Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications by: Raghu N Kacker (Fed)

Displaying 26 - 50 of 183

A Method Level Test Generation Framework for Debugging Big Data Applications

January 24, 2019

Author(s)

Huadong Feng, Jagan Chandrasekaran, Yu Lei, Raghu N. Kacker, D. Richard Kuhn

When a failure occurs in a big data application, debugging with the original dataset can be difficult due to the large amount of data being processed. This paper introduces a framework for effectively generating method-level tests to facilitate debugging

A Method-Level Test Generation Framework for Debugging Big Data Applications

January 24, 2019

Author(s)

Raghu N. Kacker, David R. Kuhn, Huadong Feng, Yu J. Lei

Big data applications are now widely used to process massive amounts of data we create every day. When a failure occurs in a big data application, debugging at the system-level input can be expensive due to the large amount of data being processed. This

MCDC-Star  An Open-source MC/DC Measurement Tool

September 22, 2018

Author(s)

Raghu N. Kacker, David R. Kuhn, Eric Wong

Applying MC/DC criterion to real-world projects can be expensive due to not only the cost of commercial tools, but also the difficulty of generating test cases to achieve high coverage. To lower the expense from both aspects, this paper presents an easy-to

True value and uncertainty in measurement

September 3, 2018

Author(s)

Raghu N. Kacker

We will discuss the concept of true value and its connection with the uncertainty in measurement as defined in the Guide to the Expression of Uncertainty in Measurement (GUM), and three subsequent documents from the Joint Committee for Guides in Metrology

Bootstrap method versus analytical approach for estimating uncertainty of measure in ROC analysis on large datasets

July 17, 2018

Author(s)

Jin Chu Wu, Alvin F. Martin, Gregory A. Sanders, Raghu N. Kacker

The nonparametric two-sample bootstrap is employed to estimate uncertainties of statistics of interest in receiver operating characteristic (ROC) analysis on large datasets with/without data dependency due to multiple use of the same subjects in many

Finding Bugs in Cryptographic Hash Function Implementations

July 6, 2018

Author(s)

Nicky W. Mouha, Mohammad Raunak, David R. Kuhn, Raghu N. Kacker

Cryptographic hash function implementations can be particularly difficult to test, and bugs can remain unnoticed for a very long time. We revisit the NIST SHA-3 hash function competition, and apply a new testing strategy to all available reference

Pseudo-exhaustive Verification of Rule Based Systems

July 1, 2018

Author(s)

David R. Kuhn, Dylan J. Yaga, Raghu N. Kacker, Yu Lei, Chung Tong Hu

Rule-based systems are important in application domains such as artificial intelligence and business rule engines, as well as formal methods for software design. When translated into an implementation, simple expressions in rules may map to thousands of

Combinatorial Security Testing Course

April 11, 2018

Author(s)

Dimitris Simos, Yu Lei, D. Richard Kuhn, Raghu N. Kacker

Combinatorial methods have attracted attention as a means of providing strong assurance at reduced cost, but when are these methods practical and cost-effective? This tutorial comprises two parts. The first introductory part will briefly explain the back-

Poster: What Proportion of Vulnerabilities can be Attributed to Ordinary Coding Errors?

April 11, 2018

Author(s)

David R. Kuhn, Mohammad Raunak, Raghu N. Kacker

The analysis reported in this poster developed from questions that arose in discussions of the Reducing Software Vulnerabilities working group, sponsored by the White House Office of Science and Technology Policy in 2016 [1]. The key question we sought to

It Doesn't Have to Be Like This: Cybersecurity Vulnerability Trends

December 22, 2017

Author(s)

David R. Kuhn, Mohammad Raunak, Raghu N. Kacker

In this article, we review trends in cybersecurity vulnerabilities from 2008-2015, analyze vulnerability types and distributions, and prospects for the near future.

Combinatorial Coverage Measurement of Test Vectors used in Cryptographic Algorithm Validation (Presentation)

September 28, 2017

Author(s)

Dimitris Simos, Stavros Mekesis, D. Richard Kuhn, Raghu N. Kacker

We measured the combinatorial coverage of test vectors provided by the NIST Cryptographic Algorithm Validation Program (CAVP). Input models were defined and test vectors measured and analyzed for 2-way, 3-way, and 4-way combinatorial coverage. The results

Combinatorial and MC/DC Coverage Levels of Random Testing

August 18, 2017

Author(s)

Sergiy Vilkomir, Aparna Alluri, D. Richard Kuhn, Raghu N. Kacker

Software testing criteria differ in effectiveness, numbers of required test cases, and processes of test generation. Specific criteria are often compared with random testing as the simplest basic approach and, in some cases, random testing shows a

