Common Configuration Enumeration (CCE): Unique Identifiers for Common System Configuration Issues
 
CCE LIST JOIN THE CCE EFFORT NEWS — JANUARY 4, 2012
CCE Home Common Configuration Enumeration: Unique Identifiers for Common System Configuration Issues
TOTAL CCEs: 10667

   

CCE™ provides unique identifiers to system configuration issues in order to facilitate fast and accurate correlation of configuration data across multiple information sources and tools. For example, CCE Identifiers can be used to associate checks in configuration assessment tools with statements in configuration best-practice documents and security guides, are the main identifiers used for the settings in the U.S. Federal Desktop Core Configuration (FDCC) data file downloads, and are a key component for enabling security content automation.

We encourage members of the information security community to participate in the CCE effort by offering feedback on the CCE List and Editorial Policies, by joining the CCE Working Group, or by contacting us directly at cce@mitre.org.

     
Related Efforts
 

Vulnerabilities (CVE)

Platforms (CPE)

Software Weakness Types (CWE)

Attack Patterns (CAPEC)

Cyber Observables (CybOX)

Log Format (CEE)

Configuration Scoring System (CCSS)

Malware (MAEC)

Checklist Language (XCCDF)

Assessment Language (OVAL)

Security Content Automation (SCAP)

Making Security Measurable

  
     

Focus On

CCE List Content Updated

CCE Version 5.20111130 is now available on the CCE List page. There are now 10,667 total CCE entries in the CCE List. Changes for Version 5.20111130 include: 317 new entries for Windows Server 2008 R2. A report is available that that provides more details on the changes between Version 5.20111007 and Version 5.20111130.

Future updates will be noted on the News page and on the CCE Working Group Discussion List. Please send any comments or concerns to cce@mitre.org.

       

Member of Making Security Measurable

Page Last Updated: January 04, 2012