OpenAI Collaboration Yields 14 Recommendations for Evaluating LLMs for Cybersecurity

This SEI Blog post summarizes 14 recommendations to help assessors accurately evaluate LLM cybersecurity capabilities.

Read More

February 21, 2024 • By Jeff Gennari, Shing-hon Lau, Samuel J. Perl

In Artificial Intelligence Engineering

Using ChatGPT to Analyze Your Code? Not So Fast

This blog post explores the efficacy of ChatGPT 3.5 in identifying errors in software code.

Read More

February 12, 2024 • By Mark Sherman

In Artificial Intelligence Engineering

Applying the SEI SBOM Framework

This SEI Blog post examines ways you can leverage your software bill of materials (SBOM) data, using the SEI SBOM Framework, to improve your software security and inform your supply …

Read More

February 5, 2024 • By Carol Woody

In Software Engineering Research and Development

The Top 10 Skills CISOs Need in 2024

This post outlines the top 10 skills that CISOs need in 2024 and beyond.

Read More

January 24, 2024 • By Greg Touhill

In Enterprise Risk and Resilience Management

10 Benefits and 10 Challenges of Applying Large Language Models to DoD Software Acquisition

This post presents 10 benefits and 10 challenges of applying LLMs to the software acquisition process and suggests specific use cases where generative AI can provide value.

Read More

January 22, 2024 • By John E. Robert, Douglas Schmidt (Vanderbilt University)

In Software Engineering Research and Development

The Latest Work from the SEI

This SEI Blog post summarizes some recent publications from the SEI in the areas of supply chain risk management, technical debt, large language models, quantum computing, acquisition, and trustworthiness in …

Read More

January 15, 2024 • By Douglas Schmidt (Vanderbilt University)

In Software Engineering Research and Development

The Top 10 Blog Posts of 2023

Every January on the SEI Blog, we present the 10 most-visited posts of the previous year. This year’s top 10 highlights our work in zero trust, large language models, DevSecOps, …

Read More

January 8, 2024 • By Douglas Schmidt (Vanderbilt University)

In Software Engineering Research and Development

Acquisition Archetypes Seen in the Wild, DevSecOps Edition: Clinging to the Old Ways

This SEI blog post draws on SEI experiences conducting independent technical assessments to examine problems common to disparate acquisition programs. It also provides recommendations for recovering from these problems and …

Read More

December 18, 2023 • By William E. Novak

In DevSecOps

Applying Generative AI to Software Engineering: Navigating Ethical and Educational Landscapes

The post explores the application of generative AI in software engineering with an emphasis on the ethical and educational landscapes.

Read More

December 11, 2023 • By John E. Robert, Douglas Schmidt (Vanderbilt University)

In Software Engineering Research and Development

Creating a Large Language Model Application Using Gradio

This post explains how to build a large language model across three primary use cases: basic question-and-answer, question-and-answer over documents, and document summarization.

Read More

December 4, 2023 • By Tyler Brooks

In Artificial Intelligence Engineering