Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Updates to the NIST SCAP Validation Program and Associated Test Requirements



Melanie Cook, Larry Feldman, Gregory A. Witte


This bulletin summarizes the information presented in NISTIR 7511, Rev. 4, "Security Content Automation Protocol (SCAP) Version 1.2 Validation Program Test Requirements". This is the fourth revision of the NISTIR which defines the requirements and associated test procedures necessary for products or modules to achieve one or more SCAP validations.
ITL Bulletin - March 2016
Report Number
March 2016


Security Content Automation Protocol (SCAP), SCAP derived test requirements (DTR), SCAP validated tools, SCAP validated products, SCAP validated modules, SCAP validation


Cook, M. , Feldman, L. and Witte, G. (2016), Updates to the NIST SCAP Validation Program and Associated Test Requirements, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed July 13, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created March 15, 2016, Updated February 19, 2017