Archive: 2019
What Engineers Need to Know About Artificial Intelligence
Artificial intelligence (AI) systems by their nature are software-intensive. To create viable and trusted AI systems, engineers need technologies and standards, similar to those in software engineering....
Read More•By Thomas A. Longstaff
In Artificial Intelligence Engineering
7 Guidelines for Being a TRUSTED Penetration Tester
The best way to learn is by doing. But when it comes to penetration testing, learners risk legal implications and bad habits if they don't follow ethical, safe procedures....
Read More•By Karen Miller
In Insider Threat
Improving Insider Threat Detection Methods Through Software Engineering Principles
Tuning detective controls is a key component of implementing and operating an insider threat program, and one we have seen many organizations struggle with....
Read More•By Daniel L. Costa
In Insider Threat
Impacts and Recommendations for Achieving Modular Open Systems Architectures --Fifth Post in a Series
In this series of blog posts, adapted from a recently published paper, we sought to demonstrate how layered business and technical architectures can leverage modular component design practices....
Read More•By Nickolas Guertin, Douglas Schmidt (Vanderbilt University)
In Software Architecture
Helping the Federal Government Achieve the Cyber Advantage
The world we live in is increasingly digital, synthetic, and fueled by data. The software it is built on is developed with such speed and automation that we must think …
Read More•By Roberta (Bobbie) Stempfley
In Artificial Intelligence Engineering
Insider Threat Incident Analysis: Court Outcome Observations
In the United States, legal cases may be tried in criminal court or civil court. According to data in the CERT National Insider Threat Center (NITC) incident corpus, the type …
Read More•By Nick Miller
In Insider Threat
Bolstering Security with Cyber Intelligence
A maxim for intelligence operators and military and special operations communities is "get off the X"....
Read More•By Jared Ettinger, Stephen Beck
In Situational Awareness
Artificial Intelligence in Practice: Securing Your Code Using Natural Language Processing
Many techniques are available to help developers find bugs in their code, but none are perfect: an adversary needs only one to cause problems....
Read More•By Eliezer Kanal
In Artificial Intelligence Engineering
Managing the Risks of Ransomware
Ransomware poses a growing threat to both businesses and government agencies. Though no strategy can fully eliminate these risks, this post provides recommendations....
Read More•By David Tobar, Jason Fricke
In Situational Awareness
Don't Play Developer Testing Roulette: How to Use Test Coverage
Suppose someone asked you to play Russian Roulette. Although your odds of surviving are 5 to 1 (83 percent), it is hard to imagine how anyone would take that risk....
Read More•By Robert V. Binder
SEI Blog Archive
Recent
Year