Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications by: Ramaswamy Chandramouli (Fed)

Displaying 26 - 50 of 182

Trustworthy Email

February 25, 2019

Author(s)

Scott W. Rose, J. S. Nightingale, Simson Garfinkel, Ramaswamy Chandramouli

This document gives recommendations and guidelines for enhancing trust in email. The primary audience includes enterprise email administrators, information security specialists and network managers. This guideline applies to federal IT systems and will

Comprehensive Security Assurance Measures for Virtualized Server Environments

December 7, 2018

Author(s)

Ramaswamy Chandramouli

Server or Hardware virtualization is an established technology in data centers used for supporting enterprise IT resources as well as cloud services. The components of this virtualized server environment are: (a) A hardware with features to support

Security Recommendations for Server-based Hypervisor Platforms

June 7, 2018

Author(s)

Ramaswamy Chandramouli

The Hypervisor platform is a collection of software modules that provides virtualization of hardware resources (such as CPU, Memory, Network and Storage) and thus enables multiple computing stacks (made of an operating system (OS) and application programs)

Safeguards for Securing Virtualized Servers

March 27, 2018

Author(s)

Ramaswamy Chandramouli, Larry Feldman, Gregory A. Witte

This bulletin summarizes the information found in NIST SP 800-125A: Security Recommendations for Hypervisor Deployment on Servers, which provides technical guidelines regarding the secure execution of baseline functions of the hypervisor and are therefore

Security Recommendations for Hypervisor Deployment on Servers

January 23, 2018

Author(s)

Ramaswamy Chandramouli

The Hypervisor is a collection of software modules that provides virtualization of hardware resources (such as CPU/GPU, Memory, Network and Storage) and thus enables multiple computing stacks (basically made of an OS and Application programs) called

Attribute Based Access Control

November 30, 2017

Author(s)

Chung Tong Hu, David F. Ferraiolo, Ramaswamy Chandramouli, David R. Kuhn

Until now, ABAC research has been documented in hundreds of research papers, but not consolidated in book form. This book explains ABAC's history and model, related standards, verification and assurance, applications, and deployment challenges; Specialized

NIST Guidance on Application Container Security

October 25, 2017

Author(s)

Ramaswamy Chandramouli, Murugiah Souppaya, Karen Scarfone

This bulletin summarizes the information found in NIST SP 800-190, Application Container Security Guide and NISTIR 8176, Security Assurance Requirements for Linux Application Container Deployments. The bulletin offers an overview of application container

Security Assurance Requirements for Linux Application Container Deployments

October 11, 2017

Author(s)

Ramaswamy Chandramouli

In order for security solutions for application container environments to effectively meet their security objectives, it is necessary to analyze those security solutions and detail the metrics they must satisfy in the form of security assurance

A Comparison of Attribute Based Access Control (ABAC) Standards for Data Service Applications

October 3, 2016

Author(s)

David F. Ferraiolo, Ramaswamy Chandramouli, Chung Tong Hu, David R. Kuhn

Extensible Access Control Markup Language (XACML) and Next Generation Access Control (NGAC) are very different attribute based access control (ABAC) standards with similar goals and objectives. An objective of both is to provide a standardized way for

Trustworthy Email

September 6, 2016

Author(s)

Ramaswamy Chandramouli, Simson L. Garfinkel, J. S. Nightingale, Scott W. Rose

Derived PIV Application and Data Model Test Guidelines

June 6, 2016

Author(s)

David Cooper, Hildegard Ferraiolo, Ramaswamy Chandramouli, Nabil Ghadiali, Jason Mohler, Steven Brady

NIST Special Publication (SP) 800-157 contains technical guidelines for the implementation of standards-based, secure, reliable, interoperable Public Key Infrastructure (PKI)-based identity credentials that are issued for mobile devices by federal

Extending Network Security into Virtualized Infrastructure

June 3, 2016

Author(s)

Ramaswamy Chandramouli, Larry Feldman, Gregory A. Witte

This bulletin summarizes the information presented in NIST Special Publication (SP) 800-125B, "Secure Virtual Network Configuration for Virtual Machine (VM) Protection." That publication provides an analysis of various virtual network configuration options

Representation of PIV Chain-of-Trust for Import and Export

May 20, 2016

Author(s)

Hildegard Ferraiolo, Ramaswamy Chandramouli, Ketan L. Mehta, Jason Mohler, Stephen Skordinski, Steven Brady

This document provides a common XML-based data representation of a chain-of-trust record to facilitate the exchange of PIV Card enrollment data. The exchanged record is the basis to personalize a PIV Card for a transferred employee and also for service