search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

Publications

The SEI provides access to more than 5,000 documents from three decades of research on best practices in software engineering. These documents include technical reports, presentations, webinars, podcasts, blogs, and other searchable materials. You can search our database to find publications that span the SEI's history as well as current research.

SEI Digital Library

Our digital library holds over 30 years of publications that you can browse by topic, author, and publication type.

Browse Digital Library

New in Publications

You Can’t Wait for ROI to Justify Model-Based Design and Analysis for Cyber Physical Systems’ Embedded Computing Resources

You Can’t Wait for ROI to Justify Model-Based Design and Analysis for Cyber Physical Systems’ Embedded Computing Resources

June 01, 2023 • Conference Paper
Alfred SchenkerJerome Hugues

This paper proposes an alternative approach to ROI for justifying the cost of building architectural models of embedded computing resources for cyber-physical systems.

read
Securing UEFI: An Underpinning Technology for Computing

Securing UEFI: An Underpinning Technology for Computing

May 30, 2023 • White Paper
Vijay S. Sarvepalli

This paper highlights the technical efforts to secure the UEFI-based firmware that serves as a foundational piece of modern computing environments.

read
We Live in Software: Engineering Societal-Scale Systems

We Live in Software: Engineering Societal-Scale Systems

May 25, 2023 • Podcast
John E. RobertForrest Shull

John Robert, deputy director of the SEI’s Software Solutions Division, and Forrest Shull, lead for defense software acquisition policy research at the SEI, discuss issues that must be considered when engineering societal-scale systems.

learn more
Using Model-Based Systems Engineering (MBSE) to Assure a DevSecOps Pipeline is Sufficiently Secure

Using Model-Based Systems Engineering (MBSE) to Assure a DevSecOps Pipeline is Sufficiently Secure

May 23, 2023 • Technical Report
Timothy A. ChickScott PavettiNataliya Shevchenko

This report describes how analysts can use a model-based systems engineering (MBSE) approach to detect and mitigate cybersecurity risks to a DevSecOps pipeline.

read
Secure by Design, Secure by Default

Secure by Design, Secure by Default

May 11, 2023 • Podcast
Greg Touhill

Gregory J. Touhill, director of the SEI CERT Division, talks with Suzanne Miller about secure by design, secure by default, a longstanding tenet of the work of the SEI and CERT in particular.

learn more
Develop a Standard Protocol for Access Decisions in Zero Trust

Develop a Standard Protocol for Access Decisions in Zero Trust

May 04, 2023 • Video
Trista Polaski

In this SEI Cyber Minute, Trista Polaski highlights the importance of developing a standard protocol for access decisions in zero trust.

watch