Menu

About
About

back
Research and Capabilities
Research and Capabilities

back
Publications
Publications

back
News and Events
News and Events

back
- News
- Events
- SEI Bulletin
Education and Outreach
Education and Outreach

back
Careers
Careers

back

Software Engineering Institute | Carnegie Mellon University

Software Engineering Institute | Carnegie Mellon University

SEI Menu
About
Research and Capabilities
Publications
News and Events
- News
- Events
- SEI Bulletin
Education and Outreach
Careers

Digital Library

The SEI Digital Library provides access to more than 5,000 documents from three decades of research into best practices in software engineering. These documents include technical reports, presentations, webinars, podcasts and other materials searchable by user-supplied keywords and organized by topic, publication type, publication year, and author.

Browse by Topics

Browse by Author

A
Acquisition SupportAcquisition Support
AgileAgile
B
Big DataBig Data
C
CERT/CCCERT/CC
CMMICMMI
CSIRTsCSIRTs
Cloud ComputingCloud Computing
Critical Infrastructure ProtectionCritical Infrastructure Protection
Cyber Risk and Resilience ManagementCyber Risk and Resilience Management
Cyber-Physical SystemsCyber-Physical Systems
Cybersecurity EngineeringCybersecurity Engineering
D
DevOpsDevOps
Digital Intelligence and InvestigationDigital Intelligence and Investigation
F
FloConFloCon
ForensicsForensics
G
GovernanceGovernance
I
Incident HandlingIncident Handling
Incident ManagementIncident Management
Insider ThreatInsider Threat
M
MERITMERIT

Malware AnalysisMalware Analysis
Measurement and AnalysisMeasurement and Analysis
N
Network Situational AwarenessNetwork Situational Awareness
O
OCTAVEOCTAVE
P
People CMMPeople CMM
Performance and DependabilityPerformance and Dependability
Pervasive Mobile ComputingPervasive Mobile Computing
Predictability by ConstructionPredictability by Construction
PrivacyPrivacy
Process ImprovementProcess Improvement
R
Research ReviewResearch Review
Resilience Management Model (RMM)Resilience Management Model (RMM)
Risk AssessmentRisk Assessment
Risk and Opportunity ManagementRisk and Opportunity Management
S
SATURNSATURN
SQUARESQUARE
Science of CybersecurityScience of Cybersecurity
Secure CodingSecure Coding
Security TrainingSecurity Training
Service-Oriented ArchitectureService-Oriented Architecture

Smart Grid Maturity ModelSmart Grid Maturity Model
Software ArchitectureSoftware Architecture
Software AssuranceSoftware Assurance
Software Product LinesSoftware Product Lines
Software Solutions SymposiumSoftware Solutions Symposium
Supply Chain AssuranceSupply Chain Assurance
Survivability Analysis Framework (SAF)Survivability Analysis Framework (SAF)
Survivability and Information Assurance (SIA)
System of SystemsSystem of Systems
T
TSPTSP
TSP SymposiumTSP Symposium
Technical DebtTechnical Debt
Technical Debt WorkshopTechnical Debt Workshop
ThreatThreat
U
Ultra-Large-Scale SystemsUltra-Large-Scale Systems
V
Vulnerability AnalysisVulnerability Analysis
W
Workforce DevelopmentWorkforce Development

Annual ReportAnnual Report
ArticleArticle
AudioAudio
Book ChapterBook Chapter
BookBook
BrochureBrochure
CERT Research ReportCERT Research Report
CollectionCollection
Conference PaperConference Paper
Curriculum ModuleCurriculum Module

Educational MaterialEducational Material
Fact SheetFact Sheet
FormForm
HandbookHandbook
Maturity ModuleMaturity Module
NewsletterNewsletter
PodcastPodcast
PosterPoster
PresentationPresentation
Security Improvement ModuleSecurity Improvement Module

SoftwareSoftware
Special ReportSpecial Report
Technical NoteTechnical Note
Technical ReportTechnical Report
User's GuideUser-s Guide
VideoVideo
WebinarWebinar
White PaperWhite Paper

Advanced Search

Advanced Search

Keywords Phrases

ISBN

Content Type

Annual Report
Article
Audio
Book Chapter
Book
Brochure
CERT Research Report
Collection
Conference Paper
Curriculum Module

Educational Material
Fact Sheet
Form
Handbook
Maturity Module
Newsletter
Podcast
Poster
Presentation
Security Improvement Module

Software
Special Report
Technical Note
Technical Report
User's Guide
Video
Webinar
White Paper

Subjects

Acquisition Support
Agile
Big Data
CERT/CC
CMMI
CSIRTs
Cloud Computing
Critical Infrastructure Protection
Cyber Risk and Resilience Management
Cyber-Physical Systems
Cybersecurity Engineering
DevOps
Digital Intelligence and Investigation
FloCon
Forensics
Governance
Incident Handling
Incident Management
Insider Threat
MERIT

