By Capability List — Archive
Important: The OVAL Compatibility Program was moved to "archive" status in December 2009, and replaced with the "OVAL Adoption Program." Under the OVAL Adoption Program product validation is performed by an external organization, allowing the OVAL Team to focus on educating vendors on best practices regarding the use and implementation OVAL and on how OVAL can continue to evolve as needed by the community.
Refer to the OVAL Adoption Program section for addition information and to review all products and services listed.
OVAL Definition Consumer |
OVAL Definition Producer |
OVAL Results Consumer |
OVAL Results Producer |
OVAL Systems Characteristics Consumer |
OVAL Systems Characteristics Producer
All organizations participating in the Compatibility Program are listed below, including those with OVAL-Compatible Products and Services and those with Declarations to Be OVAL-Compatible.
OVAL Definition Consumer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| BigFix Enterprise Suite for Vulnerability and Security Configuration Management, Version 6.0 | BigFix, Inc. | Real-Time Security Configuration Management Suite | Compatible | |
| Enterprise Configuration Manager | Configuresoft, Inc. | Assessment and Remediation solution | Compatible | |
| LANguard Network Security Scanner | GFI Software Ltd. | Network Vulnerability Assessment and Remediation | Compatible | |
| Opsware Server Automation System | Hewlett-Packard Development Company | Application Management | Compatible | |
| KBOX 1000 Series Systems Management Appliances | KACE Networks, Inc. | IT Automation Appliances | Compatible | |
| Sussen Version 1.0 | MMG Security, Inc. | Vulnerability Assessment / Policy Compliance | Compatible | |
| NetIQ Secure Configuration Manager 5.6 | NetIQ Solutions from Attachmate | Configuration and Vulnerability Management | Compatible | |
| Lumension OVAL Add-In (Special Edition), Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Compatible | |
| C5 Compliance Platform Version 3.0 | Secure Elements, Inc. | Enterprise Compliance and Vulnerability Management | Compatible | |
| Security System Analyzer Version 1.5 | Security-Database | Vulnerability Assessment / Policy Compliance | Compatible | |
| ThreatGuard 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management | Compatible | |
| ThreatGuard Traveler 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management for Service Providers | Compatible | |
| ThreatGuard OEM Integration Kit 1.0 | ThreatGuard, Inc. | Libraries to Build OVAL Compatibility into Third-Party Systems | Compatible | |
| ThreatGuard On Demand 1.0 | ThreatGuard, Inc. | On Demand Auditing and Compliance Management | Compatible | |
| Secutor Prime | ThreatGuard, Inc. | Compliance Management and Remediation | Compatible | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Available | |
| CIS-CAT | The Center for Internet Security | Host-based security scanner tool | Available | |
| TPOL - OVAL Security Compliance | Inverse Path Ltd. | Vulnerability/Patch/Compliance Assessment | Available | |
| Falcon Análisis de Vulnerabilidades | TMC y Cia | Appliance / Service | Available | |
| Armadillo | US ARMY CERDEC | Vulnerability Assessment and Remediation | Planned | |
| Assuria Auditor Version 4.2.5 | Assuria Limited | Vulnerability Assessment / Policy Compliance | Planned | |
| Command Center Examiner | Scalable Software, LLC | Security Configuration and Policy Compliance Checker | Planned | |
| EnCase Information Assurance Suite | Guidance Software Inc. | Enterprise software | Planned | |
| IP360 | nCircle Network Security, Inc. | Vulnerability Management System | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| nTellect for Cisco IDS/IPS | nCircle Network Security, Inc. | Real-Time Threat Prioritization System | Planned | |
| Retina Enterprise Suite | eEye Digital Security, Inc. | Vulnerability Management | Planned | |
| Retina Network Security Scanner | eEye Digital Security, Inc. | Network Security Risk Assessment | Planned | |
| User Manager Pro | Lieberman Software Corporation | System security reporting, management, and remediation | Planned | |
OVAL Definition Producer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| The Opsware Network | Hewlett-Packard Development Company | Repository of Content | Compatible | |
| Security Content Automation Program | NIST Computer Security Division | Repository of Compliance Checks | Compatible | |
| Red Hat Security Advisories | Red Hat, Inc. | Security Update Advisories | Compatible | |
| The Dharma Repository | Maitreya Security Ltd. Co. | Content Repository | Available | |
