NIST logo

Publications Portal

You searched on: Author: ramaswamy chandramouli

Displaying records 51 to 58.
Resort by: Date / Title

51. Interface-Driven Model-Based Generation of Java Test Drivers
Published: 9/1/2002
Authors: Mark Blackburn, Robert Busser, Aaron Nauman, Ramaswamy Chandramouli
Abstract: This paper extends prior work in model-based verification and describes interface-driven analysis that combines with a requirement model to support automated generation of Java test scripts. It describes concepts of models and test driver mappings us ...

52. Security Functional Testing Using an Interface-Driven Model-Based Test Automation Approach
Published: 9/1/2002
Authors: Ramaswamy Chandramouli, Mark Blackburn
Abstract: Independent security functional testing on a product occupies a backseat in traditional security evaluation because of the cost and stringent coverage requirements. In this paper we present the details of an approach we have developed to automate se ...

53. A Multi-Faceted Approach for Development of Security Architectures for Application Systems
Published: 3/1/2002
Author: Ramaswamy Chandramouli
Abstract: Secure application systems are often built using the Software Architecture of the system as a blue print. The Software Architecture of any application system contains along with other functional requirements, the security service requirements for th ...

54. Admission Discharge and Transfer System Protection Profile (ADT-PP) (An ISO/IEC 15408 Security Protection Profile for a Healthcare IT Application System)
Report Number: 6782
Published: 3/1/2002
Authors: Ramaswamy Chandramouli, G Marshall
Abstract: The central piece of information in this document is a set of security functional and assurance requirements for an Admissions Discharge and Transfer System (ADT). The ADT is a key information technology (IT) application system used in all major heal ...

55. A Framework for Multiple Authorization Types in a Healthcare Application System
Published: 1/1/2001
Author: Ramaswamy Chandramouli
Abstract: In most of the current authorization frameworks in application systems, the authorization for a user operation is determined using a static database like ACL entries or system tables. These frameworks provide cannot provide the foundation for support ...

56. Business Process Driven Framework for Defining an Access Control Service Based on Roles and Rules
Published: 10/19/2000
Author: Ramaswamy Chandramouli
Abstract: Defining an Access Control Service for an enterprise application requires the choice of an access control model and a process for formulation of access decision rules to be used by the access enforcement mechanism. In this paper, we describe a busin ...

57. Application of XML Tools for Enterprise-Wide RBAC Implementation Tasks
Published: 7/27/2000
Author: Ramaswamy Chandramouli
Abstract: The use of Extensible Markup Language (XML) and its associated APIs, for information modeling and information interchange applications is being actively explored by the research community. In this paper we develop an XML Document Type Definition (DTD ...

58. Role-Based Access Control Features in Commercial Database Management Systems
Published: 10/9/1998
Authors: Ramaswamy Chandramouli, R. Sandhu
Abstract: This paper analyzes and compares role-based access control (RBAC) features supported in the most recent versions of three popular commercial database management systems: Informix Online Dynamic Server Version 7.2, Oracle Enterprise Server Version 8.0 ...

Search NIST-wide:

(Search abstract and keywords)

Last Name:
First Name:

Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series