Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications by: D. Richard Kuhn (Fed)

Displaying 101 - 125 of 372

Computer Science in Education 2018

February 14, 2018

Author(s)

Jeff Voas, D. Richard Kuhn, Celia Paulsen, Kim B. Schaffer

We surveyed six of our profession's best senior computer science educators for their views on the current state and trends in computer science education.

Educating Next-Gen Computer Scientists

January 31, 2018

Author(s)

Jeff Voas, D. Richard Kuhn, Celia Paulsen, Kim B. Schaffer

Just as yeast, flour, water, and salt are to bread, algorithms, data structures, operating systems, database design, compiler design, and programming languages were computer science (CS) education's core ingredients in past years. Then, universities led

It Doesn't Have to Be Like This: Cybersecurity Vulnerability Trends

December 22, 2017

Author(s)

David R. Kuhn, Mohammad Raunak, Raghu N. Kacker

In this article, we review trends in cybersecurity vulnerabilities from 2008-2015, analyze vulnerability types and distributions, and prospects for the near future.

Attribute Based Access Control

November 30, 2017

Author(s)

Chung Tong Hu, David F. Ferraiolo, Ramaswamy Chandramouli, David R. Kuhn

Until now, ABAC research has been documented in hundreds of research papers, but not consolidated in book form. This book explains ABAC's history and model, related standards, verification and assurance, applications, and deployment challenges; Specialized

Combinatorial Coverage Measurement of Test Vectors used in Cryptographic Algorithm Validation (Presentation)

September 28, 2017

Author(s)

Dimitris Simos, Stavros Mekesis, D. Richard Kuhn, Raghu N. Kacker

We measured the combinatorial coverage of test vectors provided by the NIST Cryptographic Algorithm Validation Program (CAVP). Input models were defined and test vectors measured and analyzed for 2-way, 3-way, and 4-way combinatorial coverage. The results

Combinatorial and MC/DC Coverage Levels of Random Testing

August 18, 2017

Author(s)

Sergiy Vilkomir, Aparna Alluri, D. Richard Kuhn, Raghu N. Kacker

Software testing criteria differ in effectiveness, numbers of required test cases, and processes of test generation. Specific criteria are often compared with random testing as the simplest basic approach and, in some cases, random testing shows a

Combinatorial Testing of Full Text Search in Web Applications

August 18, 2017

Author(s)

M S Raunak, David R. Kuhn, Raghu N. Kacker

Database driven web applications are some of most widely developed systems today. Testing these applications effectively and discovering difficult-to-find bugs continues to be a challenge for software engineers. In this paper, we show that combinatorial

An Analysis of Vulnerability Trends, 2008 - 2016

July 29, 2017

Author(s)

David R. Kuhn, Mohammad Raunak, Raghu N. Kacker

This analysis reviews trends within the different vulnerability types and subsidiary weaknesses, with a goal of identifying practices that may have the strongest impact on reducing vulnerabilities.

Verification and Test Methods for Access Control Policies/Models

June 27, 2017

Author(s)

Chung Tong Hu, David R. Kuhn, Dylan J. Yaga

Access control systems are among the most critical of computer security components. Faulty policies, misconfigurations, or flaws in software implementations can result in serious vulnerabilities. To formally and precisely capture the security properties

What Happened to Software Metrics?

May 25, 2017

Author(s)

Jeffrey M. Voas, David R. Kuhn

In the 1980's, the software quality community was all 'a buzz' with seemingly endless 'potential' approaches for producing higher quality software. At the forefront of that was software metrics, along with the corresponding software testing techniques and

General Methods for Access Control Policy Verification

December 19, 2016

Author(s)

Chung Tong Hu, David R. Kuhn

The Relationship Between Software Bug Type and Number of Factors Involved in Failures

October 23, 2016

Author(s)

Raghu N. Kacker, David R. Kuhn, Zachary Ratliff

Previous studies have defined different types of software bugs based on their complexity and reproducibility. Simple bugs, which involve only direct factors and are often easy to reproduce, have been called Bohrbugs, while complex bugs, with at least one

Combinatorial Methods in Security Testing

October 20, 2016

Author(s)

Dimitris Simos, D. Richard Kuhn, Artemios Voyiatzis, Raghu N. Kacker

This article introduces combinatorial testing-based approaches for security testing and presents case studies and experiences. The success of the presented research program motivates further intensive research on the field of combinatorial security testing