SEI Digital Library

Getting Your Software Supply Chain In Tune with SBOM Harmonization

October 31, 2025 • Podcast

By
Jessie Jamieson and Matthew J. Butkovic

Software bills of materials or SBOMs are critical to software security and supply chain risk management. Regardless of the SBOM tool, the output should be consistent for a given piece …

Listen

5 Essential Questions for Implementing the Software Acquisition Pathway and the Tools to Tackle Them

October 22, 2025 • Webcast

By
Brigid O'Hearn and Eileen Wrubel

In this webcast, Eileen Wrubel and Brigid O’Hearn discuss the launch of the Software Acquisition Go Bag. Our SEI team has helped hundreds of DoD programs deliver software-enabled capability through …

Watch

Minimally Viable Architecture: Architecture Early in Development

October 20, 2025 • Technical Note

By
Manuel Rosso-Llopart

This technical note explores MVAs and offers guidance on what teams should do with an MVA to get their certificate to field and authorization to operate.

Read

Q-Day Countdown: Are You Prepared?

October 14, 2025 • Webcast

By
Matthew J. Butkovic, Brett Tucker, and Daniel Justice

In this webcast, Brett Tucker, Dan Justice, and Matthew Butkovic discuss the challenges to be expected with the realization of quantum computing capabilities.

Watch

API Security: An Emerging Concern in Zero Trust Implementations

October 10, 2025 • Podcast

By
McKinley Sconiers-Hasan and Timothy Morrow

Application programming interfaces (APIs) are the engine behind most internet traffic. Recent vulnerabilities due to design flaws and incorrect deployments have made APIs a target for attacks.

Listen

Standardization of Return on Risk Investment Computation

October 8, 2025 • White Paper

By
Brett Tucker

In this paper, Brett Tucker proposes standardizing how ROI is calculated and applied to quantitative risk-based decision making to enhance security resilience.

Read

Delivering Next-Generation AI Capabilities

September 30, 2025 • Podcast

By
Matt Gaston and Matthew J. Butkovic

Matt Gaston and Matt Butkovic discuss ongoing and future work in AI, including test and evaluation, the importance of hands-on experience with AI systems, and why government needs to continue …

Listen

Using LLMs to Evaluate Code

September 30, 2025 • Webcast

By
Mark Sherman

In this webcast, Dr. Mark Sherman summarizes the results of experiments that were conducted to see if various large language models (LLMs) could correctly identify problems with source code.

Watch

Automated Code Repair for C/C++ Static Analysis

September 29, 2025 • Technical Report

By
David Svoboda, Lori Flynn, William Klieber, Michael Duggan, Nicholas Reimer, and Joe Sible

This engineering experience paper details the application of design, development, and performance testing to an automated program repair tool we built that repairs C/C++ code.

Read

Design of Enhanced Pointer Ownership Model for C

September 29, 2025 • Technical Report

By
David Svoboda, Lori Flynn, William Klieber, Ruben Martins, Sasank Vishnubhatla, and Nicholas Reimer

This report describes the design for a new temporal memory safety model for C code and an implementation to enforce it.

Read