Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

David Zubrow
June 2014 - Technical Note Improving the Automated Detection and Analysis of Secure Coding Violations

Topics: Secure Coding

Authors: Daniel Plakosh, Robert C. Seacord, Robert W. Stoddard, David Svoboda, David Zubrow

This technical note describes the accuracy analysis of the Source Code Analysis Laboratory (SCALe) tools and the characteristics of flagged coding violations.

March 2014 - Webinar Taking Advantage of Agile while Minimizing Risk

Topics: Process Improvement, Acquisition Support

Authors: David Zubrow

Watch Dave Zubrow discuss “Taking Advantage of Agile while Minimizing Risk” at the Agile for Government Summit.

July 2013 - White Paper Measures and Measurement for Secure Software Development

Topics: Cybersecurity Engineering, Software Assurance

Authors: Carol Dekkers, David Zubrow, James McCurley

In this paper, the authors discuss how measurement can be applied improve the security characteristics of the software being developed.

March 2013 - Technical Note Justification of a Pattern for Detecting Intellectual Property Theft by Departing Insiders

Topics: Insider Threat

Authors: Andrew P. Moore, David McIntire, Dave Mundie, David Zubrow

In this report, the authors justify applying the pattern “Increased Review for Intellectual Property (IP) Theft by Departing Insiders.”

October 2012 - Podcast The Importance of Data Quality

Topics: Measurement and Analysis

Authors: David Zubrow

In this episode, Dave Zubrow discusses the importance of data quality and research that his team is undertaking in this area.

June 2012 - White Paper Security-Specific Bibliography

Authors: Carol Dekkers, James McCurley, David Zubrow

In this paper, the authors provide a bibliography of sources related to security.

December 2011 - Technical Report Quantifying Uncertainty in Early Lifecycle Cost Estimation (QUELCE)

Topics: Measurement and Analysis

Authors: Robert Ferguson, Dennis Goldenson, James McCurley, Robert W. Stoddard, David Zubrow, Debra Anderson

The method of quantifying uncertainty described in this report synthesizes scenario building, Bayesian Belief Network (BBN) modeling and Monte Carlo simulation into an estimation method that quantifies uncertainties, allows subjective inputs, visually depicts influential relationships among program change drivers and outputs, and assists with the explicit description and documentation underlying an estimate.

December 2011 - Technical Report An Investigation of Techniques for Detecting Data Anomalies in Earned Value Management Data

Topics: Measurement and Analysis

Authors: Mark Kasunic, James McCurley, Dennis Goldenson, David Zubrow

This research demonstrated the effectiveness of various statistical techniques for discovering quantitative data anomalies.

March 2011 - Special Report Issues and Opportunities for Improving the Quality and Use of Data in the Department of Defense

Topics: Measurement and Analysis, Process Improvement

Authors: Mark Kasunic, David Zubrow, Erin Harper

This report contains the recommendations of an SEI-lead, joint-sponsored workshop by the OSD (AT&L) and DDR&, around the topics of data quality, data analysis, and data use.

July 2010 - Technical Report Programmatic and Constructive Interdependence: Emerging Insights and Predictive Indicators of Development Resource Demand

Topics: Measurement and Analysis, Process Improvement, System of Systems

Authors: Robert M. Flowe, Mark Kasunic, Mary M. Brown, Paul L. Hardin, III, James McCurley, David Zubrow, William Anderson

This 2010 report describes a series of ongoing research efforts that investigate the role of interdependence in the acquisition of major defense acquisition programs.

June 2010 - Webinar Critical Lessons Learned in the Content and Delivery of Six Sigma Training

Topics: Measurement and Analysis

Authors: Robert W. Stoddard, David Zubrow

In this webinar, Robert W. Stoddard and David Zubrow summarize critical lessons learned from several large corporations in both the content and delivery of Six Sigma training.

April 2009 - Webinar A Practical Approach for Building CMMI Process Performance Models

Topics: CMMI, Measurement and Analysis, Process Improvement

Authors: Kevin Schaaff, Robert W. Stoddard, Rusty Young, David Zubrow

This 2009 webinar targets individuals who will be developing and using process performance models as part of an overall CMMI High Maturity improvement framework.

November 2008 - Technical Note CMMI High Maturity Measurement and Analysis Workshop Report: March 2008

Topics: CMMI, Measurement and Analysis, Process Improvement

Authors: Robert W. Stoddard, Dennis Goldenson, David Zubrow, Erin Harper

This report outlines a 2008 workshop, in which leaders discussed high maturity practices and how to sustain momentum for improvement.

November 2008 - Technical Note Can You Trust Your Data? Establishing the Need for a Measurement and Analysis Infrastructure Diagnostic

Topics: Measurement and Analysis

Authors: Mark Kasunic, James McCurley, David Zubrow

This report describes common errors in measurement and analysis and the need for a criterion-based assessment method that will allow organizations to evaluate key characteristics of their measurement programs.

October 2008 - Webinar Measurement and Analysis Infrastructure Diagnostic, Creating a Foundation for Effective Measurement and Analysis

Topics: Measurement and Analysis, Process Improvement

Authors: Mark Kasunic, David Zubrow

This 2008 webinar describes the current status of an effort to develop MAID, a criteria-based approach for evaluating an organization‰s measurement and analysis infrastructure.

September 2008 - White Paper Software Engineering Bibliography

Topics: Cybersecurity Engineering, Software Assurance

Authors: James McCurley, Carol Dekkers, David Zubrow

In this paper, the authors provide a bibliography of sources related to software engineering.

