search menu icon-carat-right cmu-wordmark

Publications

The SEI provides access to more than 5,000 documents from three decades of research on best practices in software engineering. These documents include technical reports, presentations, webinars, podcasts, blogs, and other searchable materials. You can search our database to find publications that span the SEI's history as well as current research.

SEI Digital Library

Our digital library holds over 30 years of publications that you can browse by topic, author, and publication type.

Browse Digital Library

New in Publications

Guide to Implementing DevSecOps for a System of Systems in Highly Regulated Environments

Guide to Implementing DevSecOps for a System of Systems in Highly Regulated Environments

April 08, 2020 • Technical Report
Jose A. MoralesRichard TurnerSuzanne Miller

This Technical Report provides guidance to projects interested in implementing DevSecOps (DSO) in defense or other highly regulated environments, including those involving systems of systems.

read
Connecting Cyber Risk Managers to Executives: Understanding Risk Governance and Appetite

Connecting Cyber Risk Managers to Executives: Understanding Risk Governance and Appetite

April 03, 2020 • Webinar
Matthew TrevorsBrett Tucker

This webcast discussed how professionals and executives communicate risk concerns despite the cacophony and distraction posed by technical details and other organizational demands using the new OCTAVE FORTE approach.

watch
At What Point Does DevSecOps Become Too Risky for the Business?

At What Point Does DevSecOps Become Too Risky for the Business?

April 02, 2020 • Webinar
Hasan Yasar

This webcast covered the implementation of an automated, continuous risk pipeline that demonstrates how cyber-resiliency and compliance risk can be traced to and from DevSecOps teams working in the SDLC program and project levels.

watch
The CERT Guide to Coordinated Vulnerability Disclosure

The CERT Guide to Coordinated Vulnerability Disclosure

March 26, 2020 • Podcast
Allen D. HouseholderDavid Warren

Allen Householder and David Warren discuss the CERT Guide to Coordinated Vulnerability Disclosure, which is used by security researchers, software vendors, and other stakeholders in informing others about security vulnerabilities.

learn more
Designing Trustworthy AI: A User Experience (UX) Framework

Designing Trustworthy AI: A User Experience (UX) Framework

March 24, 2020 • Webinar
Carol J Smith

This webcast introduced a new user experience (UX) framework to guide the creation of AI systems that are accountable, de-risked, respectful, secure, honest and usable.

watch
Becoming a Better Software Architect

Becoming a Better Software Architect

March 13, 2020 • Webinar
Ipek OzkayaJames IversPhilip Bianco

In this session, a panel of architects discussed their personal paths to becoming software architects and how they have helped others on that journey.

watch