The Mathematical and Computational Sciences Division provides technical leadership within NIST in modern analytical and computational methods for solving mathematical problems of interest to American industry. A program of advanced research focuses on selected areas of applied and computational mathematics and collaboration with technical experts in other NIST divisions, industry, and academia. The scope includes the development and analysis of theoretical descriptions of phenomena (mathematical modeling); the design and analysis of requisite computational methods and experiments; the transformation of these methods into efficient numerical algorithms for high performance computers; the implementation of these methods in high-quality mathematical software; and the distribution of this software to potential clients, both within NIST and to the external community.

The work of the division can be grouped into three broad areas: testing and evaluation methodology, mathematical modeling, and tools for high performance computing.

Highlights of the Year's Work

B. Alpert (ITL) and colleagues M. Francis (Electronics and Electrical Engineering Laboratory [EEEL]) and R. Wittmann (EEEL) won a Department of Commerce Bronze Medal for their work in developing an algorithm for the processing of antenna measurements corrupted by probe position errors. The method exploits position information available during the measurement procedure to compute far fields as accurately as when no position errors are present, and at a computational cost which is acceptable even for electrically very large antennas. The algorithm has been implemented and the software has been distributed to antenna calibration laboratories in government and industry.

Information technology trends indicate an ongoing move toward a future of universal, continuous access to information. Three barriers to realizing this future are interoperability problems, scaling problems, and security problems. The Advanced Network Technologies Division concentrates primarily on overcoming the first two barriers and on eliminating their detrimental effect on the development of a global network infrastructure. Our contributions to overcoming these barriers are focused on developing test methods, such as testbeds and reference implementations for interoperability testing, and simulation analysis of protocol interactions and scaling limits. Each group's projects and accomplishments are described below.

High Speed Network Technologies

The High Speed Network Technologies Group continues its leadership role in the development of Asynchronous Transfer Mode (ATM) network protocols by active participation in the ATM Forum. The ATM Forum is an industry standards consortium that develops standards for high speed digital network technology. We develop abstract test suites (ATS) for conformance and interoperability testing of the ATM network protocols through participation in the Testing Working Group of the Forum. Our efforts concentrate on testing of call control signaling, routing, and traffic management. During 1997, the group developed conformance tests for the user-network interface (UNI) version 3.1 signaling layer for user side equipment, and interoperability tests for the Private Network-to-Network Interface (PNNI). Currently, the group is developing conformance tests for PNNI and for the Available Bit Rate (ABR) service.

At the international level, we participated in the ITU-T Study Group 13 in the development of the Protocol Implementation Conformance Statement (PICS) Proforma for ATM Adaption Layer (AAL) Type 2 and related service parts. This work contributed to defining the real requirements of the AAL Type 2 protocol and helped the members reach agreement on the ITU-T Recommendations. An important application of AAL2 is the transport of voice over ATM networks.

There is an increasing need for residential broadband access network standards to provide high-speed Internet access from homes that can support the new multimedia applications. The industry standards group IEEE 802.14 is developing protocols for high speed bi-directional data communication over the Hybrid Fiber/Coaxial (HFC) networks currently being used or deployed by the cable TV industry.

For the past three years, the IEEE 802.14 group has been working on a draft specification that will include protocols for the Physical Media (PHY) and Medium Access Control (MAC) protocol layers. As an unbiased third party, ITL participated in the evaluation of several MAC proposals submitted to the 802.14 group. We produced several reports to the group based on the results of computer simulations conducted in our laboratory. The subjects of these reports included performance comparison of MAC proposals, analysis of MAC frame formats, comparison of contention resolution algorithms, and evaluation of bandwidth allocation methods. These reports helped the standards group achieve several important agreements in arriving at a final MAC protocol. In addition, our work on the HFC MAC protocol was extended to include performance evaluation of Transmission & Control Protocol/Internet Protocol (TCP/IP) and ATM ABR service in an asymmetrical network environment such as HFC. The results were presented at technical conferences and in journal publications.

A Video-on-Demand (VoD) Interoperability Testing Laboratory was established jointly by the High Speed Network Technologies Group and the Multimedia and Digital Video Group. In this laboratory, a VoD system was developed based on the DAVIC (Digital Audio-Visual Council) specifications. The system implemented DAVIC's control and data flow. The data flow delivers MPEG2 (Moving Picture Experts Group [MPEG]) data directly over ATM network while the control flow carries control data such as video selection and VCR-type controls via the DAVIC standard protocol stack, or alternatively, through an Internet Web browser.

Test tools are being developed for conformance testing of protocols involved in the laboratory testbed. In 1997 we developed a conformance test suite for the Digital Storage Media Command and Control (DSMCC) protocol which is to be included as part of the International Organization for Standardization (ISO) MPEG2 standards. This facility offers vendors the opportunity to test product interoperability with other vendors' products as well as with NIST's VoD implementation.

In addition to the interoperability tests of VoD applications, we conducted experiments on the transport of digital video information over ATM networks. In a collaborative effort with Bellcore and Bell Atlantic, we used a Bellcore prototype Video Dial Tone system to test transfer of video over multiple wide area networks. ATM networks between New Jersey and Maryland were used in these tests, which specifically addressed the impact of ATM quality of service (QoS) parameters on the performance of the digital video application.

Wireless Technologies

Wireless technology is emerging as an important new area of network research. To meet the interoperability and scaling challenges of the effective use of wireless technology, we are strengthening the Wireless Technologies Group to give it a stronger research focus.

