What is OVAL ?

Open Vulnerability and Assessment Language (OVAL) is an international,information security, community standard to promote open and publiclyavailable security content, and to standardize the transfer of thisinformation across the entire spectrum of security tools and services.

OVAL includes a language used to encode system details, and an assortmentof content repositories held throughout the community. The languagestandardizes the three main steps of the assessment process: representingconfiguration information of systems for testing; analyzing the system forthe presence of the specified machine state (vulnerability, configuration,patch state, etc.); and reporting the results of this assessment. Therepositories are collections of publicly available and open content thatutilize the language. (FAQ OVAL)

What does it mean to be OVAL-Compatible ?

Security-Database.com has successfully completed the OVAL compatibilityRequirements. This means that Security-Database produce a Repository of OVAL definitions to identify the crucial and criticialvulnerabilities and discrepancies.

Being OVAL-Compatible is the first step for Security-database team toshow its interest to open standards and good security frameworks.

More information on OVAL Compatibility ?

See the OVAL Web site for detailed information on how a Web site, tool, database, or other security product or service becomes compatible, and for a complete list of OVAL-compatible products and services