Our Work. At the Software Engineering Institute (SEI), we research complex software engineering, cybersecurity, and artificial intelligence engineering problems; create and test innovative technologies; and transition maturing solutions into practice.

December 17, 2024—The role of software within business- and mission-critical systems is growing, and so is the need to control the system security and resilience risks created by software components.The Software Engineering Institute (SEI) has released the Security Engineering Framework (), a detailed schema of software-focused engineering practices that acquisition programs can use to ...

October 15, 2024—FloCon 2025, the Software Engineering Institute’s annual conference on data-driven security, has opened its call for participation.Operational and data analysts, tool developers, researchers, security professionals, and others interested in data-driven security are invited to submit abstracts to FloCon’s submission website by December 20.

Oct 31, 2024 · Conceptual Modeling, AI, and Beyond. The 43rd International Conference on Conceptual Modeling (ER 2024) is the main international forum for discussing the state of the art, emerging issues, and future challenges in research and practice on conceptual modeling.. Topics of interest span the entire spectrum of conceptual modeling, including research and practice in areas such as theories of ...

Oct 22, 2024 · For Cybersecurity Awareness Month, we're republishing our most read post over the last four years, Nataliya Shevchenko's 2020 piece on model-based systems engineering (MBSE). This post provides an introduction to MBSE and outlines how the methodology can be used to ensure that systems are secure by design.. Model-based systems engineering (MBSE) is a formalized methodology that is used to ...

Apr 4, 2024 · Comments and Contributing. We provide access to the community members to contribute after subject matter expertise is verified. If you want to provide a suggestion or comment and do not have an account, please submit feedback.. If you have an account but are having problems with access, also please submit a support request.. Accounts are regularly deactivated after extended periods of inactivity.

Join the Carnegie Mellon University Community. The SEI forms part of Carnegie Mellon University (CMU)—a world-renowned educational institute whose research has a global impact and reach. CMU counts several Nobel and Turing award recipients among its faculty, and its research has led to cutting-edge advances in numerous fields, from computer science, to robotics, autonomous vehicles, and much ...

The software architecture of a system represents the design decisions related to overall system structure and behavior. Architecture helps stakeholders understand and analyze how the system will achieve essential qualities such as modifiability, availability, and security.

May 2, 2018 · Top 10 Secure Coding Practices. Validate input. Validate input from all untrusted data sources. Proper input validation can eliminate the vast majority of software vulnerabilities.Be suspicious of most external data sources, including command line arguments, network interfaces, environmental variables, and user controlled files [Seacord 05].

2 [Distribution Statement A] Approved for public release and unlimited distribution. A GUIDE TO EFFECTIVE INCIDENT MANAGEMENT COMMUNICATIONS Contents Introduction 2 Communications: Setting the Context 3 Elements of Communications Planning 4