Malware Analysis
Measurement and Analysis
Network Situational Awareness
OCTAVE
People CMM
Performance and Dependability
Pervasive Mobile Computing
Predictability by Construction
Privacy
Process Improvement
Research Review
Resilience Management Model (RMM)
Risk Assessment
Risk and Opportunity Management
SATURN
SQUARE
Science of Cybersecurity
Secure Coding
Security Training
Service-Oriented Architecture

Smart Grid Maturity Model
Software Architecture
Software Assurance
Software Product Lines
Software Solutions Symposium
Supply Chain Assurance
Survivability Analysis Framework (SAF)
Survivability and Information Assurance (SIA)
System of Systems
TSP
TSP Symposium
Technical Debt
Technical Debt Workshop
Threat
Ultra-Large-Scale Systems
Vulnerability Analysis
Workforce Development

Publication Date

From:

To:

Latest Publications

Podcast | February 7, 2019 10 Types of Application Security Testing Tools and How to Use Them Tom Scanlon
Thomas Scanlon, a researcher in the SEI’s CERT Division, discusses the different types of application security testing tools and provides guidance on how and when to use each tool.
White Paper | February 6, 2019 An Approach for Integrating the Security Engineering Risk Analysis (SERA) Method with Threat Modeling Christopher J. Alberts, Carol Woody, PhD
This report examines how cybersecurity data generated by a threat modeling method can be integrated into a mission assurance context using the SERA Method.
Video | February 1, 2019 The SEI, a DoD FFRDC Mary C. Ward
Mary Catherine Ward explains the unique work that the SEI does for the Department of Defense as a federally funded research and development center (FFRDC).
White Paper | January 28, 2019 Infrastructure as Code: Final Report John Klein, Doug Reynolds
This project explored the feasibility of infrastructure as code, developed prototype tools, populated a model of the deployment architecture, and automatically generated IaC scripts from the model.
Video | January 17, 2019 Assuring Cyber-Physical Systems
Anita Carleton explains what cyber-physical systems are and discusses the work that the SEI has done to ensure they are safe to use for our national defense.

More Publications

Latest Podcasts

Podcast | February 7, 2019 10 Types of Application Security Testing Tools and How to Use Them Tom Scanlon
Thomas Scanlon, a researcher in the SEI’s CERT Division, discusses the different types of application security testing tools and provides guidance on how and when to use each tool.
Podcast | January 16, 2019 Leading in the Age of Artificial Intelligence Thomas A. Longstaff
Tom Longstaff, who in 2018 was hired as the SEI’s chief technology officer, discusses the challenges of leading a technical organization in the age of artificial intelligence.
Podcast | January 8, 2019 Women in Software and Cybersecurity: Dr. Lorrie Cranor Dr. Lorrie Cranor
Dr. Lorrie Cranor, director of CyLab, discusses discusses her career, her work in security and privacy, and her upcoming keynote at the Women in Cybersecurity Conference.

View All Podcasts

Latest Webinars

Webinar | December 18, 2018 Improve Your Static Analysis Audits Using CERT SCALe’s New Features Lori Flynn
In this webcast, Lori Flynn, a CERT senior software security researcher, describes the new features in SCALe v3, a research prototype tool.
Webinar | November 20, 2018 Five Ways to Boost Cybersecurity with DevOps Aaron Volkmann, Doug Reynolds
In this webcast, Doug Reynolds and Aaron Volkmann discuss key DevOps principles, including cross-team collaboration, task automation, tool integration, continuous integration and deployment, and continuous monitoring.
Webinar | October 23, 2018 Next Steps with Blockchain Technology Eliezer Kanal, Gabriel Somlo (SEI CERT)
In this webcast, Elli Kanal and Gabe Somlo discussed some blockchain successes, including a number of interesting applications they have encountered in their work at SEI.

View all Webinars

Top 5 January Downloads

Introducing OCTAVE Allegro: Improving the Information Security Risk Assessment Process
Common Sense Guide to Mitigating Insider Threats, Fifth Edition
CERT Resilience Management Model (CERT-RMM) Version 1.2
Software Architecture Professional Certificate
ATAM: Method for Architecture Evaluation

Latest Special Reports

Program Manager's Guidebook for Software Assurance
DoD Developer’s Guidebook for Software Assurance
FedCLASS: A Case Study of Agile and Lean Practices in the Federal Government
Cyber Mutual Assistance Workshop Report
The CERT Guide to Coordinated Vulnerability Disclosure

View all Special Reports

Annual Reports

2017 SEI Year in Review
2016 SEI Year in Review
2015 SEI Year in Review
2014 SEI Year in Review
2013 SEI Year in Review

View All Annual Reports

Desktop View

Carnegie Mellon University
Software Engineering Institute
4500 Fifth Avenue
Pittsburgh, PA 15213-2612
412-268-5800

Terms of Use | Privacy Statement | Intellectual Property
© 2019 Carnegie Mellon University