Journal Papers


Home
People
Patents
Publications
Teaching
Links

Up Conference Papers Journal Papers Articles Miscellaneous Dissertations Acronyms Most Cited Papers

  1. David Ferraiolo, Rick Kuhn and Ravi Sandhu, RBAC Standard Rationale: Comments on "A Critique of the ANSI Standard on Role-Based Access Control", IEEE Security & Privacy, Volume 5, Number 6, Nov./Dec. 2007, pages 51-53.
    Google Scholar Search
  2. Sejong Oh, Ravi Sandhu and Xinwen Zhang, An Effective Role Administration Model Using Organization Structure, ACM Transactions on Information and System Security, Volume 9, Number 2, May 2006, pages 113-137.
    Google Scholar Search
  3. Elisa Bertino, Latifur Khan, Ravi Sandhu and Bhavani Thuraisingham, Secure Knowledge Management: Confidentiality, Trust, and Privacy, IEEE Transactions on Systems, Man and Cybernetics, Part A: Systems and Humans, 36(3):429-438, May 2006.
    Google Scholar Search
  4. Ravi Sandhu, Xinwen Zhang, Kumar Ranganathan and Michael J. Covington, Client-side Access Control Enforcement Using Trusted Computing and PEI Models, Journal of High Speed Networks, Volume 15, Number 3, 2006, Pages 229-245.
    Google Scholar Search
  5. Xinwen Zhang, Francesco Parisi-Presicce, Ravi Sandhu, and Jaehong Park, Formal Model and Policy Specification of Usage Control, ACM Transactions on Information and System Security (TISSEC), 8(4): 351–387, 2005
    Google Scholar Search
  6. Xinwen Zhang, Songqing Chen, and Ravi Sandhu, Enhancing Data Authenticity and Integrity in P2P Systems, IEEE Internet Computing, Special Issue on Security for P2P/Ad Hoc Networks, 9(6): 42-49, November 2005.
    Google Scholar Search
  7. Elisa Bertino and Ravi Sandhu, Database Security-Concepts, Approaches, and Challenges. IEEE Trans. Dependable Sec. Comput. 2(1): 2-19, 2005.
    Google Scholar Search
  8. Jaehong Park and Ravi Sandhu, The UCON_ABC Usage Control Model, ACM Transactions on Information and System Security, Volume 7, Number 1, February 2004, pages 128-174.
    Google Scholar Search 100+
  9. Ravi Sandhu, Good-Enough Security: Toward a Pragmatic Business-Driven Discipline, IEEE Internet Computing, Vol. 7, No.1, January/February 2003.
    Google Scholar Search
  10. David F. Ferraiolo, Ravi Sandhu, Serban Gavrila, D. Richard Kuhn and Ramaswamy Chandramouli, Proposed NIST Standard for Role-Based Access Control, ACM Transactions on Information and Systems Security (TISSEC), Volume 4, Number 3, August 2001.
    Google Scholar Search 800+
    Also see ANSI INCITS 359-2004 Standard for Role Based Access Control
  11. Joon Park, Ravi Sandhu and Gail-Joon Ahn, Role-Based Access Control on the Web, ACM Transactions on Information and Systems Security (TISSEC), Volume 4, Number 1, February 2001.
    Google Scholar Search 100+
  12. Gail-Joon Ahn and Ravi Sandhu, Decentralized User Group Assignment in Windows NT, Journal of Systems and Software. Volume 56, Issue 1, February 2001, pages 39-49.
    Google Scholar Search
  13. Gail-Joon Ahn and Ravi Sandhu, Role-Based Authorization Constraints Specification, ACM Transactions on Information and Systems Security (TISSEC), Volume 3, Number 4, November 2000.
    Google Scholar Search 200+
  14. Joon S. Park and Ravi Sandhu, Secure Cookies on the Web, IEEE Internet Computing, July 2000.
    Google Scholar Search ..
  15. Sylvia Osborn, Ravi Sandhu and Qamar Munawer, Configuring Role-Based Access Control to Enforce Mandatory and Discretionary Access Control Policies, ACM Transactions on Information and Systems Security (TISSEC), Volume 3, Number 2, February 2000.
    Google Scholar Search 200+
  16. Ravi Sandhu and Bhamidipati, Role-Based Administration of User-Role Assignment: The URA97 Model and its Oracle Implementation, Journal of Computer Security, Volume 7, 1999.
    Google Scholar Search
  17. Gail-Joon Ahn and Ravi Sandhu, Towards Role-Based Administration in Network Information Services, Journal of Network and Computer Applications, Volume 22,Number 3, July 1999.
    Google Scholar Search
