Dev Journal

Yesterday I have been trying to use Castor to map the XCCDFv1 schema. The purpose is to use the output that CIS benchmarking tools produce in that format. Since yesterday I have found out a couple of interesting things:

• it seems that the CIS benchmarks are no longer supported, basically provided as is
• the output format binds to the xccdf-1.0.xsd schema, but actually contains constants defined in theresults, that belong to the xccdf-1.1.xsdversion.

About the Castor problem I had yesterday: the XCCDF schema has in fact a duplicate attribute in its segment definition, causing the default Castor configuration to bail out.After posting on the castor mailing list I’ve found the solution (thanks Werner): write a custom binding file.

In the meantime I had worked out an Xmlbeans version of the parser, so I think I’ll stick with it to implement a first working version of the CisNg appliance.

Tags: mitre, xccdf, xml

This entry was posted on Wednesday, January 23rd, 2008 at 11:13 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.