool |
Declaration
|
|
| United States |
Hewlett-Packard Development Company, L.P.
|
HP Client Automation
|
Application Management |
| Definition Evaluator |
Declaration
|
|
| United States |
Hewlett-Packard Development Company, L.P.
|
HP Live Network
|
Content Repository |
| Definition Repository |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
Hewlett-Packard Development Company, L.P.
|
HP Server Automation
|
Enterprise Server/Application Lifecycle Management |
| Definition Evaluator |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
jOVAL.org
|
jOVAL Definition Interpreter (jovaldi)
|
Open Source, Java-based OVAL Definition Interpreter |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| United States |
Lunarline, Inc.
|
SCAP Sync
|
SCAP Content Repository and API |
| Definition Repository |
Declaration
|
|
| United States |
McAfee, Inc.
|
McAfee Network Access Control
|
Network Connection Health Check, Auditing and Centralized Audit Validation,
Configuration Management, Patch Management
|
|
| United States |
McAfee, Inc.
|
McAfee Policy Auditor
|
Auditing and Centralized Audit Validation, Configuration Management, Patch
Management
|
| Authoring Tool |
|
| Definition Evaluator |
| System Characteristics Producer |
|
| United States |
McAfee, Inc.
|
McAfee Vulnerability Manager
|
Vulnerability Assessment, Auditing and Centralized Audit Validation,
Configuration Management, Patch Management
|
|
| United States |
Microsoft Corporation
|
Microsoft Security Compliance Manager
|
Security and Compliance Knowledge Management |
| Authoring Tool |
Declaration
|
| Definition Repository |
Declaration
|
|
| United States |
Microsoft Corporation
|
SCAP Extension for System Center Configuration Manager 2007
|
Enterprise Configuration Management |
| Definition Evaluator |
Declaration
|
|
| United States |
Modulo Security Solutions
|
MODSIC Project
|
OVAL Collector Service |
| Definition Evaluator |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
Modulo Security Solutions
|
Modulo Risk Manager
|
Governance, Risk Management, and Compliance (GRC) Management |
| Definition Evaluator |
Declaration
|
| Definition Repository |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
Results Consumer
|
Planned
|
|
| United States |
NetIQ Corporation
|
NetIQ Secure Configuration Manager
|
Enterprise Security Configuration Assessment |
| Definition Evaluator |
Declaration
|
| Results Consumer |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
NopSec, Inc.
|
NopSec Vulnerability Risk Management (VRM)
|
Vulnerability Risk Management |
| Definition Evaluator |
|
| Results Consumer |
| System Characteristics Producer |
|
| United States |
Pivotal Security LLC
|
Security Scanning SDK
|
OVAL Definition Evaluator |
| Definition Evaluator |
Declaration
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Red Hat, Inc.
|
Red Hat Security Advisories
|
Product Vulnerability Security Advisories |
|
| United States |
SAINT Corporation
|
SAINT Vulnerability Scanner
|
Vulnerability Assessment |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| United States |
Secure Bytes Corporation
|
Secure Auditor
|
Automated Auditing Software |
|
Definition Evaluator
|
Planned
|
|
Definition Repository
|
Planned
|
|
Results Consumer
|
Planned
|
|
| United States |
SPAWAR Systems Center Atlantic
|
SCAP Compliance Checker
|
OVAL Definition Evaluator |
| Definition Evaluator |
|
| System Characteristics Producer |
|
| United States |
SUSE
|
SUSE Linux Enterprise OVAL Information
|
Database |
| Definition Repository |
Declaration
|
|
| United States |
SUSE
|
SUSE Manager 1.7
|
Linux Patch and Configuration Management |
| Definition Evaluator |
Declaration
|
| Results Consumer |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
Symantec Corporation
|
Symantec Control Compliance Suite
|
Automated Risk and Policy Compliance Management |
| Definition Evaluator |
Declaration
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Symantec Corporation
|
Symantec Risk Automation Suite
|
Enterprise Configuration, Vulnerability, Risk, and Compliance Management |
| Definition Evaluator |
Declaration
|
| Definition Repository |
Declaration
|
|
Authoring Tool
|
Planned
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Telos Corporation
|
Xacta IA Manager Assessment Engine
|
Certification and Accreditation Solution |
|
| United States |
Telos Corporation
|
Xacta IA Manager Continuous Assessment
|
Certification and Accreditation Solution |
| Definition Evaluator |
Declaration
|
|
Results Consumer
|
Planned
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
Telos Corporation
|
Xacta IA Manager HostInfo
|
Certification and Accreditation Solution |
| Definition Evaluator |
Declaration
|
|
System Characteristics Producer
|
Planned
|
|
| United States |
ThreatGuard, Inc.
|
Secutor Compliance Automation Toolkit (S-CAT)
|
Universal, Integratable SCAP Assessment Module |
| Definition Evaluator |
|
| System Characteristics Producer |
|
Results Consumer
|
|
| United States |
ThreatGuard, Inc.
|
Secutor Magnus
|
Enterprise SCAP Compliance/Vulnerability Management System |
| Definition Evaluator |
|
| System Characteristics Producer |
|
Results Consumer
|
|
| United States |
ThreatGuard, Inc.
|
Secutor Prime
|
Desktop Compliance/Vulnerability Assessment Tool |
| Definition Evaluator |
|
| System Characteristics Producer |
|
Results Consumer
|
|
| United States |
Tripwire, Inc.
|
Tripwire Enterprise
|
Security Configuration Management |
| Definition Evaluator |
|
| System Characteristics Producer |
| Results Consumer |
|
| United States |
Triumfant, Inc.
|
Triumfant Resolution Manager
|
Vulnerability, Patch, and Compliance Assessment |
| Definition Evaluator |
Declaration
|
| Results Consumer |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
| United States |
U.S. Army CERDEC
|
Armadillo
|
Vulnerability Assessment and Remediation |
| Definition Evaluator |
Declaration
|
| System Characteristics Producer |
Declaration
|
|
Definition Repository
|
Planned
|
|
