Digital Library
The SEI Digital Library provides access to more than 3,500 documents from three decades of research into best practices in software engineering. These documents include technical reports, presentations, webinars, podcasts and other materials searchable by user-supplied keywords and organized by topic, publication type, publication year, and author.
- A
- Acquisition Support
- Agile
- B
- Big Data
- C
- CERT/CC
- CMMI
- CSIRTs
- Cloud Computing
- Critical Infrastructure Protection
- Cyber Risk and Resilience Management
- Cyber-Physical Systems
- Cybersecurity Engineering
- D
- DevOps
- Digital Intelligence and Investigation
- F
- FloCon
- Forensics
- G
- Governance
- I
- Incident Handling
- Incident Management
- Insider Threat
- M
- MERIT
- Malware Analysis
- Measurement and Analysis
- N
- Network Situational Awareness
- O
- OCTAVE
- P
- People CMM
- Performance and Dependability
- Pervasive Mobile Computing
- Predictability by Construction
- Privacy
- Process Improvement
- R
- Research Review
- Resilience Management Model (RMM)
- Risk Assessment
- Risk and Opportunity Management
- S
- SATURN
- SQUARE
- Science of Cybersecurity
- Secure Coding
- Security Training
- Service-Oriented Architecture
- Smart Grid Maturity Model
- Software Architecture
- Software Assurance
- Software Product Lines
- Software Solutions Symposium
- Supply Chain Assurance
- Survivability Analysis Framework (SAF)
- Survivability and Information Assurance (SIA)
- System of Systems
- T
- TSP
- TSP Symposium
- Technical Debt
- Technical Debt Workshop
- Threat
- U
- Ultra-Large-Scale Systems
- V
- Vulnerability Analysis
- W
- Workforce Development
Latest Publications
-
Technical Report | October 18, 2018
Composing Effective Software Security Assurance Workflows
William Nichols, Jim McHale, David Sweeney, William Snavely, Aaron Volkmann
In an effort to determine how to make secure software development more cost effective, the SEI conducted a research study to empirically measure the effects that security tools—primarily automated static analysis tools—had on costs and benefits.
-
Podcast | October 11, 2018
Deep Learning in Depth: IARPA's Functional Map of the World Challenge
Ritwik Gupta, Carson Sestili
Ritwik Gupta and Carson Sestili describe their use of deep learning in IARPA’s Functional Map of the World Challenge.
-
Presentation | October 8, 2018
Arbitrary Albatross: Neutral Names for Vulnerabilities
Art Manion
In this presentation the author explores issues around named vulnerabilities and presents a system to generate names separate from implied importance.
-
Special Report | October 5, 2018
FedCLASS: A Case Study of Agile and Lean Practices in the Federal Government
Nanette Brown, Jeff Davenport, Linda Parker Gates, Tamara Marshall-Keim
This study reports the successes and challenges of using Agile and Lean methods and cloud-based technologies in a government software development environment.
-
Conference Paper | October 5, 2018
Detecting Leaks of Sensitive Data Due to Stale Reads
William Snavely, William Klieber, Ryan Steele, David Svoboda, Andrew Kotov
This paper introduces a heuristic-driven dynamic analysis that aims to detect reads that may be accessing stale sensitive data.
Latest Podcasts
-
Podcast | October 11, 2018
Deep Learning in Depth: IARPA's Functional Map of the World Challenge
Ritwik Gupta, Carson Sestili
Ritwik Gupta and Carson Sestili describe their use of deep learning in IARPA’s Functional Map of the World Challenge.
-
Podcast | October 4, 2018
Deep Learning in Depth: Deep Learning versus Machine Learning
Ritwik Gupta, Carson Sestili
In this podcast excerpt, Ritwik Gupta and Carson Sestili describe deep learning and how it differs from machine learning.
-
Podcast | September 20, 2018
Using Test Suites for Static Analysis Alert Classifiers
Lori Flynn, Zach Kurtz
CERT researchers Lori Flynn and Zach Kurtz discuss ongoing research using test suites as a source of labeled training data to create classifiers for static analysis alerts.
Latest Webinars
-
Webinar | September 13, 2018
Next Steps with BlockChain Technology
Gabriel Somlo (SEI CERT), Eliezer Kanal
In this talk, Elli Kanal and Gabe Somlo discussed some blockchain successes, including a number of interesting applications encountered in their work at SEI.
-
Webinar | July 24, 2018
Digital Footprints: Managing Privacy and Security
Matthew J. Butkovic, Lena Pons
With the recent Cambridge Analytica news and the rollout of the General Data Privacy Rule (GDPR) in Europe, there are many questions about how social media data privacy is managed and how it could be managed.
-
Webinar | July 12, 2018
Digital Footprints: What Can be Learned from the Traces We Leave on Social Networks
April Galyardt, Carson Sestili
In this first webcast in a two-part series, April Galyardt and Carson Sestili described what metadata is and what information can be gleaned from it.