March 2007 - Presentation Can You Trust Your Data? Measurement and Analysis Infrastructure Diagnosis

Topics: Measurement and Analysis, Process Improvement

Authors: David Zubrow

This presentation was made at SEPG 2007, held from March 26-29, 2007, in Austin, Texas.

January 2007 - Presentation High Maturity: How Do We Know?

Topics: CMMI, Measurement and Analysis

Authors: Mary Beth Chrissis, Will Hayes, Robert McFeeley, Jim McHale, Robert W. Stoddard, Rusty Young, David Zubrow

This presentation provides an overview of material also available in the Understanding CMMI High Maturity Practices course offered by the SEI.

September 2006 - Technical Report Risk Themes Discovered Through Architecture Evaluations

Topics: Software Architecture

Authors: Len Bass, Robert Nord, William G. Wood, David Zubrow

This 2006 report analyzes the output of 18 evaluations conducted using the Architecture Tradeoff Analysis (ATAM). The goal of the analysis was to find patterns in the risk themes identified during those evaluations.

May 2004 - Technical Note Case Study: A Measurement Program for Product Lines

Topics: Measurement and Analysis, Software Product Lines

Authors: Sholom G. Cohen, David Zubrow, Ed Dunn (Naval Undersea Warfare Center)

This report documents NUWC's approach for measurement by describing the Goal-Driven Software Measurement approach and providing early results of the measurement program.

February 2004 - Presentation System of Systems Integration Cost Driver Research

Topics: Measurement and Analysis, Process Improvement

Authors: David Zubrow

This presentation provides an overview of a CMMI level 4 and 5 implementation, using Six Sigma practices to provide additional guidance.

October 2003 - Technical Note Measures for Software Product Lines

Topics: Measurement and Analysis, Software Product Lines

Authors: David Zubrow, Gary Chastek

This 2003 report characterizes the status of measurement associated with the operation of a software product line, suggests a small set of measures to support its management, and provides guidance for those establishing measurement activities within a software product line.

September 2003 - Presentation Measurement in a Process Framework

Topics: Measurement and Analysis, Process Improvement

Authors: David Zubrow

This presentation was delivered by David Zubrow of the Software Engineering Institute in September 2003.

February 2003 - Presentation CMMI Appraisal Results

Topics: Process Improvement, CMMI

Authors: David Zubrow

This Software Engineering Institute (SEI) presentation discussing CMMI appraisal results was delivered by David Zubrow at SEPG 2003 on February 25, 2003.

January 2003 - Presentation Developing Enterprise-wide Measures for Tracking Acquisition Performance

Topics: Acquisition Support

Authors: Wolfhart B. Goethert, David Zubrow

This presentation was delivered in January 2003.

August 2002 - Technical Report Model-Based Verification: An Engineering Practice

Topics: Performance and Dependability

Authors: David P. Gluch, Santiago Comella-Dorda, John J. Hudak, Grace Lewis, Julie A. Walker, Charles B. Weinstock, David Zubrow

This 2002 report summarizes MBV and outlines the responsibilities of engineers engaged in Model-Based Verification.

April 2002 - Presentation Getting More Out of Your Inspection Data: Using Capture-Recapture Models for the Reinspection Decision

Topics: Measurement and Analysis, Process Improvement

Authors: Julie Barnard, Khaled El Emam, David Zubrow

This presentation on getting more out of your inspection data through the usage of capture-recapture models was delivered on April 12, 2002 at the European SEPG 2002 Conference.

February 2002 - Presentation How Good Is the Software: A Review of Defect Prediction Techniques

Topics: Measurement and Analysis, Process Improvement

Authors: Brad Clark, David Zubrow

presentation from the SEPG 2002 Conference

October 2001 - Special Report Framework Document: Model-Based Verification Pilot Study

Topics: Performance and Dependability

Authors: David P. Gluch, John J. Hudak, Robert Janousek, Julie A. Walker, Charles B. Weinstock, David Zubrow

This 2001 document describes the processes, activities, artifacts, and deliverables associated with an Engineering Practice Investigation of MBV.

July 1996 - Technical Report Software Process Automation: Experiences from the Trenches

Authors: Alan M. Christie, Linda Levine, Edwin J. Morris, David Zubrow, Teresa Belton (Nolan Norton and Company), Larry Proctor (Nolan Norton and Company), Denis Cordelle (Cap Gemini Segoti), Jean-Eloi Ferotin (Cap Gemini Segoti), Jean-Philippe Solvay (Cap Gemini Segoti)

This 1996 report documents an empirical study that documented practical experiences related to software process automation and to identify what works and what does not.

August 1995 - Technical Report Moving On Up: Data and Experience Doing CMM-Based Process Improvement

Authors: Will Hayes, David Zubrow

An analysis of Software Process Assessment results from 48 organizations undertaking 2 or more assessments is presented in this report.

September 1994 - Special Report Benefits of CMM-Based Software Process Improvement: Executive Summary of Initial Results

Authors: James D. Herbsleb, Anita Carleton, James A. Rozum, Jane Siegel, David Zubrow

This report provides an overview of some initial results of the effects of software process improvement efforts in 13 organizations.

August 1994 - Technical Report Benefits of CMM-Based Software Process Improvement: Initial Results

Authors: James D. Herbsleb, Anita Carleton, James A. Rozum, Jane Siegel, David Zubrow

This 1994 report provides initial results of the effects of software process improvement efforts on organizations.

June 1994 - Special Report Maturity Questionnaire

Authors: David Zubrow, Will Hayes, Jane Siegel, Dennis Goldenson

This 1994 report contains the software process maturity questionnaire and is intended for those who are performing and learning about software process appraisals.