Making Security Measurable - Enterprise Reporting

A Collection of Information Security Community Standardization Activities and Initiatives


Section Contents MSM Directory By Area By Organization By Category Items of Interest Archive Disclaimer Feedback		Home \| About \| MSM Directory of Efforts \| Incubator \| Events & Participation \| Search \| Feedback Enterprise Reporting The narrative text description for this page is currently under development. Please check back later. In the meantime, standardization efforts in this area of cyber security include the following: Asset Summary Reporting (ASR) Assessment Results Format (ARF) Open Vulnerability and Assessment Language (OVAL) Extensible Configuration Checklist Description Format (XCCDF) Open Checklist Interactive Language (OCIL) BACK TO TOP

	This website is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2007–2025 The MITRE Corporation. MITRE, the MITRE logo, CVE, and the CVE logo are registered trademarks and the Making Security Measurable logo, CWE, the CWE logo, CAPEC, the CAPEC logo, MAEC, the MAEC logo, CWSS, the CWSS logo, CWRAF, the CWRAF logo, and Recommendation Tracker are trademarks of The MITRE Corporation. All other trademarks are the property of their respective owners. All other trademarks are the property of their respective owners. Contact us: measurablesecurity@mitre.org Page Last Updated: October 19, 2012