search menu icon-carat-right cmu-wordmark

Using AI to Build More Secure Software

August 2019 Presentation
Mark Sherman

This presentation will discuss why the construction of secure software is a concern beyond the IT industry, the elements of a secure software development process and how artificial intelligence could be applied to improve that process.

Publisher:

Software Engineering Institute

Abstract

The continuing growth of MITRE's Common Vulnerabilities and Exposures (CVE) list—now at nearly 150,000 entries—is a testament to how difficult it remains to build software that is resistant and resilient to attack. The development of SecDevOps aimed to improve the security of software, but no considerations have yet addressed how artificial intelligence might improve that aim. This presentation discusses the reasons that the development of secure software is a concern beyond the IT industry, lists the elements of a secure software development process, and reflects on how artificial intelligence could improve that process. This presentation also considers additional security issues facing the development of artificial intelligence software.