  18. Ravi Sandhu, Venkata Bhamidipati and Qamar Munawer, The ARBAC97 Model for Role-Based Administration of Roles, ACM Transactions on Information and Systems Security (TISSEC), Volume 2, Number, February 1999.
    Google Scholar Search 300+
  19. Ravi Sandhu and Fang Chen, The Multilevel Relational (MLR) Data Model, ACM Transactions on Information and Systems Security (TISSEC), Volume 1, Number 1,  June 1998.
    Google Scholar Search ..
  20. Ravi Sandhu and P. Samarati, Authentication, Access Control and Audit, ACM Computing Surveys, 50th anniversary commemorative issue, Volume 28, Number 1, March 1996.
    Google Scholar Search ..
  21. Ravi Sandhu, Edward Coyne, Hal Feinstein and Charles Youman, Role-Based Access Control Models, IEEE Computer, Volume 29, Number 2, February 1996.
    Google Scholar Search 2500+
  22. Roshan Thomas and Ravi Sandhu, A Trusted Subject Architecture for Multilevel Secure Object-Oriented Databases, IEEE Transactions on Knowledge and Data Engineering, Volume 8, Number 1, February 1996.
    Google Scholar Search
  23. Ravi Sandhu and P. Samarati, Access Control: Principles and Practice, IEEE Communications, Volume 32, Number 9, September 1994.
    Google Scholar Search 300+
  24. Ravi Sandhu, Lattice-Based Access Control Models, IEEE Computer, Volume 26, Number 11 (Cover Article), November 1993.
    Google Scholar Search 200+
  25. Roshan Thomas and Ravi Sandhu, A Kernelized Architecture for Multilevel Secure Object-Oriented Databases Supporting Write-Up, Journal of Computer Security, Volume 2, Number 3, 1993.
    Google Scholar Search
  26. Ravi Sandhu and Gurpreet Suri, A Distributed Capability-Based Architecture for the Transform Model, Computers and Security, Volume 12, Number 3, May 1993.
    Google Scholar Search
  27. Paul Ammann and Ravi Sandhu, The Extended Schematic Protection Model, Journal of Computer Security, Volume 1, Number 4, 1992.
    Google Scholar Search
  28. Ravi Sandhu, Lattice-Based Enforcement of Chinese Walls, Computers and Security, Volume 11, Number 8, December 1992.
    Google Scholar Search
  29. Ravi Sandhu and Sushil Jajodia, Eliminating Polyinstantiation Securely, Computers and Security, Volume 11, Number 6, October 1992.
    Google Scholar Search
  30. Ravi Sandhu, Undecidability of Safety for the Schematic Protection Model with Cyclic Creates, Journal of Computer and System Sciences, Volume 44, Number 1, February 1992.
    31. Google Scholar Search
  31. Ravi Sandhu, Expressive Power of the Schematic Protection Model, Journal of Computer Security, Volume 1, Number 1, 1992.
    Google Scholar Search
  32. Ravi Sandhu and Sushil Jajodia, Integrity Principles and Mechanisms in Database Management Systems, Computers and Security, Volume 10, Number 5, August 1991.
    Google Scholar Search
  33. Ravi Sandhu, Recognizing Immediacy in an NTree and its Application to Protection Groups, IEEE Transactions on Software Engineering, Volume 15, Number 12, December 1989.
    Google Scholar Search
  34. Ravi Sandhu, The Demand Operation in the Schematic Protection Model, Information Processing Letters, Volume 32, Number 4, September 1989.
    Google Scholar Search
  35. Ravi Sandhu, The Reflected Tree Hierarchy for Protection and Sharing, Information Processing Letters, Volume 30, Number 1, January 1989.
    Google Scholar Search
  36. Ravi Sandhu, Nested Categories for Access Control, Computers and Security, Volume 7, Number 6, December 1988.
    Google Scholar Search
  37. Ravi Sandhu, The NTree: A Two Dimension Partial Order for Protection Groups, ACM Transactions on Computer Systems, Volume 6, Number 2, May 1988.
    Google Scholar Search
  38. Ravi Sandhu, The Schematic Protection Model: Its Definition and Analysis for Acyclic Attenuating Schemes , Journal of the ACM, Volume 35, Number 2, April 1988.
    Google Scholar Search ...
  39. Ravi Sandhu, Cryptographic Implementation of a Tree Hierarchy for Access Control, Information Processing Letters, Volume 27, Number 2, February 1988.
    Google Scholar Search ...