Dr. Ravi Sandhu

Role: Investigator
Affiliation: UTSA
Title: Professor
Company: University of Texas at San Antonio
Department: Computer Science and Electrical and Computer Engineering
Email: ravi DOT sandhu AT utsa DOT edu
Business: 210 458 6398
Business Address: Institute for Cyber Security, BSE 2.304 University of Texas at S, One UTSA Circle, San Antonio, TX 78249, USA
Ravi Sandhu is Founding Executive Director of the Institute for Cyber Security at the University of Texas at San Antonio, where he holds the Lutcher Brown Endowed Chair in Cyber Security and courtesy appointments in Computer Science, Electrical and Computer Engineering and Information Systems. He previously served on the Information Security faculty at George Mason University (1989-2007) and the Computer Science faculty at Ohio State University (1982-1989). Ravi received B.Tech. and M.Tech. degrees in EE from IIT Bombay and Delhi respectively, and M.S. and Ph.D. degrees in CS from Rutgers University.

He is a Fellow of ACM (2001), IEEE (2002), and AAAS (2008), recipient of the IEEE Computer Society Technical Achievement Award (2004), the ACM SIGSAC Outstanding Contribution Award (2008), and two Best Paper awards from NIST/NSA (1992, 1998). His research has focused on cyber security with special emphasis on authorization models, protocols and mechanisms. A prolific and highly cited author, he has published over 180 technical papers on cyber security with over 50 collaborators. His papers have accumulated over 10,000 citations at Google Scholar including the top 2 cited papers in access control with 3200+ and 2000+ citations. His h-index at Google Scholar is 48 (48 papers with 48 or more citations). He is widely known for his seminal papers on role-based access control (RBAC) which led to widespread adoption of RBAC in commercial products and to the 2004 NIST/ANSI standard model.

His early work focused on safety and expressive power of access control remains state-of-the-art even today. He has published numerous influential papers on multilevel secure databases, Chinese Wall separation policies, lattice-based information flow, access control hierarchies, and transaction and task controls. In 2002 he introduced the influential Usage Control model for next-generation access control. Other recent research activities include Group-Centric Information Sharing models and implementations using Trusted Computing, the PEI (policy, enforcement and implementation) layered models method for synthesizing secure systems, semantic web security, next generation role-based access control, social networking security and privacy, stealthy botnet detection and mitigation, and Web 2.0 security.

Ravi was founding editor-in-chief of the ACM Transactions on Information and Systems Security (1997-2004). He was Chairman of ACM SIGSAC (1995-2003), and founded and led the ACM Conference on Computer and Communications Security and the ACM Symposium on Access Control Models and Technologies to high reputation. He has provided leadership at the Program Chair and General Chair level for numerous other security research conferences. He served as the security editor for IEEE Internet Computing (1998-2004). He is the incoming Editor-in-Chief of the IEEE Transactions on Dependable and Secure Computing (Jan 1, 2010). He has provided high-level consulting services to numerous industry and government organizations, and has lectured all over the world on cyber security. He is co-founder and Chief Scientist of TriCipher, and the principal security architect and protocol designer of the FIPS certified TriCipher Armored Credential System. He is an inventor on 12 security technology patents. His web site is at www.profsandhu.com.

Author of 17 resources

  1. Ravi Sandhu, "Purpose-Centric Secure Information Sharing", Presentation, September 18, 2009, 839 downloads.
  2. Ravi Sandhu, "TIUPAM: A Framework for Trustworthiness-centric Information Sharing", Presentation, September 18, 2009, 490 downloads.
  3. Shouhuai Xu, Ravi Sandhu, Elisa Bertino, "Trustworthiness-centric Assured Information Sharing", InProceedings, The 3rd IFIP International Conference on Trust Management (IFIPTM'09), June 16, 2009.
  4. Shouhuai Xu, Ravi Sandhu, Elisa Bertino, "TIUPAM: A Framework for Trustworthiness-Centric Information Sharing", InProceedings, 3rd IFIP WG 11.11 International Conference on Trust Management, June 15, 2009, 457 downloads.
  5. Shouhuai Xu, Qun ni, Elisa Bertino, Ravi Sandhu, "A Characterization of the Problem of Secure Provenance Management", InProceedings, IEEE International Conference on Intelligence and Security Informatics (ISI-2009), June 11, 2009, 773 downloads.
  6. Ram Krishnan, Ravi Sandhu, Jianwei Niu, William H Winsborough, "Foundations for Group-Centric Secure Information Sharing Models", InProceedings, 14th ACM Symposium on Access Control Technologies, June 03, 2009, 363 downloads.
  7. Ram Krishnan, Ravi Sandhu, Jianwei Niu, William H Winsborough, "Foundations For Group-Centric Secure Information Sharing Models", Proceedings, Proceedings of the 14th ACM symposium on Access control models and technologies Pages 115-124 June 3, 2009, June 03, 2009, 418 downloads.
  8. Ram Krishnan, Ravi Sandhu, "Enforcement Architecture and Implementation Model for Group-Centric Information Sharing", InProceedings, 1st International Workshop on Security and Communication Networks (IWSCN), May 20, 2009, 461 downloads.
  9. Ravi Sandhu, "The PEI Framework for Application-Centric Security", InProceedings, 1st International Workshop on Security and Communication Networks (IWSCN), May 20, 2009, 907 downloads.
  10. Justin Leonard, Shouhuai Xu, Ravi Sandhu, "A First Step Towards Characterizing Stealthy Botnets", InProceedings, 4th International Conference on Availability, Reliability and Security (ARES), March 16, 2009, 395 downloads.
  11. Justin Leonard, Shouhuai Xu, Ravi Sandhu, "A Framework for Understanding Botnets", InProceedings, rd International Workshop on Advances in Information Security (WAIS at ARES), March 16, 2009, 427 downloads.
  12. Ram Krishnan, Ravi Sandhu, Jianwei Niu, William H Winsborough, "A Conceptual Framework for Group-Centric Secure Information Sharing", Proceedings, 4th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2009), March 10, 2009.
  13. Ravi Sandhu, "Formal Models for Assured Information Sharing", Presentation, September 13, 2008, 903 downloads.
  14. Tim Finin, Anupam Joshi, Lalana Kagal, Jianwei Niu, Ravi Sandhu, William H Winsborough, Xiaohu Li, "ROWLBAC - Representing Role Based Access Control in OWL", InProceedings, Proceedings of the 13th Symposium on Access control Models and Technologies, June 11, 2008, 1479 downloads.
  15. Tim Finin, Anupam Joshi, Lalana Kagal, Jianwei Niu, Ravi Sandhu, William H Winsborough, Xiaohu Li, "Role Based Access Control and OWL", InProceedings, Proceedings of the fourth OWL: Experiences and Directions Workshop, April 01, 2008, 903 downloads.
  16. Ram Krishnan, Jianwei Niu, Ravi Sandhu, William H Winsborough, "Stale-Safe Security Properties for Group-Based Secure Information Sharing", InProceedings, Proceedings of the 6th ACM workshop on Formal methods in security engineering, February 02, 2008, 582 downloads.
  17. Tim Finin, Anupam Joshi, Lalana Kagal, Jianwei Niu, Ravi Sandhu, William H Winsborough, Xiaohu Li, "Using OWL to Model Role Based Access Control", TechReport, University of Maryland, Baltimore County, February 01, 2008, 1141 downloads.

Editor of 1 resource

  1. Elisa Bertino, "Policy Management", Presentation, September 12, 2008, 1552 downloads.