Software Engineering Institute

The SEI: The Leader in Software Engineering and Cybersecurity

Operated by Carnegie Mellon University, the Software Engineering Institute has been a leader in the fields of software engineering and cybersecurity since 1984. We research and solve complex, long-term problems for the Department of Defense, government agencies, and private industry, and we are always working to transition solutions to the software and systems engineering communities throughout the world.

Latest Publications

Software Architecture Publications

September 17, 2018 • White Paper

The SEI compiled this bibliography of publications about software architecture as a resource for information about system architecture throughout its lifecycle.

Download

Prioritizing Alerts from Multiple Static Analysis Tools, Using Classification Models

August 14, 2018 • Conference Paper

Lori Flynn William Snavely David Svoboda

This paper was accepted by the SQUADE workshop at ICSE 2018. It describes the development of several classification models for the prioritization of alerts produced by static analysis tools and how those models were tested for accuracy.

Download

Threat Modeling: A Summary of Available Methods

August 09, 2018 • White Paper

Nataliya Shevchenko Timothy A. Chick Paige O'Riordan

This paper discusses twelve threat modeling methods from a variety of sources that target different parts of the development process.

Download

From Our Experts

SCALe: A Tool for Managing Output from Static Analysis Tools

September 24, 2018 • Blog Post

Lori Flynn

Experience shows that most software contains code flaws that can lead to vulnerabilities. Static analysis tools used to identify potential vulnerabilities in source code produce a large number of alerts with high false-positive rates that an engineer must painstakingly examine...

read

Using Test Suites for Static Analysis Alert Classifiers

September 20, 2018 • Podcast

Lori Flynn Zach Kurtz

CERT researchers Lori Flynn and Zach Kurtz discuss ongoing research using test suites as a source of labeled training data to create classifiers for static analysis alerts.

learn more

Scope vs. Frequency in Defining a Minimum Viable Capability Roadmap: Part 2 of 3

September 17, 2018 • Blog Post

Bob Binder

As Soon as Possible In the first post in this series, I introduced the concept of the Minimum Viable Capability (MVC). While the intent of the Minimum Viable Product (MVP) strategy is to focus on rapidly developing and validating only...

read

View More Publications

Research and Capabilities

Learn how we support the defense and information security of the United States by advancing the state of the art and practice in software engineering and cybersecurity. Through our research in seven capability areas, our experts push the boundaries of knowledge from R&D through implementation and operation. We create, test, and apply tools, technologies, and practices to acquire, develop, operate, and sustain software systems that are innovative, trustworthy, and cost effective.

Software Engineering and Information Assurance

Data Modeling & Analytics

News

Software Engineering Institute Announces New CFO

September 11, 2018 • Press Release

The Software Engineering Institute today announced the hiring of a new chief financial officer.

15th Annual Workshop for Educators Plumbs DevOps and Technical Debt

August 27, 2018 • Article

Courses, invited talks, and a robust exchange of ideas help software engineering educators develop and improve their curricula and resources.

SEI CERT Division Releases Downloadable Source Code Analysis Tool

August 15, 2018 • Press Release

The CERT Division of the Software Engineering Institute (SEI) at Carnegie Mellon University today announced the release of its Source Code Analysis Laboratory (SCALe) application. This is the first release of the SCALe application to the public.

SEI Seeks Responses to ODNI-Sponsored Online Cyber Intelligence Survey

August 09, 2018 • Press Release

The Emerging Technology Center at the Software En-gineering Institute (SEI) today issued a call for U.S.-owned organizations to participate in a cyber intelligence tradecraft survey.

View More News

Education and Outreach

Discover our numerous training and credentialing opportunities for individual professional development. We also offer workforce development and licensing opportunities for organizations to apply best practices to their operations.

Courses

Work With Us

In addition to our work with agencies across the United States government, we partner with academic institutions and private companies to solve key technical challenges for current and future software-reliant systems. You can sponsor research and development, collaborate with us on research, and even get guidance from us to implement new methods.

Careers

Pursue your passion and work alongside world-recognized leaders in the field of software engineering. We invite you to view current employment opportunities, learn about benefits of working at the SEI, and apply for a position.

Join Us

SEI Cyber Minute

The Promise of Quantum Computing

News