OVAL

PRODUCTS INCLUDING OVAL	NEWS — July 9, 2015	SEARCH

Open Vulnerability and Assessment Language

A Community-Developed Language for Determining Vulnerability and Configuration Issues on Computer Systems

OVAL has transitioned to the Center for Internet Security (CIS). The MITRE OVAL website is in "Archive" status.

OVAL Language > About > OVAL Reporting

OVAL Reporting

OVAL Reporting seeks to address the case where security relevant information can be automatically located and extracted from a system, but where this information requires a human to determine whether it complies with policies. Towards this end, OVAL Reporting automatically extracts system state and then formats it into a report that can be reviewed by a user at a later time.

Downloads

The following resources provide more information on OVAL Reporting:

OVAL Reporting Request for Comment (RFC) (PDF, 106 KB)
OVAL Reporting Introductory Briefing (PDF, 127 KB)
Writing an OVAL Report Template (PDF, 235 KB)
OVAL Reports Schema Bundle (ZIP, 78 KB)
oval-report-templates.xsl (XSL, 6 KB)
oval_report_template_example.xml (XML, 9 KB)

Feedback Requested

Comments are welcome on the OVAL Developer’s Forum or directly to oval@mitre.org.

Page Last Updated: October 14, 2011

About the Language

Change Requests

OVAL Interpreter

Author’s Resources

Developers Forum

Items of Interest

GitHub Repositories

Language Releases

OFFICIAL VERSION 5.11

Upcoming Release

Previous Version