<xsd:element name="assessment-check" type="checkReferenceType"><xsd:annotation><xsd:documentation>Identifies a check that can be used to detect the vulnerability or misconfiguration</xsd:documentation></xsd:annotation></xsd:element>
The CPE name of the scanning tool. A value must be supplied for this element. The CPE name can be used for a CPE from the NVD. The CPE title attribute can be used for internal naming conventions. (or both, if possible)
<xsd:element name="assessment-engine" type="cpeNamePatternType" minOccurs="0" maxOccurs="unbounded"><xsd:annotation><xsd:documentation>The CPE name of the scanning tool. A value must be supplied for this element. The CPE name can be used for a CPE from the NVD. The CPE title attribute can be used for internal naming conventions. (or both, if possible)</xsd:documentation></xsd:annotation></xsd:element>
Data type for the check element, a checking system specification URI, string content, and an optional external file reference. The checking system specification should be the URI for a particular version of OVAL or a related system testing language, and the content will be an identifier of a test written in that language. The external file reference could be used to point to the file in which the content test identifier is defined.
<xsd:complexType name="checkReferenceType"><xsd:annotation><xsd:documentation xml:lang="en">Data type for the check element, a checking system specification URI, string content, and an optional external file reference. The checking system specification should be the URI for a particular version of OVAL or a related system testing language, and the content will be an identifier of a test written in that language. The external file reference could be used to point to the file in which the content test identifier is defined.</xsd:documentation></xsd:annotation><xsd:complexContent><xsd:extension base="checkSearchType"><xsd:attribute name="href" type="xsd:anyURI" use="required"/></xsd:extension></xsd:complexContent></xsd:complexType>
Define the format for acceptable CPE Names. An urn format is used with the id starting with the word oval followed by a unique string, followed by the three letter code 'def', and ending with an integer.
<xsd:simpleType name="cpeNamePatternType"><xsd:annotation><xsd:documentation xml:lang="en">Define the format for acceptable CPE Names. An urn format is used with the id starting with the word oval followed by a unique string, followed by the three letter code 'def', and ending with an integer.</xsd:documentation></xsd:annotation><xsd:restriction base="xsd:anyURI"><xsd:pattern value="[c][pP][eE]:/[AHOaho]?(:[A-Za-z0-9._\-~%]*){0,6}"/></xsd:restriction></xsd:simpleType>
Simple Type cpeSearchableNamePatternType
Namespace
http://scap.nist.gov/schema/scap-core/1.0
Annotations
Define the format for acceptablesearchableCPE Names. The URI escaped code '%25' may be usedto represent the character '%' which will be interpreted as awildcard.
<xsd:simpleType name="cpeSearchableNamePatternType"><xsd:annotation><xsd:documentation xml:lang="en">Define the format for acceptable searchableCPE Names. The URI escaped code '%25' may be used to represent the character '%' which will be interpreted as a wildcard.</xsd:documentation></xsd:annotation><xsd:restriction base="xsd:anyURI"><xsd:pattern value="[c][pP][eE]:/[AHOaho]?(:[A-Za-z0-9._\-~%*]*){0,6}"/></xsd:restriction></xsd:simpleType>
Denotes a scanner and required configuration that is capable of detecting the referenced vulnerability. May also be an OVAL definition and omit scanner name.
Identifies a tool and any associated information about the tool, such as signature versions, that indicate the tool is capable or properly detecting and/or remdiating the vulnerability or misconfiguration
<xsd:complexType name="assessmentMethodType"><xsd:annotation><xsd:documentation>Denotes a scanner and required configuration that is capable of detecting the referenced vulnerability. May also be an OVAL definition and omit scanner name.</xsd:documentation><xsd:documentation>Identifies a tool and any associated information about the tool, such as signature versions, that indicate the tool is capable or properly detecting and/or remdiating the vulnerability or misconfiguration</xsd:documentation></xsd:annotation><xsd:sequence><xsd:element name="assessment-check" type="checkReferenceType"><xsd:annotation><xsd:documentation>Identifies a check that can be used to detect the vulnerability or misconfiguration</xsd:documentation></xsd:annotation></xsd:element><xsd:element name="assessment-engine" type="cpeNamePatternType" minOccurs="0" maxOccurs="unbounded"><xsd:annotation><xsd:documentation>The CPE name of the scanning tool. A value must be supplied for this element. The CPE name can be used for a CPE from the NVD. The CPE title attribute can be used for internal naming conventions. (or both, if possible)</xsd:documentation></xsd:annotation></xsd:element></xsd:sequence></xsd:complexType>
Define the format for acceptable CPE Names. A URN format is used with the id starting with the word cpe followed by :/ and then some number of individual components separated by colons.
<xsd:simpleType name="cpeNamePVPVPatternType"><xsd:annotation><xsd:documentation xml:lang="en-US">Define the format for acceptable CPE Names. A URN format is used with the id starting with the word cpe followed by :/ and then some number of individual components separated by colons.</xsd:documentation></xsd:annotation><xsd:restriction base="cpeNamePatternType"><xsd:pattern value="[c][pP][eE]:/[AHOaho]?(:[A-Za-z0-9\._\-~%]*){3,6}"/></xsd:restriction></xsd:simpleType>
<xsd:simpleType name="cpeComponentPatternType"><xsd:annotation><xsd:documentation>The name pattern of a CPE component.</xsd:documentation></xsd:annotation><xsd:restriction base="xsd:token"><xsd:pattern value="[A-Za-z0-9._\-~]*"/></xsd:restriction></xsd:simpleType>
<xsd:simpleType name="cpePartComponentPatternType"><xsd:annotation><xsd:documentation>The name pattern of the CPE part component.</xsd:documentation></xsd:annotation><xsd:restriction base="cpeComponentPatternType"><xsd:pattern value="[hoaHOA]"/></xsd:restriction></xsd:simpleType>