Multimedia and Digital Video

The Multimedia and Digital Video Group works with industry to promote the development of cost-effective, interoperable, distributed multimedia applications and to enable the development of digital video technologies for broadcast, interactive television, video-on-demand, and video conferencing. The group focuses on three areas: measurement techniques for characterization of distributed multimedia technologies and digital video devices and services; techniques for integrating multimedia services with network technologies; and industry-driven standards for multimedia technologies and digital video devices and services. The video-on-demand work is done in collaboration with the High Speed Network Technologies Group.

In collaboration with MITRE and Carnegie Mellon University (CMU), the group works on the Defense Advanced Research Projects Agency (DARPA) Intelligent Collaboration and Visualization Program (IC&V) program. The goal is to identify and apply an evaluation and benchmarking approach to the collaboration infrastructure and applications that will be developed with DARPA funding.

As the Internet has gained popularity over the past decade, the need for collaborative multimedia conferencing and application sharing systems has risen significantly. Application sharing allows participants to view and interact with the same application (e.g., spreadsheet) during their conference. These systems are beginning to play large roles in research, education (e.g., distance learning), and business.

In collaboration with Old Dominion University, ITL is designing and implementing an adaptable and extensible architecture for platform-independent multimedia conferencing and collaborative application sharing. The JCE (Java Collaborative Environment) uses Java-based collaboration mechanisms that provide solutions to overcome the platform-dependency problems for collaborative computing in heterogeneous systems. The Java programming language produces bytecodes that can be run on any platform which has a Java Virtual Machine. This enables application developers to write the application once and have it run anywhere.

Internetworking Technologies

Division personnel actively participate in the design, standardization, development, and testing of next- generation internetworking technology. These activities focus on current design and standardization efforts within the Internet Engineering Task Force (IETF) to add significant new functionality to the Internet Protocol Suite (IPS). Our efforts concentrate in areas that hold promise for the most significant improvements to the capabilities of the IPS infrastructure: network security technology, the next-generation internetwork protocol (IPv6), and protocols and architectures to support integrated services.

In the area of network security technology, staff members took a leadership role in the IETF and vendor community in the design and standardization of internetwork layer security protocols, known as IPsec. IPsec protocols are designed to provide authentication, integrity, and confidentiality services to both the current IP protocol (IPv4) and IPv6. We concentrate our current efforts on IPv4 because of the high level of interest in fielding Internet security technology as quickly as possible.

At the request of IETF directors, ITL staff collaborated with key industry partners to develop several specifications for emerging IPsec protocols. Our staff co-authored IPsec protocol specifications with Cisco Systems, Inc., Bay Networks, IBM T. J. Watson Research Center, the National Security Agency, and Sable Systems.

In addition to providing leadership in IETF standards development, we designed and developed Cerberus, a leading- edge prototype and reference implementation of the latest IPsec specifications. Cerberus serves as a publicly available reference implementation and a platform for ongoing research on advanced issues in IPsec technology.

To answer an industry call for more frequent and accessible interoperability testing for emerging commercial implementations of IPsec technology, we developed the NIST IPsec WWW-based Interoperability Tester (IPsec-WIT). IPsec-WIT is built around the Cerberus prototype and ubiquitous WWW technology and allows implementers to remotely execute series of interoperability tests against the NIST reference implementation. IPsec-WIT also serves as an experiment in test system architectures and technologies. The novel use of WWW technology allows IPsec-WIT to provide interoperability testing services anytime and anywhere without requiring any distribution of test system software or relocation of the systems under test. Work is currently underway to expand Cerberus and IPsec-WIT to support emerging key management protocols and to address IPv6 in addition to IPv4.

In the area of integrated services, we focused our initial efforts on test and instrumentation tools to foster early experimentation with emerging IETF signaling, routing, and transport protocols for real-time traffic. Our tools address the gap between the capabilities of new network services and the requirements and capabilities of new and existing applications. Two of the most difficult aspects of engineering performance sensitive applications are being able to realistically test and measure the behavior of such applications in a controlled laboratory environment, and understanding how to map application requirements to new, real-time network services.

To address the first issue, we developed the NIST Network Emulation Tool (NIST Net) that enables experimentation with arbitrary IP network performance dynamics in a simple laboratory setting. The tool allows developers to use inexpensive PC components to experiment with bandwidth, delay, congestion, and corruption dynamics commonly experienced in large, wide area networks (e.g., the public Internet) and new subnetwork technologies (e.g., xDSL, cable modems).

To address the second issue, staff members developed the Integrated Services Protocol Instrument (ISPI). The ISPI tool enables one to measure the performance of real-time data streams transmitted over IP networks and to experiment with resource reservations without modifying existing applications. ISPI is capable of measuring in real-time the performance seen by applications distributed at various points in the network and to dynamically adjust the real-time attributes of the underlying network service.

As information technology (IT) and electronic commerce become integral to all aspects of the government and private sectors, the security and protection of that technology becomes critical. Both industry and government require swift, seamless, and secure computer systems and networks to compete in the global marketplace. Our Computer Security Division emphasizes the development of vital tests and test methods, reference data, proof-of-concept implementations, and technical analyses needed by government and industry. These products, tools, and techniques enable security technology developers, vendors, and integrators to deliver high-quality, reliable products into the marketplace.

The NIST Computer Security program has six primary focus areas:

• Cryptographic Technology and Applications - to help establish common cryptographic security technology (algorithms, functionality, and interfaces) to support information technology (IT) systems and networks. This also includes development of conformance tests for cryptographic-based security technology and management of the NIST Cryptographic Module Validation Program.

• Public Key Infrastructure - to enable establishment of a nationwide (ultimately, global) infrastructure for managing public key certificates needed to facilitate data integrity, authentication, access control, non-repudiation, and data confidentiality services in global applications.

