This post chronicles the adoption and growth of autonomous systems and provides six considerations for establishing trust.

April 20, 2022 • By Paul Nielsen

In Software Engineering Research and Development

The U.S. National Institute of Standards and Technology (NIST) recently held a public comment period on their draft report on proposed taxonomy and terminology of Adversarial Machine Learning (AML)....

February 13, 2020 • By Jonathan Spring

In CERT/CC Vulnerabilities

Learn about the SEI's work on technical debt analysis techniques and practices to help software engineers manage its impact on projects in this SEI Blog post.

December 15, 2019 • By Ipek Ozkaya , Robert Nord

In Technical Debt

We've just released a follow-up paper in our research agenda about prioritizing actions during vulnerability management, Prioritizing Vulnerability Response: A Stakeholder-Specific Vulnerability Categorization....

December 5, 2019 • By Allen D. Householder

In CERT/CC Vulnerabilities

Our technical report provides an overview of the relevant parts of an ML lifecycle--selecting the right problem, the right data, and the right math and summarizing the model output for …

December 1, 2019 • By Jonathan Spring

In CERT/CC Vulnerabilities

Most organizations have good enterprise-level security policies that define their approach to maintaining, improving, and securing their information and information systems....

July 24, 2019 • By Seth Swinton , Stephanie Hedges

In Insider Threat

Measuring the software assurance of a product as it is developed and delivered to function in a specific system context involves assembling carefully chosen metrics....

July 7, 2019 • By Carol Woody

The U.S. Election Assistance Commission recently held a public comment period on their Voluntary Voting System Guidelines 2.0 Principles and Guidelines....

June 13, 2019 • By Allen D. Householder , Deana Shick , Jonathan Spring , Art Manion

In CERT/CC Vulnerabilities

In December, a grand jury indicted members of the APT10 group for a tactical campaign known as Operation Cloud Hopper, a global series of sustained attacks against managed service providers …

March 3, 2019 • By Nathaniel Richmond

In Cloud Computing

Every January on the SEI Blog, we present the 10 most-visited posts of the previous year. This year's top 10, which features posts published between January 1, 2018, and December …

January 6, 2019 • By Douglas Schmidt (Vanderbilt University)

In Cloud Computing