The SEI and the White House OSTP will co-host a workshop to inform a community strategy for building and maintaining U.S. leadership in software engineering and artificial intelligence (AI) engineering.

May 30, 2023•By Anita Carleton, John E. Robert, Mark H. Klein, Douglas Schmidt (Vanderbilt University), Erin Harper

In Software Engineering Research and Development

Current malware detection systems evaluate elements in a file or evaluate the file as a whole. New research shows other avenues for malware detection exist, specifically, breaking up the file …

June 5, 2023•By Timur D. Snoke, Michael Jacobs

In Reverse Engineering for Malware Analysis

The shift from project- to program-level thinking raises numerous challenges to DevSecOps implementation. This SEI Blog post articulates these challenges and ways to overcome them.

June 12, 2023•By Joe Yankel, Hasan Yasar

In DevSecOps

This post provides 12 rules for successful program or project assessments.

June 19, 2023•By William E. Novak

This blog post expands on concerns brought to light from recent UEFI attacks, such as BlackLotus, and highlights 5 recommendations to secure and restore trust in the UEFI ecosystem.

June 26, 2023•By Vijay S. Sarvepalli

In CERT/CC Vulnerabilities

Learn more about the SEI's latest work in penetration testing, model-based design for cyber-physical systems, UEFI, and DevSecOps.

July 5, 2023•By Douglas Schmidt (Vanderbilt University)

In Software Engineering Research and Development

This post discusses the interactions between Agile software development and earned value management (EVM).

July 10, 2023•By Stephen Wilson, Patrick R. Place, Keith Korzec

In Agile

This SEI Blog post describes an effort to apply game theory to the development of algorithms suitable for informing a fully autonomous threat hunting capability and introduces the concept of …

July 24, 2023•By Phil Groce

In Cybersecurity Engineering

As potential applications of artificial intelligence (AI) continue to expand, the question remains: will users want the technology and trust it? This blog post explores how to measure the trustworthiness …

July 17, 2023•By Carrie Gardner, Katherine-Marie Robinson, Carol J. Smith, Alexandrea Steiner

In Artificial Intelligence Engineering

Penetration testing is an important step in identifying weaknesses in an organization’s IT infrastructure. This post introduces a penetration-testing findings repository now publicly available on GitHub.

July 31, 2023•By Marisa Midler, Samantha Chaves