• Internetworking Security - to ensure that incident prevention, detection, reaction, and information sharing capabilities are embedded in the technical and operational fabric of IT systems and networks.

• Criteria and Assurance - to ensure the availability of affordable, reliable, and trustworthy security technology, systems, and products for use in IT systems and networks.

• Security Management and Support - to provide direct support and other guidance to ensure effective use and management of security technology. Activities include the National Information Systems Security Conference and a number of special projects.

• Cryptographic Key Recovery - to develop tests and validate standards for systems that provide for the recovery of cryptographic keys used for confidentiality in the event that such keys are not available from the originator.

Advanced Encryption Standard

In anticipation of future needs for the next generation of high-quality cryptography, the division initiated the development of an Advanced Encryption Standard (AES) that will provide a strong cryptoalgorithm for use by the public and private sectors in protecting sensitive unclassified information for the next 20 to 30 years. A Federal Register notice of January 2, 1997, announced NIST's intent to develop an AES and proposed minimum acceptability requirements and evaluation factors. Draft submission requirements for candidate algorithms were also announced. An AES Requirements Workshop attracted about 80 participants from industry, government, and academia, including representatives from Canada, the UK, Belgium, and Japan.

The Information Access and User Interfaces Division accelerates the development of technologies that allow intuitive, efficient access, manipulation, and exchange of complex information by developing and coordinating measurement methods, evaluation methodologies, test suites and corpora, prototypes, workshops, and standards.

Spoken Natural Language Processing

The Spoken Natural Language Processing Group advances the state of the art of spoken language processing technologies, which serve as an alternative modality for the human-computer interface. They are also used to provide transcripts from speech input that can be searched to provide relevant excerpts of audio. We develop test procedures, coordinate community-wide benchmark tests, provide reference materials (speech corpora) used by the research and development community, and build prototype testbed systems.

The group has worked with the Defense Advanced Research Projects Agency (DARPA) spoken language community since 1984, and has played a key role in the development of speech corpora (databases of speech, transcriptions, and related materials) for the research community to use in both system development and benchmark tests. Over 200 CD-ROMs containing these corpora have been produced by ITL and are used throughout the worldwide speech research community.

Benchmark tests, which we have implemented within this community since 1987, are used to track the development of several speech technologies including English and multi-lingual speech recognition and understanding, spotting technologies, language identification, and most recently, spoken document retrieval. These tests, which provide diagnostic information that helps to identify strengths and weaknesses in the technology, have facilitated increased accuracy and robustness of the technology over time.

The scope of speech recognition technologies under development and test within our community now includes recognition of conversational telephone-channel speech in several foreign languages, including Spanish, Mandarin, Japanese, Arabic, and German. In FY 1997, we implemented large vocabulary continuous speech recognition benchmark tests for DARPA's Human Language Systems Program and other Department of Defense agencies with participation of U.S. and international government-sponsored organizations.

ITL's work has helped to move the research community into real application domains by designing new benchmark tests and test materials using "found" speech from television and radio news broadcasts involving background noise and music, foreign dialects, spontaneous and conversational speech, varying recording/channel effects, and unconstrained vocabularies. Continuous speech recognition benchmark tests now include audio recordings from radio and television news broadcasts in Spanish and Mandarin as well as English. Error rates for the task decreased substantially over the last three years.

In conjunction with the Natural Language Processing and Information Retrieval Group, our group organized the first benchmark test of spoken document retrieval (SDR) technology which involves the retrieval of excerpts from collections of audio recordings. Since SDR is implemented by applying information retrieval techniques to the output of speech recognition systems, the benchmark test provided the opportunity for speech research organizations to work with information retrieval organizations. Fourteen organizations participated in the SDR test and 3 of the 13 submitted systems were joint efforts between speech recognition and information retrieval organizations. Several sites had SDR results which were nearly comparable to their retrieval on human-generated control transcripts and demonstrated that successful retrieval can be performed with current speech recognition technology.

We developed a portable UNIX-based software package (SCLITE) for scoring the performance of speech recognition systems, and we use this software to score, tabulate, and analyze results for the speech recognition benchmark tests we administer. Publicly available, SCLITE is used internally by many research organizations to evaluate their speech recognition systems. It produces a variety of performance reports and includes implementations of several paired-comparison statistical tests. These tests, developed in part with the assistance of the Statistical Engineering Division, quantify the significance of performance differences across systems.

We initiated the development of an interactive spoken document retrieval evaluation testbed. When complete, the modular system will permit us to explore measurement and evaluation techniques for speech recognition and understanding, spoken document retrieval, adaptive language modeling, information acquisition, and human-computer interaction.

Natural Language Processing and Information Retrieval

This group promotes the use of more effective and efficient techniques for manipulating unstructured textual information, especially the browsing, searching, and presentation of that information. The work is accomplished via three complementary mechanisms: the creation of testing materials and metrics for text retrieval, the sponsorship of the annual Text REtrieval Conference (TREC), and the ongoing investigation of specific issues in text access using in-house prototypes.

In past years we developed testing material for evaluating text retrieval in English (over 5 gigabytes of test documents and 300 test questions), created the first test collections ever built for retrieval in Spanish and Chinese, and produced new metrics and testing material for evaluating retrieval using input produced by degraded optical character recognition (OCR). All these testing materials and metrics were first used as part of the evaluation of participating systems in TREC, and then distributed for use by researchers in industry and academia.

