SlideShare a Scribd company logo

Concept scap

Download as PPTX, PDF
M
minh pham

This document discusses SCAP datastreams, which can contain linked security checklist content like XCCDF and OVAL files. It describes source datastreams that define how a system should be configured and result datastreams that provide scan results. It also discusses the National Checklist Program and Repository maintained by NIST, which provides security configuration checklists at different tiers of structure and automation to help users select the appropriate checklist for their needs.

1 of 8
Download to read offline
1
2
3
4
5
6
7
8
Datastream http://martin.preisler.me/category/scap/page/2 Datastream can be thought of as an archive of interlinked SCAP content(XCCDF,OVAL,CPE,…)
Type of datastream • Source datastream (SDS) • Result datastream (ARF) >> The scanner takes a SDS, evaluates and gives results in the ARF format back.
Source Datastream • Has a root element called “data-stream-collection”. • “data-stream-collection” contains 1 or more elements called “data- stream”. >>> each SDS has 1 or more modes in which it can be evaluated.
National Checklist Program (NCP) • See NIST Special Publication 800-70 Rev.2 • Frequently Asked Questions: General Information >> http://web.nvd.nist.gov/view/ncp/information
Security Configuration Checklist • Also called lockdown, hardening guide, benchmark, security technical implementation guide (STIG). • Series of instruction for configuring a product to particular operational environment. • Can comprise templates, automated scripts, patches or patch descriptions, XML files, and other procedures.
NIST maintains the National Checklist Repository. http://checklists.nist.gov/
Selecting checklists? • Checklist users should carefully consider the degree of automation and the source of each checklist. • NIST defined 4 tiers of checklists to assist users. • Tier1 checklists: are prose-based with narrative descriptions of how a person can manually alter a product’s configuration. • Tier4 checklists: have all security settings documented in machine- readable, standardized Security Content Automation Protocol (SCAP) formats,….. (see SP 800-70 Rev2).
Concept scap

More Related Content

PDF
Elasticsearch in production Boston Meetup October 2014
beiske
 
PPTX
ELK - Stack - Munich .net UG
Steve Behrendt
 
ODP
Elastic Stack ELK, Beats, and Cloud
Joe Ryan
 
PPT
The RSC chemical validation and standardization platform, a potential path to...
US Environmental Protection Agency (EPA), Center for Computational Toxicology and Exposure
 
PDF
Preservation Workflows with Taverna
cneudecker
 
PDF
Slides Global Warming
diannemarie420
 
DOCX
KPT_Pritam
Pritam Roy
 
PDF
Photoshop Exercises
diannemarie420
 
Elasticsearch in production Boston Meetup October 2014
beiske
 
ELK - Stack - Munich .net UG
Steve Behrendt
 
Elastic Stack ELK, Beats, and Cloud
Joe Ryan
 
The RSC chemical validation and standardization platform, a potential path to...
US Environmental Protection Agency (EPA), Center for Computational Toxicology and Exposure
 
Preservation Workflows with Taverna
cneudecker
 
Slides Global Warming
diannemarie420
 
KPT_Pritam
Pritam Roy
 
Photoshop Exercises
diannemarie420
 

Viewers also liked (20)

PPTX
Brand Focus 1 Page Presentation
Ice Mom
 
PPTX
Cs presentation
tamourk2
 
DOC
Faheem_Resume_068315
Faheem Ahmad
 
PPSX
Varuna khullar founder@yogawith v
Varuna Khullar
 
PPSX
Varuna khullar Founder@yogawith v
Varuna Khullar
 
PDF
Especificaciones de_techo_de_acceso_1403709000421
culon88
 
PDF
McHardy Financial Nov -Dec 2015 Newsletter
Pam Cradock Dip PFS
 
PPTX
Photoshop Exercises
diannemarie420
 
PDF
Wicked Problems: Global Warming and Crustaceans
diannemarie420
 
PDF
My Academic Record
ibrahim alghamdi
 
PPTX
Evaluation Question 4
jcraske7nre
 
DOCX
REPORT_UML_PRITAM
Pritam Roy
 
PDF
eWIN_Case_Study_-_A_Workforce_Strategy_to_Improve_Staff_Engagement[1]
Sue Whittam
 
PDF
Aimee Gonthier From BFA 2012 to MFA 2015
Aimee Gonthier
 
DOCX
Tecnologia informatica
taniavanessita
 
DOCX
Qué es un buscador
agusmuras22
 
PDF
Leading From Your Strengths
Chad Danner
 
PPTX
The Intersection of Content Strategy and Instructional Design
Ann Fandrey
 
PDF
Caderno tecnico 82 medicina de felino
argeropulos1
 
PPTX
Science ppt
Kushagra Sharma
 
Brand Focus 1 Page Presentation
Ice Mom
 
Cs presentation
tamourk2
 
Faheem_Resume_068315
Faheem Ahmad
 
Varuna khullar founder@yogawith v
Varuna Khullar
 
Varuna khullar Founder@yogawith v
Varuna Khullar
 
Especificaciones de_techo_de_acceso_1403709000421
culon88
 
McHardy Financial Nov -Dec 2015 Newsletter
Pam Cradock Dip PFS
 
Photoshop Exercises
diannemarie420
 
Wicked Problems: Global Warming and Crustaceans
diannemarie420
 
My Academic Record
ibrahim alghamdi
 
Evaluation Question 4
jcraske7nre
 
REPORT_UML_PRITAM
Pritam Roy
 
eWIN_Case_Study_-_A_Workforce_Strategy_to_Improve_Staff_Engagement[1]
Sue Whittam
 
