Secure Software by Design 2025 Presentations

In 2025, Carnegie Mellon University Software Engineering Institute (CMU SEI) held the Secure Software by Design Conference.

Presentations include:

• Timothy A. Chick: Secure Systems Don’t Happen by Accident
• Lyndsi Hughes: Prioritizing and Testing Non-Functional Requirements: A Practical Guide
• Emil Mathew: The Role of Large Language Models in Building Secure Software
• Greg Shevchenko: Modeling Security Policies
• David Svoboda: Integrating Automated Repair into the CERT Coding Standards
• Alexander Vesey and Natasha Shevchenko: Proactive Architectural Analysis of Cybersecurity Threats
• Alka Soni: Secure by Design Architecture Enterprise Data Frameworks for Embedded Security Governance
• Amanda Walsh, Sara Nienow, Laura Morrison, Ben Fein-Smolinski, Gray Martin Meaghan McGrath, Jonathan Merker, Garrison Spencer, Carly Dotson, Victoria Neff, Breanna Reingold, and Shannon Wells: The Cost of Insecure Software
• Ankit Gupta and Shilpi Mittal: Secure by Construction: Architecting Systems that Defend Themselves
• Kara Zajac: Open Source Risk Analysis
• Anand Kumar Vedatham: Architecting Security-First Enterprise Systems
• Scott Dietzen: Can AI Fix Software & Software Engineering?
• Oleksii Segeda: Data Bill of Materials: Toward a Transparent Supply Chain
• Hariharan Ragothaman: Shift-Left Meets Zero Trust: Building Secure-by-Design APIs from Day Zero
• Brian Paap: Illuminating Software and Vendors
• Santosh Appachu Devanira Poovaiah: OS-Level Trust Assumptions in Shared CPU–GPU Memory Systems
• Venkata Surendra Reddy Appalapuram: Secure-by-Design Azure Data Lakehouse Architectures