ISO/IEC 18180:2013

Information technology — Specification for the Extensible Configuration Checklist Description Format (XCCDF) Version 1.2 ISO/IEC 18180:2013

Publication date:   Jun 10, 2013

General information

90.60 Close of review   Dec 3, 2023

ISO/IEC

ISO/IEC JTC 1 Information technology

International Standard

35.040.50   Automatic identification and data capture techniques | 35.030   IT Security

Buying

Published

Language in which you want to receive the document.

Scope

ISO/IEC 18180:2013 specifies the data model and Extensible Markup Language (XML) representation for the Extensible Configuration Checklist Description Format (XCCDF) Version 1.2. An XCCDF document is a structured collection of security configuration rules for some set of target systems. The XCCDF specification is designed to support information interchange, document generation, organizational and situational tailoring, automated compliance testing, and scoring. ISO/IEC 18180:2013 also defines a data model and format for storing results of security guidance or checklist testing. The intent of XCCDF is to provide a uniform foundation for expression of security checklists and other configuration guidance, and thereby foster more widespread application of good security practices.

Life cycle

NOW

PUBLISHED
ISO/IEC 18180:2013
90.60 Close of review
Dec 3, 2023