Aimee Gonthier From BFA 2012 to MFA 2015
Aimee Gonthier
 
Tecnologia informatica
taniavanessita
 
Qué es un buscador
agusmuras22
 
Leading From Your Strengths
Chad Danner
 
The Intersection of Content Strategy and Instructional Design
Ann Fandrey
 
Caderno tecnico 82 medicina de felino
argeropulos1
 
Science ppt
Kushagra Sharma
 
Ad

Similar to Concept scap (20)

PDF
Security Automation Simplified via NIST OSCAL: We’re Not in Kansas Anymore
Priyanka Aash
 
PDF
2012-10-16 Mil-OSS Working Group: Introduction to SCAP Security Guide
Shawn Wells
 
PDF
Analysis of Database Issues using AHF and Machine Learning v2 - SOUG
Sandesh Rao
 
PDF
Analysis of Database Issues using AHF and Machine Learning v2 - AOUG2022
Sandesh Rao
 
PDF
Getting optimal performance from oracle e-business suite presentation
Berry Clemens
 
PDF
Security defined routing_cybergamut_v1_1
Joel W. King
 
PDF
Cdcr apachecon-talk
Amrit Sarkar
 
PDF
Dynamics ax performance tuning
OutsourceAX
 
PDF
What’s Evolving in the Elastic Stack
Elasticsearch
 
PDF
Spark and Couchbase: Augmenting the Operational Database with Spark
Spark Summit
 
PDF
DBA 101 : Calling all New Database Administrators (PPT)
Gustavo Rene Antunez
 
PDF
NetFlow Monitoring Standard Content Guide for ESM 6.5c
Protect724migration
 
PDF
Remote Log Analytics Using DDS, ELK, and RxJS
Sumant Tambe
 
PPTX
"Data Provenance: Principles and Why it matters for BioMedical Applications"
Pinar Alper
 
PDF
Oracle forensics 101
fangjiafu
 
PPT
Introduction to Data management services
SornarajaThasma1
 
PDF
Esm scg net_flow_6.0c
Protect724v3
 
PPTX
Standard Provenance Reporting and Scientific Software Management in Virtual L...
njcar
 
PDF
Network Monitoring Standard Content Guide for ESM 6.8c
Protect724migration
 
PPTX
Attack monitoring using ElasticSearch Logstash and Kibana
Prajal Kulkarni
 
Security Automation Simplified via NIST OSCAL: We’re Not in Kansas Anymore
Priyanka Aash
 
2012-10-16 Mil-OSS Working Group: Introduction to SCAP Security Guide
Shawn Wells
 
Analysis of Database Issues using AHF and Machine Learning v2 - SOUG
Sandesh Rao
 
Analysis of Database Issues using AHF and Machine Learning v2 - AOUG2022
Sandesh Rao
 
Getting optimal performance from oracle e-business suite presentation
Berry Clemens
 
Security defined routing_cybergamut_v1_1
Joel W. King
 
Cdcr apachecon-talk
Amrit Sarkar
 
Dynamics ax performance tuning
OutsourceAX
 
What’s Evolving in the Elastic Stack
Elasticsearch
 
Spark and Couchbase: Augmenting the Operational Database with Spark
Spark Summit
 
DBA 101 : Calling all New Database Administrators (PPT)
Gustavo Rene Antunez
 
NetFlow Monitoring Standard Content Guide for ESM 6.5c
Protect724migration
 
Remote Log Analytics Using DDS, ELK, and RxJS
Sumant Tambe
 
"Data Provenance: Principles and Why it matters for BioMedical Applications"
Pinar Alper
 
Oracle forensics 101
fangjiafu
 
Introduction to Data management services
SornarajaThasma1
 
Esm scg net_flow_6.0c
Protect724v3
 
Standard Provenance Reporting and Scientific Software Management in Virtual L...
njcar
 
Network Monitoring Standard Content Guide for ESM 6.8c
Protect724migration
 
Attack monitoring using ElasticSearch Logstash and Kibana
Prajal Kulkarni
 
Ad

Concept scap

  • 1. Datastream http://martin.preisler.me/category/scap/page/2 Datastream can be thought of as an archive of interlinked SCAP content(XCCDF,OVAL,CPE,…)
  • 2. Type of datastream • Source datastream (SDS) • Result datastream (ARF) >> The scanner takes a SDS, evaluates and gives results in the ARF format back.
  • 3. Source Datastream • Has a root element called “data-stream-collection”. • “data-stream-collection” contains 1 or more elements called “data- stream”. >>> each SDS has 1 or more modes in which it can be evaluated.
  • 4. National Checklist Program (NCP) • See NIST Special Publication 800-70 Rev.2 • Frequently Asked Questions: General Information >> http://web.nvd.nist.gov/view/ncp/information
  • 5. Security Configuration Checklist • Also called lockdown, hardening guide, benchmark, security technical implementation guide (STIG). • Series of instruction for configuring a product to particular operational environment. • Can comprise templates, automated scripts, patches or patch descriptions, XML files, and other procedures.
  • 6. NIST maintains the National Checklist Repository. http://checklists.nist.gov/
  • 7. Selecting checklists? • Checklist users should carefully consider the degree of automation and the source of each checklist. • NIST defined 4 tiers of checklists to assist users. • Tier1 checklists: are prose-based with narrative descriptions of how a person can manually alter a product’s configuration. • Tier4 checklists: have all security settings documented in machine- readable, standardized Security Content Automation Protocol (SCAP) formats,….. (see SP 800-70 Rev2).