During 1997 we expanded this effort into new areas. In cooperation with the Swiss Federal Institute of Technology (ETH), we produced the first test collection for evaluation of cross-language retrieval, i.e., the retrieval of documents in different languages than the input query language. This testing material is comprised mainly of newswire data in three languages: English, French, and German. The 25 test questions built are also in these languages, to enable testing in both a monolingual and a cross-lingual mode.

Additionally, in cooperation with the Spoken Natural Language Processing Group, we created testing material for the evaluation of speech retrieval against 50 hours of broadcast news. New metrics and evaluation methodologies were developed for using this material in TREC-6. As a third project for TREC-6, the group provided extensive guidance to the Australian National University during their creation of a very large (20-gigabyte) corpus for use in testing the efficiency of search engines.

A final project for TREC-6 involved the design and implementation of a new testing methodology for evaluating interactive text retrieval. With major help from the Statistical Engineering Division, we created an experimental design involving the use of a control system to help separate the various factors in the performance of interactive systems. NIST's ZPRISE retrieval system was slightly modified for use as the control system, and nine TREC-6 groups participated in this experimental evaluation test.

The TREC-6 conference, the latest in the ongoing series of conferences designed to improve text retrieval algorithms, took place in November 1997. This conference, co-sponsored by NIST and DARPA, attracts international participation from information retrieval researchers in industry, academia, and government. The conference, which has grown from 25 systems in 1992 to 51 systems in 1997, serves as a major technology-transfer mechanism in the field. Participating groups worked with large (NIST-built) test collections, used the same evaluation procedures, and met for a three-day workshop to compare techniques and results. In 1997 there were ten areas of testing: retrieval in English in both new query and standing query modes, retrieval in Chinese, cross-language retrieval, speech retrieval, filtering, interactive retrieval, high-precision retrieval, retrieval using natural language processing techniques, and retrieval using a 20-gigabyte corpus.

Other areas of research during 1997 included successful experiments building a simple German stemmer and decompounder for use in the TREC-6 cross-language task, the initial design work for a digital library for access to archival publications in information retrieval, and the user testing of a pilot search system (EAMATE) in conjunction with the Social Security Administration (SSA). The group's prototype search engine (PRISE) was used in an experiment to develop better search algorithms based on the type of documents being searched. This experiment led to a revision in the current algorithm. A client/server version of this search engine, called ZPRISE, continued to be distributed as public domain software, and was sent to 30 additional institutions in 1997.

The group worked on two projects particularly oriented towards improved hypermedia access, including the Web. The HyperIndexer project, with SSA, continued its investigation into the building of automatic links, including a small user test of the effectiveness of these links. Along with changes to the prototype based on this testing, new work has started on the automatic creation of embedded links. The second project involves the design and building of test metrics for usability evaluation of Web sites remotely. This project, called WebMetrics, is being conducted jointly with the Visualization and Virtual Reality Group, and has already resulted in experimental testing of three very different Web sites.

Visual Image Processing

ITL supports the technology of image recognition in government and industry by developing new image recognition methods, developing techniques for the evaluation of existing methods, and providing technology transfer to the commercial imaging and document conversion industry.

In cooperation with the Federal Bureau of Investigation, we developed methods for the evaluation of fingerprint applications and mugshot standards. The goal of the mugshot standards project is to develop a standard method for acquiring electronic mugshots which is usable at all levels of law enforcement. Also in 1997, we initiated a project to explore combining a fingerprint biometric with existing digital signature standards. This project will allow electronic law enforcement records to be authenticated with a digital signature accessible only after a matched fingerprint has been used to verify the identity of the sender.

In 1997 researchers in the optical information processing project began to develop evaluation methods for system components of pattern recognition and holographic memory systems. The goal of this project is to develop the metrology needed to industrialize optical information processing using a real commercial application as a test bed. Initially, we explored the feasibility of optical methods of image storage, 3D holography, and combining optical correlation and neural networks for fingerprint matching.

These efforts showed that properly characterized 3D analog holographic memory has capabilities for image storage which is sufficient to support various correlation methods of pattern recognition. In the initial phase of the project, we also showed that a combination of local optical correlation and neural network matching can be used to provide the first advance on minutia matching in 20 years. If properly combined, these methods should allow a new class of optical pattern matching system to be developed. This will require development on new measurement methods to characterize components of the system, such as the input and output devices, and the development of new phase coherent optical computer-aided design (CAD) methods. A researcher from Carnegie Mellon University worked with the group on these new measurement methods.

The expertise developed in this project allowed us to specify a high impact commercial application which could use this technology. This is real-time fingerprint matching for user verification for financial use, credit, law enforcement, and Internet security. The Financial Services Technology Consortium is interested in the first application and several small companies are pursuing the network access market. In both applications, fingerprint matching, retinal scan matching, and face recognition have all been suggested. The projected costs, the input device, and user inconvenience make fingerprint and face matching more attractive candidates than retinal scanning. At the present state of the technology, fingerprint matching provides much higher levels of security. In samples of a few thousand, look-alike faces can usually be found. In 30 million fingerprint samples, no matches have been found between different individuals.

In 1997, the group began an initial investigation of new pattern recognition methods based on the statistical learning theories of V. N. Vapnik. This project may provide a more accurate method of pattern recognition and should allow the performance effects associated with the distributions functions of the testing and training sets to be more accurately evaluated.

Work continues on cost-effective document conversion technology in cooperation with the National Security Agency (NSA). Commercial off-the-shelf (COTS) technology for many areas of document conversion is widely used for tasks such as universal library conversion but this technology does not address the need for large-scale, timely conversion of low-quality documents and the impact of this type of conversion on information retrieval. Studies at NIST which evaluate COTS solutions to this problem show that for high-quality images, COTS packages all perform well; on medium-quality images, some COTS packages perform well enough to be useful; and on low-quality documents, no COTS package performs well enough to be useful.

