You can find out more information on the technologies and organizations we have covered in this chapter at the following links:
- OpenSCAP: https://www.open-scap.org/
- Security Content Automation Protocol (SCAP): https://scap.nist.gov/
- NIST: https://www.nist.gov/
- MITRE Corporation: https://www.mitre.org/
- Asset Identification (AID): https://csrc.nist.gov/Projects/Security-Content-Automation-Protocol/Specifications/aid
- Asset Reporting Format (ARF): https://csrc.nist.gov/Projects/Security-Content-Automation-Protocol/Specifications/arf
- Common Configuration Enumeration (CCE): https://cce.mitre.org
- Common Configuration Scoring System (CCSS): https://www.nist.gov/publications/common-configuration-scoring-system-ccss-metrics-software-security-configuration
- Common Platform Enumeration (CPE): https://nvd.nist.gov/products/cpe
- Common Weakness Enumeration (CWE): https://cwe...
