sei.cmu

7 Recommendations to Improve SBOM Quality

Tobar, D., Jamieson, J., Priest, M., and Fricke, J., 2025: 7 Recommendations to Improve SBOM Quality. Carnegie Mellon University, Software Engineering Institute's ...
sei.cmu

The Essential Role of AISIRT in Flaw and Vulnerability Management

McIlvenny, L., and Sarvepalli, V., 2025: The Essential Role of AISIRT in Flaw and Vulnerability Management. Carnegie Mellon University, Software Engineering Institute ...
sei.cmu

Threat Modeling: 12 Available Methods

Shevchenko, N., 2018: Threat Modeling: 12 Available Methods. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed December 3, 2025 ...
sei.cmu

Self-Assessment in Training and Exercise

In this report, we introduce an approach to performance evaluation that focuses on self-assessment. We find that this approach provides both greater information fidelity to satisfy performance ...
sei.cmu

Evaluating Static Analysis Alerts with LLMs

Klieber, W., and Flynn, L., 2024: Evaluating Static Analysis Alerts with LLMs. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed ...
sei.cmu

Using ChatGPT to Analyze Your Code? Not So Fast

Sherman, M., 2024: Using ChatGPT to Analyze Your Code? Not So Fast. Carnegie Mellon University, Software Engineering Institute's Insights (blog), Accessed December 3 ...
sei.cmu

Redemption: A Prototype for Automated Repair of Static Analysis Alerts

Svoboda, D., 2024: Redemption: A Prototype for Automated Repair of Static Analysis Alerts. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
sei.cmu

Applying Large Language Models to DoD Software Acquisition: An Initial Experiment

Schmidt, D., and Robert, J., 2024: Applying Large Language Models to DoD Software Acquisition: An Initial Experiment. Carnegie Mellon University, Software Engineering ...
sei.cmu

Using Game Theory to Advance the Quest for Autonomous Cyber Threat Hunting

Groce, P., 2023: Using Game Theory to Advance the Quest for Autonomous Cyber Threat Hunting. Carnegie Mellon University, Software Engineering Institute's Insights ...
sei.cmu

The Seven Virtues of Reconciling Agile and Earned Value Management (EVM)

Wilson, S., Place, P., and Korzec, K., 2023: The Seven Virtues of Reconciling Agile and Earned Value Management (EVM). Carnegie Mellon University, Software ...
sei.cmu

Software Isolation: Why It Matters to Software Evolution and Why Everybody Puts It Off

Benitez Preciado, M., 2023: Software Isolation: Why It Matters to Software Evolution and Why Everybody Puts It Off. Carnegie Mellon University, Software Engineering ...
sei.cmu

Rust Vulnerability Analysis and Maturity Challenges

Wassermann, G., and Svoboda, D., 2023: Rust Vulnerability Analysis and Maturity Challenges. Carnegie Mellon University, Software Engineering Institute's Insights ...