In 1997, our group collaborated with the Natural Language Processing and Information Retrieval Group and NSA to organize a committee to run the METTREC Conference (Metadata Text Retrieval Conference). Conferences of this type have been used in the case of OCR and TREC to define and focus both commercial and academic research efforts on specific problem areas. These conferences provide high leverage for potential government users and aid in technology evaluation by encouraging exchange of research ideas and by demonstrating the strengths and identifying areas requiring future work in the selected technologies.

Initially, METTREC will use 67,000 pages of the Federal Register (the entire year 1994) which have full typesetting instructions and paper documents. This allows comparison of images generated by typesetting with real images on scanned paper and enables assessment of OCR techniques in generating images. Initially, this comparison took place in a subset of the data in the 1996 TREC Conference. The results demonstrated that word error rates from OCR in the 5 percent range had little effect on retrieval. Future tests in METTREC should demonstrate the effects of 40 to 50 percent error rates that COTS packages produce on low-quality documents.

Visualization and Virtual Reality

Information visualization is receiving much attention within the human-computer interaction and graphics research communities because it holds promise as a technology that will enable the display and exploration of large, complex information spaces. The Visualization and Virtual Reality Group advances the state of the art in information visualization and virtual environment technology through the development of evaluation methodologies, benchmarks, and metrics that address the usability and scalability of three-dimensional visualization approaches and through the creation of proof-of-concept prototypes, benchmark data sets, and formats for simplifying the integration of visualization tools with applications. Secondarily, the group seeks to develop evaluation methodologies for leading-edge human computer interaction technologies that support information access.

In FY 1997, ITL developed several three-dimensional interfaces to the NIST PRISE information retrieval system to support easier access to document collections. These systems now form the basis of experiments to support the evaluation of the effectiveness of such interfaces. The group continues to pursue opportunities within the information retrieval and digital library communities to supply appropriate evaluation methodologies and guidelines that will leverage the technology to support innovative uses of visual displays of information for information retrieval.

A second project, begun three years ago, centers around investigating the appropriateness of virtual environments and the Virtual Reality Modeling Language (VRML) for manufacturing applications. The project is affiliated with users and developers through a collaboration with NIST's Manufacturing Engineering Laboratory and the Systems Integration for Manufacturing Applications program. The goal is to assist the manufacturing community in exploring how visualization can improve the manufacturing process. This led to the software modeling of factory floor assembly lines, machine tools, and parts with all associated multimedia information as a virtual environment in VRML.

The VIM (Visual Interface for Manufacturing) prototype was constructed in FY 1996 and supported an investigation of the feasibility and usability of Web-based virtual environments for modeling manufacturing processes. This was followed by a successful effort in translating various 3D designs and physical models into VRML2 and integrating into one VRML2 model. We also acquired data from the Consumer Product Safety Commission consisting of detailed infant and child measurements. This database was placed into electronic form and converted to VRML models of children via a human body motion simulation package. The VRML models and data developed by ITL have been integrated into several commercial packages.

We continued collaborating with researchers who have formed a group to develop large datasets to support the visualization and data mining community. The goal is to create large, public datasets in which researchers can experiment with and evaluate the effectiveness of visualization techniques to support information exploration. This is similar to efforts in the machine learning community, but with an emphasis on very large, timely datasets. In FY 1997, we successfully participated in a comparison of visualization and mining techniques for the first dataset.

We also continued our work with the DARPA Intelligent Collaboration and Visualization Program. As part of an evaluation effort designed to provide evaluation tools for DARPA-funded researchers, this year we developed a framework for evaluation of collaborative systems and associated scenario templates and test scenarios. This framework will be valuable as there currently exists a large body of knowledge about collaborative systems and computer-supported cooperative work, but no easy way to structure and apply this knowledge across the many dimensions of group work and technologies.

The Distributed Computing and Information Services Division provides the information technology resources, supporting infrastructure, applied research, and assistance to NIST staff, collaborators, and clients in the conduct of NIST's scientific, engineering, and administrative applications and in the dissemination of information, including:

• an easy-to-use, robust, secure, distributed heterogeneous environment with support for desktop systems and workstations, network capabilities, information services, and access to external and mobile users;

• common computing environments, information access tools, software development tools, and specialized applications software;

• site-wide hardware maintenance for standardized desktop systems and workstations and site-wide software licensing;

• maintenance and repositories for standardized platforms and applications; and

• large-scale testbeds, advanced prototypes, and reliable systems as part of the continuous improvement in scope and quality of service.

In FY 1997, the Distributed Processing and Operating Systems Support Group continued to provide the NIST staff with high-quality computing support services. One major project was to simplify and streamline the administration of the NIST-wide software checkout service. This service provides NIST scientists and researchers the option to access and use expensive, licensed data processing software packages. Updated versions of these software packages were obtained and installed on the server to ensure that the users had the latest versions. The administration of the software was improved and automated where possible.

The NIST electronic mail servers operated by the group in Gaithersburg and Boulder continue to provide highly reliable service to over 2,500 users, with over 3,000 electronic mail messages processed per day. These servers have been reprogrammed to provide the electronic mail alias translation service for NIST staff, so that e-mail addressed to firstname.lastname@nist.gov is delivered no matter where the staff member actually receives mail. A third e-mail service, administering over 200 mailing lists used by NIST staff, was also updated. Three of these lists are large and are updated automatically overnight -- that for Gaithersburg staff, that for Boulder staff, and that for all NIST staff.

