As one of the DoD's two R&D FFRDCs, the SEI conducts a research program spanning areas including software development, vulnerability discovery, digital forensics, malware analysis, embedded systems, formal methods, cyber training, and risk management. R&D projects are awarded using an internal competitive process that takes into account intellectual merit, potential government mission impact, collaborators, and potential to transition to practice.
The primary theme of our projects is "capabilities with confidence," generally provided by software. A particular emphasis is being placed on quantifiable evidence in support of assurance—not just in the security sense, but in the sense of assurance for acquisition, performance, testing, and sustainment. In this talk I will briefly introduce SEI as part of Carnegie Mellon University, discuss how the complexity of and dependence on today's software systems drive the need for tools and methods for greater assurance and security, and discuss several multi-year projects that have had significant ongoing impacts on our government clients and the larger community.