| Enterprise Configuration Manager | Configuresoft, Inc. | Assessment and Remediation solution | Planned | |
| Falcon Análisis de Vulnerabilidades | TMC y Cia | Appliance / Service | Planned | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Intelligent OVAL Xml Editor, Version 6.3 | Lumension Security | OVAL Utility | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
OVAL Results Consumer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| Enterprise Configuration Manager | Configuresoft, Inc. | Assessment and Remediation solution | Compatible | |
| Hercules Policy Auditor 4.5 | McAfee, Inc. | Automated Vulnerability Remediation, Compliance Management, Policy Audit, Policy Enforcement and Vulnerability Management | Compatible | |
| Hercules Remediation Manager 4.5 | McAfee, Inc. | Automated Vulnerability Remediation, Compliance Management, Policy Audit, Policy Enforcement and Vulnerability Management | Compatible | |
| Sussen Version 1.0 | MMG Security, Inc. | Vulnerability Assessment / Policy Compliance | Compatible | |
| Lumension OVAL Add-In (Special Edition), Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Compatible | |
| C5 Compliance Platform Version 3.0 | Secure Elements, Inc. | Enterprise Compliance and Vulnerability Management | Compatible | |
| Security System Analyzer Version 1.5 | Security-Database | Vulnerability Assessment / Policy Compliance | Compatible | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Available | |
| Falcon Análisis de Vulnerabilidades | TMC y Cia | Appliance / Service | Available | |
| ArcSight Enterprise Security Manager | ArcSight, Inc. | Enterprise Security Management | Planned | |
| Armadillo | US ARMY CERDEC | Vulnerability Assessment and Remediation | Planned | |
| EnCase Information Assurance Suite | Guidance Software Inc. | Enterprise software | Planned | |
| LANguard Network Security Scanner | GFI Software Ltd. | Network Vulnerability Assessment and Remediation | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| NetIQ Secure Configuration Manager 5.6 | NetIQ Solutions from Attachmate | Configuration and Vulnerability Management | Planned | |
| NeuralStar Network | Ai Metrix, a SYS Technologies company | Management System (NMS) for SCAP Services and Reporting | Planned | |
| Secutor Prime | ThreatGuard, Inc. | Compliance Management and Remediation | Planned | |
| ThreatGuard 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management | Planned | |
| ThreatGuard OEM Integration Kit 1.0 | ThreatGuard, Inc. | Libraries to Build OVAL Compatibility into Third-Party Systems | Planned | |
| ThreatGuard On Demand 1.0 | ThreatGuard, Inc. | On Demand Auditing and Compliance Management | Planned | |
| ThreatGuard Traveler 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management for Service Providers | Planned | |
| TPOL - OVAL Security Compliance | Inverse Path Ltd. | Vulnerability/Patch/Compliance Assessment | Planned | |
OVAL Results Producer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| Enterprise Configuration Manager | Configuresoft, Inc. | Assessment and Remediation solution | Compatible | |
| Sussen Version 1.0 | MMG Security, Inc. | Vulnerability Assessment / Policy Compliance | Compatible | |
| Lumension OVAL Add-In (Special Edition), Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Compatible | |
| C5 Compliance Platform Version 3.0 | Secure Elements, Inc. | Enterprise Compliance and Vulnerability Management | Compatible | |
| Security System Analyzer Version 1.5 | Security-Database | Vulnerability Assessment / Policy Compliance | Compatible | |
| ThreatGuard 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management | Compatible | |
| ThreatGuard Traveler 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management for Service Providers | Compatible | |
| ThreatGuard OEM Integration Kit 1.0 | ThreatGuard, Inc. | Libraries to Build OVAL Compatibility into Third-Party Systems | Compatible | |
| ThreatGuard On Demand 1.0 | ThreatGuard, Inc. | On Demand Auditing and Compliance Management | Compatible | |
| Secutor Prime | ThreatGuard, Inc. | Compliance Management and Remediation | Compatible | |
| Falcon Análisis de Vulnerabilidades | TMC y Cia | Appliance / Service | Available | |
| Armadillo | US ARMY CERDEC | Vulnerability Assessment and Remediation | Planned | |
| Assuria Auditor Version 4.2.5 | Assuria Limited | Vulnerability Assessment / Policy Compliance | Planned | |
| BigFix Enterprise Suite for Vulnerability and Security Configuration Management, Version 6.0 | BigFix, Inc. | Real-Time Security Configuration Management Suite | Planned | |