During the year the group assumed responsibility for another NIST-wide service, the administration of the Usenet News server. Usenet is an informal collection of news servers supporting over 25,000 special-interest groups. The news servers allow individuals to read and post messages to those groups, and to periodically transfer messages to other servers supporting the same news groups. The group manages the news server that communicates with servers external to NIST, distributes postings to all NIST users, and supports the NIST-specific special-interest groups.

The upgrade of hardware continued, to support the increasing demand for service by the NIST staff and to improve system reliability. A new server, a Sun Microsystems Ultra Enterprise 4000, was acquired. Once configured, this server will replace five currently used computers and provide better and faster service.

Information Processing Support

In FY 1997, the responsibilities of the Information Processing Support Group continued to grow. Currently, the group hosts a total of 28 World Wide Web (WWW) servers that provide Web services to 7 of the 11 NIST Measurement and Standards Laboratories and Programs. These are the Information Technology Laboratory (ITL), Technology Services (TS), the Chemical Science and Technology Laboratory (CSTL), the Manufacturing Engineering Laboratory (MEL), the Physics Laboratory (PL), the Advanced Technology Program (ATP), and the National Quality Program. The group also constructed an operating prototype of an electronic commerce system for limited use by Technology Services to sell standard reference materials and databases through the Internet.

System performance and security are continually monitored by the staff and by special software installed on the servers. The software is programmed to page the staff responsible in case of a malfunction or in case it appears that an intruder is trying to obtain access to any part of the system. This approach of centralized monitoring by staff who are experienced in this area results in a more secure system and improved operation over the previous approach of having each Operating Unit (OU) run its own system.

The group also provided consulting and programming services to NIST OUs. Help with the creation of Web pages, with access to databases from the Web, and with the programming of special OU-specific WWW applications was provided to NIST staff. Assistance was also provided to OUs interested in developing intranets for use by their staff. Additionally, applications that generally support NIST staff, improve communication between NIST offices, and provide monitoring of Web access and traffic were developed. Improved services included development of a Web forum capability, development of electronic forms, and generation of statistics of Internet users that access NIST WWW servers. The group also participated in the development of policies for NIST Web pages. CGI scripts to warn Internet users when they exit NIST were developed with the cooperation of the NIST Information Coordinators.

Activities in the Software Diagnostics and Conformance Testing Division focus on the development of software evaluation technology, conformance tests, and standards that can be used to assist U.S. industry in the development of high-quality software. In this role, the division develops software testing tools and methods, participates with industry in the development of forward-looking information technology standards, and leads efforts for the development of conformance tests even at the early development stage of standards.

Software Analysis Tools

Division researchers participate in the development of tools for static and dynamic analysis of software, focused on measuring conformance to specifications and diagnosis of the causes for deviations from specifications. Included is work on static analysis tools for program slicing and generation of paths for basis testing, and the extension of object-oriented languages to allow for the detection of pre- and post-condition violations.

Building on previous work in role based access control (RBAC), we developed a prototype of the first RBAC extension to World Wide Web servers. The software developed in this project can be incorporated into existing Web servers to provide access control based on users' roles in the organization, simplifying security for both administrators and users. Our formal model for RBAC, developed jointly with the Computer Security Division, was adopted by two major software vendors for incorporation into their own products.

A unique graphical search engine, Reference Information for Software Quality (RISQ), was developed in cooperation with the Software Engineering Institute at Carnegie-Mellon University. The RISQ search tool uses a graphical taxonomy- based query system to simplify and speed up user searches for information on software quality. Although developed for searching software quality information, the RISQ facility is ideally suited to other types of taxonomy-based data.

For the Nuclear Regulatory Commission, ITL developed the Unravel Program Slicer which computes "slices" of C programs, where a slice is a subset of the program that contains all lines of code that can directly or indirectly affect the value of a particular variable at a particular point. The tool assists in the effort to debug or test a program since it allows the programmer to focus on those parts of the program that are relevant to the logic in question. Other front ends for the Unravel Program Slicer are being considered for development for other programming languages such as C++ or Java.

To allow software developers to measure the effectiveness of development techniques and compare their results with others, a unique database of software errors, faults, and failures is being developed. In addition, to assist industry in the evaluation of the methods and tools they use to improve software quality, we are developing a library of standard reference materials consisting of software with known errors. This library can be used by software developers to determine the effectiveness of the test tools and techniques they use in developing their systems. As part of this effort, we plan to develop statistical methods of evaluating testing procedures and software development tools and techniques.

We initiated a project to develop methods and tools for automatic generation of tests from software specifications. Successful automated testing methods promise significantly more economical means for testing software than are currently available. This will reduce time to market for software products and benefit consumers by making quality software less costly to produce.

Software Conformance Testing

Division researchers develop test methods and tests to determine whether implementations of public specifications conform to that specification. The division is also working closely with outside organizations to help them establish certification test services based on division tests, for the issuing of certificates of conformance.

Working with industry, we are developing conformance tests and test tools for the Virtual Reality Modeling Language (VRML), Java, Computer Graphics Metafile (CGM), and Programmer's Imaging Kernel System (PIKS). For VRML, we developed a reference parser and initial VRML Test Suite (VTS). We are continuing to augment the VTS, by extending the parser and using it to automatically generate VRML test files. To develop the VTS, ITL researchers work in cooperation with the VRML community to validate completed tests and to develop new tests.

In the area of Java, we initiated a project to develop conformance tests, tools, and methods for the areas of Java technology that need test metrics. An ITL-sponsored workshop on Java conformity assessment provided a forum for interested parties to discuss testing philosophies and methodologies for the varying Java technologies and to formulate a direction forward. Working with industry, we will build Java tests and tools that will ensure the consistency and accurate use of the Java specification, applications, and applets.

