Software Engineering Institute

Lori Flynn

Software Engineering Institute

Lori Flynn is a Software Security Engineer at CERT, in the Software Engineering Institute of Carnegie Mellon University. Flynn's ongoing work includes the development of new secure coding rules and composable static analysis of apps to check for compliance with data flow rules on Android platforms. Past experience includes network security research, standards-based security analyses, and collaboration on a novel static analysis method for polymorphic program detection that resulted in a patent. Flynn’s Ph.D. research focused on secure multicast routing protocols for ad hoc mobile networks.

Lori Flynn

Send a Message

All

Tech Publications

Blog Posts

Podcasts

Videos

Rapid Adjudication of Static Analysis Alerts During Continuous Integration

November 7, 2021 • Presentation

By Lori Flynn

Rapid Adjudication of Static Analysis Alerts During Continuous Integration

November 5, 2021 • Video

By Lori Flynn

Release of SCAIFE System Version 2.0.0 Provides Support for Continuous-Integration (CI) Systems

October 25, 2021 • Blog Post

By Lori Flynn

SCAIFE and ACR: Static Analysis Classification and Automated Code Repair

September 15, 2021 • Presentation

By Lori Flynn, William Klieber

Test Suites as a Source of Training Data for Static Analysis Classifiers

August 30, 2021 • Video

By Lori Flynn

More from Lori Flynn

Poster - Rapid Adjudication of Static Analysis Meta-Alerts During Continuous Integration

November 4, 2020 • Poster

By Lori Flynn

How to Instantiate SCAIFE API Calls: Using SEI SCAIFE Code, the SCAIFE API, Swagger-Editor, and Developing Your Tool with Auto-Generated Code

July 23, 2020 • User's Guide

By Lori Flynn, Ebonie McNeil, Joe Yankel

Rapid Construction of Accurate Automatic Alert Handling System (2019)

October 28, 2019 • Poster

By Lori Flynn, Ebonie McNeil

SCAIFE API Definition Beta Version 0.0.2 for Developers

June 14, 2019 • White Paper

By Lori Flynn, Ebonie McNeil

Integration of Automated Static Analysis Alert Classification and Prioritization with Auditing Tools: Special Focus on SCALe

May 13, 2019 • Technical Report

By Lori Flynn, Ebonie McNeil, David Svoboda, Derek Leung, Zachary Kurtz, Jiyeon Lee (Carnegie Mellon University)

More from Lori Flynn

Release of SCAIFE System Version 2.0.0 Provides Support for Continuous-Integration (CI) Systems

October 25, 2021 • Blog Post

By Lori Flynn

Release of SCAIFE System Version 1.0.0 Provides Full GUI-Based Static-Analysis Adjudication System with Meta-Alert Classification

December 14, 2020 • Blog Post

By Lori Flynn

A Public Repository of Data for Static-Analysis Classification Research

November 2, 2020 • Blog Post

By Lori Flynn

Managing Static Analysis Alerts with Efficient Instantiation of the SCAIFE API into Code and an Automatically Classifying System

September 14, 2020 • Blog Post

By Lori Flynn

An Application Programming Interface for Classifying and Prioritizing Static Analysis Alerts

July 22, 2019 • Blog Post

By Lori Flynn, Ebonie McNeil

More from Lori Flynn

Using Test Suites for Static Analysis Alert Classifiers

September 20, 2018 • Podcast

By Lori Flynn, Zachary Kurtz

Mitigating Insider Threat - New and Improved Practices Fourth Edition

February 28, 2013 • Podcast

By George Silowash, Lori Flynn, Julia H. Allen

More from Lori Flynn

Rapid Adjudication of Static Analysis Alerts During Continuous Integration

November 5, 2021 • Video

By Lori Flynn

Test Suites as a Source of Training Data for Static Analysis Classifiers

August 30, 2021 • Video

By Lori Flynn

Static Code Analysis Classification

December 15, 2020 • Video

By Lori Flynn, William Klieber, Robert Schiela

Automated Code Repair for Memory Safety

December 15, 2020 • Video

By William Klieber, Lori Flynn, Robert Schiela

Rapid Adjudication of Static Analysis Alerts During Continuous Integration

December 15, 2020 • Video

By Lori Flynn, Robert Nord, Hasan Yasar

More from Lori Flynn