At the SEI, we research complex software engineering, cybersecurity, and AI engineering problems; create and test innovative technologies; and transition maturing solutions into practice. We have been ...

Petrilli, A., and Lau, S., 2019: Measuring Resilience in Artificial Intelligence and Machine Learning Systems. Carnegie Mellon University, Software Engineering ...

The CERT Division is a leader in cybersecurity. We partner with government, industry, law enforcement, and academia to improve the security and resilience of computer systems and networks. We study ...

Frye, B., 2020: 8 Steps for Migrating Existing Applications to Microservices. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed ...

Ozkaya, I., Carleton, A., Robert, J., and Schmidt, D., 2023: Application of Large Language Models (LLMs) in Software Engineering: Overblown Hype or Disruptive Change ...

Bernaciak, C., and Ross, D., 2022: How Easy Is It to Make and Detect a Deepfake?. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...

Software is vital to our country’s global competitiveness, innovation, and national security. It also ensures our modern standard of living and enables continued advances in defense, infrastructure, ...

Sible, J., and Svoboda, D., 2022: Rust Software Security: A Current State Assessment. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...

CERT incident notes are now a core component of US-CERT's Technical Cyber Security Alerts and Current Activity. We provide these incident notes, published by year, for historical purposes.

Nichols, B., 2020: Programmer Moneyball: Challenging the Myth of Individual Programmer Productivity. Carnegie Mellon University, Software Engineering Institute's ...

In this paper, the authors outline challenges with the Common Vulnerability Scoring System (CVSS) published standard and propose changes to improve it. This paper focuses on common misconceptions and ...

The SEI has been conducting research and development in various aspects of risk management for more than 20 years. Over that time span, many solutions have been developed, tested, and released into ...