In cooperation with the Air Transport Association (ATA), ITL is building Computer Graphics Metafile (CGM) conformance test suites and is helping ATA establish its certification service. Also cooperating in this effort is the Aerospace Industries Association (AIA).

Additionally, we are working with several private sector companies and federal agencies to assist them in the establishment of conformance testing programs. In support of this technology transfer, we are developing a certification system framework which describes the processes and procedures for establishing, administering, and operating a conformance testing service. Our goal is to transition current operational testing and certification programs from ITL to private industry, as well as help to establish new testing programs in the private sector. In support of this effort, we developed a Web-based Directory of Conformance Testing Programs, Products, and Services for information technology standards. This directory provides a source for linking providers of conformance testing materials and services with users of these materials and services.

As a research project, ITL is currently investigating new and more efficient approaches to the development of conformance tests. Current conformance tests are developed through the extremely time-consuming process of developing falsification tests. Such testing, while extremely useful, can never cover all requirements and thus never actually provides total proof of correctness. We are investigating new methods for software testing based on stochastic processes and statistical measures in order to improve the quality of software and to provide quantitative measures for determining the probability that software correctly adheres to its specifications. In addition, we are investigating the effectiveness of using automated test generation methods to develop conformance tests for specifications of standards. This research could lead to faster ways of developing conformance tests, which would then result in an increased capability for product developers to determine if their products work according to specifications.

Forward-Looking Standards

ITL researchers seek to make significant technical contributions to standards which are on the cutting edge of software technology. In this effort, we pursue work in areas that have a research component for either the technology itself or for the concept of conformance testing, and for which vendors preferably do not yet have implementations or other vested interests in the work. In performing this work, ITL researchers are working both within the traditional standards community, such as Information Technology Technical Committees that operate under the auspices of the American National Standards Institute, and within other standards related organizations such as the World Wide Web Consortium.

Users of standards are often faced with the daunting task of trying to locate and access standards that are appropriate to their work. To simplify this task, we are working with other standards-related organizations in the development and application of a taxonomy and framework for standards that can be used to both coordinate the development of forward-looking standards and to assist potential users of standards in finding and applying those standards that are applicable to their particular requirements. As part of this effort, an online standards locating and retrieval capability, offering the user multiple interfaces, was implemented to provide access to standards from both government and commercial sources. This retrieval capability is being expanded to provide World Wide Web availability for retrieval of correct values for specific instances of data codes in those standards containing large numbers of uniquely identified data codes.

In cooperation with the Environmental Protection Agency, ITL continued its work on a project that focuses on development of several specific infrastructure components needed for the intelligent integration of database information with intelligent information services techniques. Particular attention is being paid to the application of classification taxonomies and ontologies, as related to development of an Environmental Data Registry, in order to provide for testable, high-quality access interfaces for multiple types of software that serve as information search engines. As part of this task, we are investigating the application of specified infrastructure components in the research area of network Object Registration.

Also in the area of Object-Oriented technology and testing, ITL is working with other organizations in developing and testing object-oriented technology components that can be specifically applied to the concept of "distance learning." In this area, ITL researchers are working on the complete network system from interoperability standards to repository object exchange protocols, including metadata fields for educational objects, and finally to the concept of conformance testing of educational objects.

Statistical Planning for a Neutron Lifetime Experiment

ITL statisticians contributed their expertise in planning an experiment at the NIST Cold Neutron Research Facility (CNRF), where researchers are developing a dramatic new technology to trap polarized ultracold neutrons in a three-dimensional magnetic trap filled with superfluid helium. With this technology, the mean lifetime of the neutron will be determined. The present experimental value of the neutron lifetime is 887.4 s. The associated estimated standard deviation is 1.7 s. The planned experiment should reduce the experimental error by a factor ranging from 10 to 100. Along with other experimental data, this measurement allows one to test the consistency of the standard model of electroweak interactions. Further, the mean lifetime of the neutron is an important parameter in astrophysical theories.

At the CNRF, many runs of a two-stage experiment are planned. In the first stage of each run cycle, the trap is filled with neutrons to a desired level. In the second stage, scintillation events due to neutron decay or background processes are observed. The statistical properties of the lifetime estimate depend on the time allocation between the fill and decay stages, as well as the particular nonlinear algorithm used for estimation of the mean lifetime from the time sequence of events. In collaboration with NIST's Physics Laboratory staff, our staff developed a stochastic model for the data. Based on this model, a strategy for maximizing the precision of the lifetime estimate was formulated.

Optical Fibers

In another collaboration, ITL statisticians achieved a more precise measurement of polarization mode dispersion (PMD), which arises in single-mode communication fibers when there is imperfect circular symmetry in the fiber core. An optical pulse input to a fiber is split into two orthogonally polarized pulses. Distortion arises as a result of a differential group-delay time between these two orthogonally polarized pulses at the output. This differential group-delay can have a limiting effect on the speed of digital communication systems and therefore is a good indicator of the performance of a lightwave system. PMD is routinely measured both at the manufacturing stage and in installed systems.

Among the methods of PMD measurement, the fixed analyzer technique is perhaps the simplest to use. Division scientists collaborated with NIST's Electronics and Electrical Engineering Laboratory to improve PMD measurements using the fixed analyzer technique. A new value for the polarization mode coupling factor of 0.805 (a 2 percent discrepancy with the old value of 0.824) was found. Systematic biases due to sampling density and extrema thresholding were quantified (6 to 12 percent for typical measurement conditions), and a simple correction algorithm was developed which removes the effects of these biases to within 1.7 percent.