| IP360 | nCircle Network Security, Inc. | Vulnerability Management System | Planned | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Planned | |
| LANguard Network Security Scanner | GFI Software Ltd. | Network Vulnerability Assessment and Remediation | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| NetIQ Secure Configuration Manager 5.6 | NetIQ Solutions from Attachmate | Configuration and Vulnerability Management | Planned | |
| Retina Enterprise Suite | eEye Digital Security, Inc. | Vulnerability Management | Planned | |
| Retina Network Security Scanner | eEye Digital Security, Inc. | Network Security Risk Assessment | Planned | |
| TPOL - OVAL Security Compliance | Inverse Path Ltd. | Vulnerability/Patch/Compliance Assessment | Planned | |
| User Manager Pro | Lieberman Software Corporation | System security reporting, management, and remediation | Planned | |
OVAL Systems Characteristics Consumer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| Sussen Version 1.0 | MMG Security, Inc. | Vulnerability Assessment / Policy Compliance | Compatible | |
| Lumension OVAL Add-In (Special Edition), Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Compatible | |
| Security System Analyzer Version 1.5 | Security-Database | Vulnerability Assessment / Policy Compliance | Compatible | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Available | |
| Falcon Análisis de Vulnerabilidades | TMC y Cia | Appliance / Service | Available | |
| Armadillo | US ARMY CERDEC | Vulnerability Assessment and Remediation | Planned | |
| Assuria Auditor Version 4.2.5 | Assuria Limited | Vulnerability Assessment / Policy Compliance | Planned | |
| EnCase Information Assurance Suite | Guidance Software Inc. | Enterprise software | Planned | |
| Enterprise Configuration Manager | Configuresoft, Inc. | Assessment and Remediation solution | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| NetIQ Secure Configuration Manager 5.6 | NetIQ Solutions from Attachmate | Configuration and Vulnerability Management | Planned | |
| Retina Enterprise Suite | eEye Digital Security, Inc. | Vulnerability Management | Planned | |
| Retina Network Security Scanner | eEye Digital Security, Inc. | Network Security Risk Assessment | Planned | |
| Secutor Prime | ThreatGuard, Inc. | Compliance Management and Remediation | Planned | |
| ThreatGuard 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management | Planned | |
| ThreatGuard OEM Integration Kit 1.0 | ThreatGuard, Inc. | Libraries to Build OVAL Compatibility into Third-Party Systems | Planned | |
| ThreatGuard On Demand 1.0 | ThreatGuard, Inc. | On Demand Auditing and Compliance Management | Planned | |
| ThreatGuard Traveler 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management for Service Providers | Planned | |
OVAL Systems Characteristics Producer
| Product | Organization | Type | Status | |
|---|---|---|---|---|
| Sussen Version 1.0 | MMG Security, Inc. | Vulnerability Assessment / Policy Compliance | Compatible | |
| Lumension OVAL Add-In (Special Edition), Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Compatible | |
| Security System Analyzer Version 1.5 | Security-Database | Vulnerability Assessment / Policy Compliance | Compatible | |
| Armadillo | US ARMY CERDEC | Vulnerability Assessment and Remediation | Planned | |
| BigFix Enterprise Suite for Vulnerability and Security Configuration Management, Version 6.0 | BigFix, Inc. | Real-Time Security Configuration Management Suite | Planned | |
| IT GRC Platform 3.0 | Agiliance | Risk and Compliance Management Solution | Planned | |
| Lumension Enterprise Reporting with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Scanner Integration with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| Lumension Update with OVAL Add-In, Version 6.3 | Lumension Security | Vulnerability/Patch/Compliance Assessment | Planned | |
| NetIQ Secure Configuration Manager 5.6 | NetIQ Solutions from Attachmate | Configuration and Vulnerability Management | Planned | |
| Secutor Prime | ThreatGuard, Inc. | Compliance Management and Remediation | Planned | |
| ThreatGuard 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management | Planned | |
| ThreatGuard OEM Integration Kit 1.0 | ThreatGuard, Inc. | Libraries to Build OVAL Compatibility into Third-Party Systems | Planned | |
| ThreatGuard On Demand 1.0 | ThreatGuard, Inc. | On Demand Auditing and Compliance Management | Planned | |
| ThreatGuard Traveler 4.5 | ThreatGuard, Inc. | Continuous Security Auditing and Compliance Management for Service Providers | Planned | |
Page Last Updated: April 29, 2009