Combinatorial Testing of Full Text Search in Web Applications

August 18, 2017

Author(s)

M S Raunak, David R. Kuhn, Raghu N. Kacker

Database driven web applications are some of most widely developed systems today. Testing these applications effectively and discovering difficult-to-find bugs continues to be a challenge for software engineers. In this paper, we show that combinatorial

An Analysis of Vulnerability Trends, 2008 - 2016

July 29, 2017

Author(s)

David R. Kuhn, Mohammad Raunak, Raghu N. Kacker

This analysis reviews trends within the different vulnerability types and subsidiary weaknesses, with a goal of identifying practices that may have the strongest impact on reducing vulnerabilities.

A novel measure and significance testing in data analysis of cell image segmentation

April 20, 2017

Author(s)

Jin Chu Wu, Michael W. Halter, Raghu N. Kacker, John T. Elliott, Anne L. Plant

Background: Cell image segmentation (CIS) is an essential part of quantitative imaging of biological cells. Designing a performance measure and conducting significance testing are critical for evaluating and comparing the CIS algorithms for image-based

The Impact of Data Dependency on Speaker Recognition Evaluation

February 8, 2017

Author(s)

Jin Chu Wu, Alvin F. Martin, Craig S. Greenberg, Raghu N. Kacker

The data dependency due to multiple use of the same subjects has impact on the standard error (SE) of the detection cost function (DCF) in speaker recognition evaluation. The DCF is defined as a weighted sum of the probabilities of type I and type II

The Relationship Between Software Bug Type and Number of Factors Involved in Failures

October 23, 2016

Author(s)

Raghu N. Kacker, David R. Kuhn, Zachary Ratliff

Previous studies have defined different types of software bugs based on their complexity and reproducibility. Simple bugs, which involve only direct factors and are often easy to reproduce, have been called Bohrbugs, while complex bugs, with at least one

Combinatorial Methods in Security Testing

October 20, 2016

Author(s)

Dimitris Simos, D. Richard Kuhn, Artemios Voyiatzis, Raghu N. Kacker

This article introduces combinatorial testing-based approaches for security testing and presents case studies and experiences. The success of the presented research program motivates further intensive research on the field of combinatorial security testing

Estimating t-way Fault Profile Evolution During Testing

August 25, 2016

Author(s)

David R. Kuhn, Raghu N. Kacker, Lei Yu

Empirical studies have shown that most software interaction faults involve one or two variables interacting, with progressively fewer triggered by three or more, and no failure has been reported involving more than six variables interacting. This paper

Evaluating the Effectiveness of BEN in Locating Different Types of Software Fault

August 4, 2016

Author(s)

Raghu N. Kacker, David R. Kuhn, Jagan Chandrasekaran, Yu Lei

Debugging or fault localization is one of the most challenging tasks during software development. Automated fault localization tools have been developed to reduce the amount of effort and time software developers have to spend on debugging. In this paper

Pseudo-exhaustive Testing of Attribute Based Access Control Rules

August 4, 2016

Author(s)

David R. Kuhn, Chung Tong Hu, David F. Ferraiolo, Raghu N. Kacker, Yu Lei

Access control typically requires translating policies or rules given in natural language into a form such as a programming language or decision table, which can be processed by an access control system. Once rules have been described in machine

Estimating t-way Fault Profile Evolution During Testing

June 10, 2016

Author(s)

Raghu N. Kacker, David R. Kuhn

Removing divergence of JCGM documents from the GUM (1993)

June 1, 2016

Author(s)

Raghu N. Kacker

The stated mission of the Joint Committee for Guides in Metrology (JCGM) is to maintain and promote the use of the Guide to the Expression of Uncertainty in Measurement (GUM) and the International Vocabulary of Metrology (VIM, 2nd edition). The JCGM has

Validation of Nonparametric Two-sample Bootstrap in ROC Analysis on Large Datasets

May 26, 2016

Author(s)

Jin Chu Wu, Alvin F. Martin, Raghu N. Kacker

The nonparametric two-sample bootstrap is applied to computing uncertainties of measures in receiver operating characteristic (ROC) analysis on large datasets in areas such as biometrics, speaker recognition, etc. when the analytical method cannot be used

Combinatorial Testing for Cybersecurity and Reliability

May 12, 2016

Author(s)

David R. Kuhn, Raghu N. Kacker, Larry Feldman, Gregory A. Witte

This bulletin focuses on NIST's combinatorial testing work. Combinatorial testing is a proven method for more effective software testing at lower cost. The key insight underlying combinatorial testing's effectiveness resulted from a series of studies by