Ballistic Imaging Interoperability Test Methods

To facilitate interoperability between existing ballistic imaging systems, the Office of the National Drug Control Policy, the Federal Bureau of Investigation, and the Bureau of Alcohol, Tobacco, and Firearms executed a memorandum of understanding recognizing that the two ballistic image systems currently in use should be interoperable. Under this memorandum, NIST, as a neutral third party, was charged to develop a standard for interoperability and to develop and oversee interoperability conformance tests. The purpose of ballistic imaging systems is to permit forensic evidence (cartridge cases and bullets) recovered at a crime scene to be imaged and compared to an existing database of thousands of images to identify possible links between crimes previously unsuspected as being related. However, due to differences in software, image acquisition, and networking capabilities, the images captured on either one of the two systems cannot be used on the other, thus denying crime laboratories full access to all image databases.

NIST has developed a specification for interoperability between the two image systems that requires the capability of creating cartridge-case images on either system in such a manner that the image can be correlated to the database on the dissimilar system. With respect to image acquisition and matching, the concept of interoperability is not a yes/no characteristic but rather is a matter of degree of interoperability. That is, it is recognized that acquiring images on a non-native system may produce subtle differences in image "quality" that could result in changes match probability, relative to images acquired on the native system.

To address the problem of experimental evaluation of interoperability for image-matching, division staff developed measures of disarray for comparing ranked ballistic images from a native database to the array of images obtained by matching the corresponding non-native test image. Initially, ordinary rank correlation coefficients were suggested for measuring and testing interoperability, but these were thought to be inadequate since only the top few rank positions are believed to have any practical significance. So, we developed the statistical theory for two new rank coefficients of disarray that assign greater importance to the higher ranks. Furthermore, by contrast to common rank correlation procedures, these procedures are designed to measure the agreement of a novice "judge" with a known standard ranking, rather than the mutual agreement between equally weighted rank vectors. A limited interoperability test program is presently underway, and an analysis based on our interoperability measures will be used to evaluate and refine system modifications in advance of more extensive testing.

Intrusion Detection in Computer Networks

Network vulnerability is widely recognized as a key problem for the technological future. Hack attacks or performance anomalies have, in a number of high-profile cases, crippled key industries and services. This makes it urgently necessary to develop tools that identify aberrant behavior as early as possible, and flag those problems and apparent causes for the system administrator.

The Defense Advanced Research Projects Agency (DARPA) awarded a three-year grant for joint work in our division and Carnegie Mellon University on intrusion detection in computer networks, and, more generally, anomaly detection in complex datasets. The work entails the combination of methods from time series analysis, cluster analysis, multivariate analysis, and pattern recognition. The ultimate aim is to develop a system monitor that combines high sensitivity, low false-alarm rates, and the capability to respond in real-time to apparent threats to system integrity.

The project takes advantage of an existing cross-ITL group of researchers who are studying the junction of statistics, data mining, and visualization. The group established competence in this inter-disciplinary area by participating in a network intrusion detection contest. The contest was designed to explore the relationship between data mining and visualization. The ITL group produced one of the most successful entries in the contest.

Sharpness of Scanning Electron Microscopes

Fully automated or semi-automated scanning electron microscopes (SEM) are commonly used in semiconductor production and other forms of manufacturing. Sharpness is an important characteristic of SEMs, and at the present time, no self-tests are incorporated into these instruments to test this characteristic even though the goal of industry is to have the instruments perform without human intervention for long periods of time. Nien-fan Zhang of our division and Michael Postek of NIST's Precision Engineering Division collaborated on identifying suitable test objects for this purpose and developed a statistical measure of sharpness, based on a multivariate kurtosis statistic with an appropriate analytic algorithm. This year, a small company that develops software for precision instruments implemented the algorithm in software and demonstrated its effectiveness at the 1997 SPIE Conference; and IVS, Inc., requested assistance in implementing the technique.

Random Number Generation for Evaluation of Cryptosecurity

Ensuring the integrity of information technology is now a national issue whose importance has been highlighted by many recent security compromises. A crucial component of system security is the encryption of data and text. The standard format for encrypted transmissions depends upon large, nominally random, and balanced binary bit streams, which are used as keystreams in stream ciphers or in block cipher algorithms. Their randomness and balance are critical. Failure of either quality provides an exploitable compromise in system security.

Statisticians in our division, together with ITL's Computer Security Division, are collecting, inventing, analyzing, and organizing algorithms designed to test the integrity of the random binary generators that are the key components of security systems. The study seeks to clarify the interdependencies among the tests and to identify tests to cover deficiencies among those already in use. The final product will be a highly portable, user-friendly package that will enable a wide spectrum of government, commercial, and private users to validate the cryptosecurity of their systems.

Engineering Statistics Handbook

We continue our collaboration with the SEMATECH Statistical Methods Group on the production of a Web-based statistics handbook to help physical scientists and engineers incorporate statistics into their work more efficiently. The material in the handbook will include case studies from the semiconductor industry and NIST laboratories. The handbook will also be integrated with statistical software, allowing users to reproduce examples from the handbook interactively and to perform similar analyses on other data.

Over the last year, prototype handbook designs, navigation, and technical materials have been favorably critiqued by several audiences, including engineers, statisticians and managers from SEMATECH member companies, academia, and other industries. Current work includes formal usability testing as well as development of new technical material. The usability testing is being done in collaboration with ITL's Visualization and Virtual Reality Group and will examine both the organizational structure and content of the handbook. The project is supported in part by the NIST Systems Integration for Manufacturing Applications program which is part of a government-wide effort in High Performance Computing and Communications (HPCC).