This is a potential security issue, you are being redirected to https://csrc.nist.gov.
You have JavaScript disabled. This site requires JavaScript to be enabled for complete site functionality.
VERSION 1.0
The Open Checklist Interactive Language (OCIL) is a language to express a set of questions to be presented to a user and procedures to interpret responses to these questions for the purpose of developing security checklists. Although its intended domain of use is IT security, its generic nature allows for other applications. For instance, it could be used for authoring research surveys, academic course exams, and instructional walkthroughs.
This document was originally developed by David Waltermire (The Center for Internet Security) and has been revised by The MITRE Corp with input from the security benchmark community. It is intended for developers and assumes familiarity with XML.
Child Elements Type MinOccurs MaxOccursgenerator inter:GeneratorType 1 1document inter:DocumentType 0 1inter:questionnaire [ extends ] inter:CompoundTestActionType 1 unboundedinter:test_action inter:ItemBaseType 1 unboundedinter:question inter:QuestionType 1 unboundedinter:choice_group n/a 0 unboundedinter:results n/a 0 1
- priority inter:PriorityType (optional -- default='LOW')- child_only xsd:boolean (optional -- default='false')
A question elements contains information one question that needs to be answered by a user. It can be a boolean_question, choice_question, numeric_question, or string_question depending on the set of acceptable answers.
Substitution Group: inter:question
A boolean_question is a type of question with valid responses of either {TRUE, FALSE} or {YES, NO}.
Attributes:
- default_answer xsd:boolean (optional)- model inter:BooleanQuestionModelType (optional -- default='MODEL_YES_NO')
Substitution Group: inter:question
A choice_question is a type of question element with one or more acceptable answers specified by the author. The user will select one of these specified answers as their response. Acceptable answers are specified either explicitly using the choice element or implicitly using the choice_group_ref element to reference a choice_group element. Choices are presented in the order in which they are provided. All the choices in a choice_group are inserted in the order in which they appear within the choice_group.
Attributes:
- default_answer_ref inter:ChoiceIDPattern (optional)
Substitution Group: inter:question
A numeric_question is a type of question_element that requires a numeric answer. Acceptable values may be positive or negative and may include decimals.
Attributes:
- default_answer xsd:decimal (optional)
Substitution Group: inter:question
A string_question is a type of question element that requires a string answer.
Attributes:
- default_answer xsd:string (optional)
This is a common base element for the question_test_action element.
Substitution Group: inter:test_action
Type: inter:QuestionTestActionType
The question_test_action element contains a reference to a single question along with a set of handlers that indicate how processing should proceed based on the answer provided by the user. This element is abstract and is implemented in a document as a boolean_test_action, choice_test_action, numeric_test_action, or string_test_action. The type of question_test_action must match the type of question referenced. (E.g. a boolean_test_action MUST reference a boolean_question, etc..)
Substitution Group: inter:question_test_action
A boolean_question_test_action element references a boolean_question and includes handlers for TRUE (YES) or FALSE (NO) responses.
Child Elements Type MinOccurs MaxOccurswhen_true inter:ResultChoiceType 1 1when_false inter:ResultChoiceType 1 1
Substitution Group: inter:question_test_action
A choice_question_test_action element references a choice_question and includes handlers for the various choices set out in the choice_question.
Child Elements Type MinOccurs MaxOccursinter:when_choice [ extends ] inter:ResultChoiceType 1 unbounded
Substitution Group: inter:question_test_action
A numeric_question_test_action element references a numeric_question and includes handlers that indicate actions to perform based on whether the user's response matches a particular value or falls within a particular range.
Substitution Group: inter:question_test_action
A string_question_test_action element references a string_question and includes handlers that indicate actions to perform based on whether the user's response matches a given regular expression.
Child Elements Type MinOccurs MaxOccursinter:when_pattern [ extends ] inter:ResultChoiceType 1 unbounded
Type: inter:QuestionResultType
A question_result element contains result information associated with a specific question. The specific type of question_result (boolean_question_result, choice_question_result, etc.) depends on the type of the associated question (boolean_question, choice_question, etc.)
Substitution Group: inter:question_result
A boolean_question_result element contains a reference to a boolean_question, the user's response, and whether the question was successfully posed.
Child Elements Type MinOccurs MaxOccursanswer xsd:boolean 1 1
Substitution Group: inter:question_result
A choice_question_result element contains a reference to a choice_question, the user's response, and whether the question was successfully posed.
Child Elements Type MinOccurs MaxOccursanswer n/a 1 1
Substitution Group: inter:question_result
A numeric_question_result element contains a reference to a numeric_question, the result provided by the user, and whether the question was successfully posed.
Child Elements Type MinOccurs MaxOccursanswer xsd:decimal 1 1
Substitution Group: inter:question_result
A string_question_result element contains a reference to a string_question, the string provided by the user in response, and whether the question was successfully posed.
Child Elements Type MinOccurs MaxOccursanswer xsd:string 1 1
Provides the acceptable models (i.e. set of acceptable responses) for a boolean_question.
- negate xsd:boolean- priority inter:PriorityType (optional -- default='LOW')
Child Elements Type MinOccurs MaxOccursinter:test_action_ref inter:TestActionRefValuePattern 1 unbounded
The pattern element specifies a regular expression against which a string will be compared.
This type provides the possible priorities of a set of test_actions.
- success xsd:boolean (required)
The ResultType simple type defines acceptable result values for questionnaires and test_actions.
ERRORAn ERROR value indicates that an error occured while processing the check.
Among other causes, this can indicate an unexpected response from the user.
The following table shows how the result is computed if the operator is AND:
The following table shows how the result is computed if the operator is OR:
The TextType complex type defines an element that holds any information.
ID values for questionnaires must match this pattern.
ocil:[A-Za-z0-9_\-\.]+:questionnaire:[1-9][0-9]*
ID values for questions must match this pattern. Each ID must be unique within an OCIL document.
ocil:[A-Za-z0-9_\-\.]+:question:[1-9][0-9]*
ID values for test_actions must match this pattern. Each ID must be unique within an OCIL document.
ocil:[A-Za-z0-9_\-\.]+:testaction:[1-9][0-9]*
ocil:[A-Za-z0-9_\-\.]+:testaction:[1-9][0-9]*
ocil:[A-Za-z0-9_\-\.]+:choice:[1-9][0-9]*
ocil:[A-Za-z0-9_\-\.]+:choicegroup:[1-9][0-9]*
The test_action_ref element holds a reference (id) to a test_action or questionnaire.
A choice element holds information about one acceptable answer to a choice_question.
Child Elements Type MinOccurs MaxOccursinter:choice n/a 1 unbounded
The step element describes one step in the procedures a user should undertake in order to answer an encapsulating question.
SCAP Inquiries
[email protected]
Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management
Release Cycle SCAP Content SCAP Releases SCAP 1.3 SCAP 1.2 SCAP 1.1 SCAP 1.0 SCAP Specifications Asset Identification Asset Reporting Format (ARF) Common Configuration Enumeration (CCE) Common Platform Enumeration (CPE) Applicability Language Dictionary Name Matching Naming Open Vulnerability Assessment Language (OVAL) Open Checklist Interactive Language (OCIL) Trust Model for Security Automation Data (TMSAD) Extensible Configuration Checklist Description Format (XCCDF) Software Identification (SWID) SCAP Community
SCAP Inquiries
[email protected]
Security and Privacy: configuration management, patch management, security automation, security measurement, vulnerability management