The National Institute of Standards and Technology (NIST) would like feedback on it's draft scoring system which evaluates various security configurations within operating systems and applications.The NIST website has the draft \u201cInteragency Report 7502: The Common Configuration Scoring System\u201d available for review. Government Computer News said this about the report: "The report proposes a set of measures for security configuration issues and a formula to combine those measures into scores for each issue, collectively called the Common Configuration Scoring System (CCSS). It is derived from the Common Vulnerability Scoring System (CVSS) for measuring the relative severity of vulnerabilities caused by software flaws. CCSS adjusts the basic components of CVSS to focus on security configuration issues rather than software flaws. "Commenting on these documents is a great opportunity for security professionals that want to become engaged in the\u00a0government processes to ensure that consistent controls are put in place for\u00a0federal, state, and local\u00a0networks. More and more federal guidance requires states to comply with\u00a0 federal\u00a0standards if state\u00a0or local governments are custodians of federal data. \u00a0\u00a0For example:\u00a0The IRS provides guidane to federal, state, and local entities\u00a0for use of tax information in their publication 1075.\u00a0\u00a0Comments on the draft of CCSS should be e-mailed by July 3 to IR7502comments@nist.gov with "Comments IR 7502" in the subject line.